curl can be coerced into writing a zero byte out of bounds.
This bug can trigger when curl is told to work on an FTP URL, with the setting to only issue a single CWD command (–ftp-method singlecwd or the libcurl alternative CURLOPT_FTP_FILEMETHOD).
cu…
[smalruby] smalruby and smalruby-editor vulnerable to OS Command Injection
smalruby-editor prior to 0.4.1 and smalruby prior to 0.1.11 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
References
https://nvd.nist.gov/vuln/detail/CVE-2017-2096
http://jvn.jp/en/jp/JVN50197114/index.html
http://s…
[fluentd] Fluentd Escape Sequence Injection Vulnerability
Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands on the device via unspecified vectors.
References
https://nvd.nist.gov/vuln/detail/CVE-20…
[org.jgroups:jgroups] Improper Input Validation in JGroups
JGroups before 4.0 does not require the proper headers for the ENCRYPT and AUTH protocols from nodes joining the cluster, which allows remote attackers to bypass security restrictions and send and receive messages within the cluster via unspecified vec…
[pdfkit] PDFKit Improper Input Validation vulnerability
Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability
References
https://nvd.nist.gov/vuln/detail/CVE-2013-1607
https://exchange.xforce.ibmcloud.com/vulnerabilities/82563
https://web.archive.org/web/20200229104225/https://www.securityfocus…
[Simple-Wayland-HotKey-Daemon] Insecure temporary file usage in SWHKD
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-27818
https://github.com/waycrate/swhkd/commit/f70b99dd575fab79d8a942111a6980431f006818…
[org.springframework:spring-webflux] Remote Code Execution in Spring Framework
Spring Framework prior to versions 5.2.20 and 5.3.18 contains a remote code execution vulnerability known as Spring4Shell.
Impact
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data bi…
[flumedb] Use of Uninitialized Resource in flumedb.
An issue was discovered in the flumedb crate through 2021-01-07 for Rust. read_entry may read from uninitialized memory locations.
References
https://nvd.nist.gov/vuln/detail/CVE-2021-45684
https://raw.githubusercontent.com/rustsec/advisory-db/main/cr…
[csv-sniffer] Use of Uninitialized Resource in csv-sniffer.
An issue was discovered in the csv-sniffer crate through 2021-01-05 for Rust. preamble_skipcount may read from uninitialized memory locations.
References
https://nvd.nist.gov/vuln/detail/CVE-2021-45686
https://raw.githubusercontent.com/rustsec/advisor…
[cgi] Buffer overrun in CGI.escape_html
A buffer overrun vulnerability was discovered in CGI.escape_html. This can lead to a buffer overflow when a user passes a very large string (> 700 MB) to CGI.escape_html on a platform where long type takes 4 bytes, typically, Windows.
References
ht…