Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/NixOS/security


https://github.com/NixOS/security

Status of the repository?

thufschmitt opened this issue 12 months ago
Roundup: [oss-security] potrace: invalid memory access in findnext (decompose.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux: CVE-2017-6353: sctp: deny peeloff operation on asocs with threads sleeping on it

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-6355 Virglrenderer: integer overflow while creating shader object

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: CVE Request: PHP with Zend OPCache code permission/sensitive data protection vulnerability

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Advisory X41-2017-001: Multiple Vulnerabilities in X.org

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux: irda: Fix lockdep annotations in hashbin_delete() (CVE-2017-6348)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux: ip: fix IP_CHECKSUM handling (CVE-2017-6347)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux: packet: fix races in fanout_add() (CVE-2017-6346)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux: net/llc: avoid BUG_ON() in skb_orphan() (CVE-2017-6345)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: three issues in xorg (CVE-*2017*-2624, CVE-*2017*-2625, CVE-*2017*-2626)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Multiple Cross-Site Scripting vulnerabilities affecting various WordPress Plugins

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Multiple Cross-Site Request Forgery vulnerabilities affecting various WordPress Plugins

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Multiple vulnerabilities affecting various WordPress Plugins

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] kio vulnerability: need CVE

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-6386 Virglrenderer: memory leakage while in vrend_create_vertex_elements_state

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Persistent XSS in wordpress plugin rockhoist-badges v1.2.2

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Persistent XSS Vulnerability in Wordpress plugin AnyVar v0.1.1

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2016-10228: glibc iconv program can hang when invoked with the -c option

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-6414 Qemu: libcacard: host memory leakage while creating new APDU

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] another bunch of crashes in podofo

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] potrace: heap-based buffer overflow in bm_readbody_bmp (bitmap_io.c) (incomplete fix for CVE-2016-8698)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] MySQL / MariaDB / Percona - Root Privilege Escalation Exploit [ CVE-2016-6664 / CVE-2016-5617 ]

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] One byte stack buffer overflow in keepassxc / zxcvbn-c

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] TeX Live: CVE-2016-10243: whitelists a insecure binary/utility to be run as external program

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Remote file upload vulnerabilities in multiple wordpress plugins

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-6505 Qemu: usb: an infinite loop issue in ohci_service_ed_list

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: JasPer 2.0.12 NULL Pointer Dereference jp2_encode (jp2_enc.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Cross-Site Request Forgery in WordPress Press This function allows DoS

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] WordPress audio playlist functionality is affected by Cross-Site Scripting

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] [ANNOUNCE] CVE-2017-5635 and CVE-2017-5636

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Security issue in Linux kernel (v4.5+) persistent memory enabling

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: Linux kernel: CVE-2017-2636: local privilege escalation flaw in n_hdlc

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Multiple Blind SQL injection vulnerability in Wordpress Plugin DTracker v1.5

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Advisory: XSS issues in MantisBT (CVE-2017-6797, CVE-2017-6799)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE Request: Wordpress: 6 security issues in Wordpress 4.7 2

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Roundcube: CVE-2017-6820: XSS issue in handling of a style tag inside of an svg element

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Fwd: [scr305104] wordpress before 4.7.3

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in PoDoFo::PdfColor::operator= (PdfColor.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject (PdfXObject.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] podofo: NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] mupdf: mujstest: global-buffer-overflow in my_getline (jstest_main.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] mupdf: mujstest: global-buffer-overflow in main (jstest_main.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: NULL pointer dereference in jpc_tsfb_synthesize (jpc_tsfb.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: heap-based buffer overflow in jpc_dec_tiledecode (jpc_dec.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: NULL pointer dereference in jp2_colr_destroy (jp2_cod.c) (incomplete fix for CVE-2016-8887)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: use of uninitialized value in jpc_pi_nextcprl (jpc_t2cod.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: NULL pointer dereference in jp2_cdef_destroy (jp2_cod.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] jasper: heap-based buffer overflow in jpc_dec_decodepkt (jpc_t2dec.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Two Content Injection vulnerabilities in Wordpress Plugin DTracker v1.5

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2016-9603 Qemu: cirrus: heap buffer overflow via vnc connection

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Xen Security Advisory 211 (CVE-2016-9603) - Cirrus VGA Heap overflow via display refresh

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] LXC: CVE-2017-5985: lxc-user-nic didn't verify network namespace ownership

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Arbitrary file download vulnerability in Wordpress Plugin Membership Simplified v1.58

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE request for unchecked size argument in malloc() in CHICKEN Scheme

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE Request: multiple bugs found in BFD libraries and Binutils' utilities

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Advisory: XSS in MantisBT Source Integration Plugin (CVE-2017-6958)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-3305 - The Riddle vulnerability in MySQL client (public disclosure)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-6967 xrdp PAM auth_start_session()

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Dealing with CVEs that apply to unspecified package versions

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2016-3631 - libtiff 4.0.6 illegel read

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] git: CVE-2014-9938: does not sanitize branch names in $PS1 allowing command execution

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] libpcre: invalid memory read in phar (pcretest.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] libpcre: NULL pointer dereference in main (pcretest.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] libpcre: invalid memory read in match (pcre_exec.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: CVE Request: Irssi use after free in netjoin condition (2017/03)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE-2017-5644 - Possible DOS (Denial of Service) in Apache POI versions prior to 3.15

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Two Content Injection vulnerabilities in Wordpress Plugin DTracker v1.5

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Jenkins plugins -- multiple vulnerabilities

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] subscription-manager: CVE-2017-2663 unsafe dbus interface

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] elfutils: memory allocation failure in __libelf_set_rawdata_wrlock (elf_getdata.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Multiple Unauthenticated blind SQL injections in Wordpress Plugin Membership Simplified v1.58

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] information about pwn2own Kernel problem

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] [OSSA-2017-002] Nova logs sensitive context from notification exceptions (CVE-2017-7214)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] pcs: CVE-2017-2661 Improper node name field validation when creating clusters leads to XSS

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Linux kernel ping socket / AF_LLC connect() sin_family race

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] util-linux 2.29.2 fixes CVE-2017-2616

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] Re: GraphicsMagick heap out of bounds write issue

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] pax-utils: scanelf: out of bounds read in scanelf_file_get_symtabs (scanelf.c)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] CVE Request - Multiple vulnerabilities in gdk-pixbuf

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: multiple crashes

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in MSADPCM::initializeCoefficients (MSADPCM.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in readValue (FileHandle.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: global buffer overflow in decodeSample (IMA.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in alaw2linear_buf (G711.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in IMA::decodeBlockWAVE (IMA.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in MSADPCM::decodeBlock (MSADPCM.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: divide-by-zero in BlockCodec::runPull (BlockCodec.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in ulaw2linear_buf (G711.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: divide-by-zero in BlockCodec::reset1 (BlockCodec.cpp)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: heap-based buffer overflow in Expand3To4Module::run (SimpleModule.h)

grahamc opened this issue almost 8 years ago
Roundup: [oss-security] audiofile: multiple ubsan crashes

grahamc opened this issue almost 8 years ago