Jenkins CAS Plugin 1.6.0 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks. Date published : 2021-06-30 https://www.jenkins.io/security/advisory/2021-06-30/#SECURITY-2387 http://www.openwall.com/lists/oss-security/2021/06/30/1
Jenkins Selenium HTML report Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Date published : 2021-06-30 https://www.jenkins.io/security/advisory/2021-06-30/#SECURITY-2329 http://www.openwall.com/lists/oss-security/2021/06/30/1
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier does not invalidate the previous session on login. Date published : 2021-06-30 https://www.jenkins.io/security/advisory/2021-06-30/#SECURITY-2371 http://www.openwall.com/lists/oss-security/2021/06/30/1
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission. Date...
IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the System Appearance configuration setting. An attacker could potentially bypass business logic to modify the appearance and behavior of...
There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kinetic effects and information disclosure on the faucets. It...
UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack::CopyString (called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile). Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4373 https://github.com/aawc/unrar/commit/0ff832d31470471803b175cfff4e40c1b08ee779
UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write during a memcpy in QuickOpen::ReadRaw when called from QuickOpen::ReadNext. Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9845 https://github.com/aawc/unrar/releases
RawSpeed (aka librawspeed) 3.1 has a heap-based buffer overflow in TableLookUp::setTable. Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5256 https://github.com/darktable-org/rawspeed/commit/dbe7591e54bad5e6430d38be6bed051582da76b9
LibreSSL 2.9.1 through 3.2.1 has an out-of-bounds read in asn1_item_print_ctx (called from asn1_template_print_ctx). Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13920 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libressl/OSV-2020-1965.yaml
LibreSSL 2.9.1 through 3.2.1 has a heap-based buffer over-read in do_print_ex (called from asn1_item_print_ctx and ASN1_item_print). Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13914 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libressl/OSV-2020-1923.yaml
A Use of Password Hash Instead of Password for Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attackers with access to the hashed password to...
libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid. Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24811 https://github.com/AOMediaCodec/libavif/commit/0a8e7244d494ae98e9756355dfbfb6697ded2ff9
uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). Date published : 2021-06-30 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25381 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/uwebsockets/OSV-2020-1695.yaml