If the first post of a discussion is permanently deleted but the discussion stays visible, any actor who can view the discussion is able to create a new reply via the REST API, no matter the reply permission or lock status.
This includes users that don…
[org.apache.tomcat:tomcat] Apache Tomcat improperly escapes input from JsonErrorReportValve
The JsonErrorReportValve in Apache Tomcat 8.5.83, 9.0.40 to 9.0.68 and 10.1.0-M1 to 10.1.1 does not escape the type, message or description values. In some circumstances these are constructed from user provided data and it was therefore possible for us…
[github.com/jessfraz/pastebinit] pastebinit Path Traversal vulnerability
A vulnerability was found in pastebinit up to 0.2.2 and classified as problematic. Affected by this issue is the function pasteHandler of the file server.go. The manipulation of the argument r.URL.Path leads to path traversal. Upgrading to version 0.2….
[markdown-it] markdown-it vulnerable to Inefficient Regular Expression Complexity
A vulnerability was found in markdown-it up to 2.x. It has been classified as problematic. Affected is an unknown function of the file lib/common/html_re.js. The manipulation leads to inefficient regular expression complexity. Upgrading to version 3.0….
[cn.hutool:hutool-json] hutool-json vulnerable to memory exhaustion
hutool-json v5.8.10 was discovered to contain an out of memory error. This issue is similar to CVE-2022-45690.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-45689
https://github.com/dromara/hutool/issues/2747
https://github.com/advisories/GHSA-…
[linux-loader] linux-loader reading beyond EOF could lead to infinite loop
Impact
The linux-loader crate used the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets pointed beyond the end of the file this could lead to an infinite loop. Virtual Machine Monitors using the linu…
[github.com/containers/podman/v4] Buildah (as part of Podman) vulnerable to Path Traversal
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-4123
https://bugzilla.re…
[github.com/traefik/traefik/v2] Traefik may display authorization header in the debug logs
Impact
There is a potential vulnerability in Traefik displaying the Authorization header in its debug logs.
Traefik uses oxy to provide the following features:
Round Robin: https://doc.traefik.io/traefik/routing/services/#weighted-round-robin-service
…
[teler.app] teler dashboard vulnerable to DOM-based cross-site scripting (XSS)
Description
teler prior to version <= 2.0.0-rc.4 is vulnerable to DOM-based cross-site scripting (XSS) in the teler dashboard. When teler requests messages from the event stream on the /events endpoint, the log data displayed on the dashboard are no…
[bitlyshortener] Package discontinued because Bitly lowered the free quota
On November 17, 2022, an email was received from Bitly advising that the new link quota per free token is lowered to 50 per month (from its previous value of 1000 per month). As per the email, this change is effective on December 8, 2022.
The new quota…