Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
DLA-3795-1
  • Debian:10/knot-resolver
 knot-resolver - security update
  • 3.2.1-3
  • 3.2.1-3+deb10u1
 2024-04-26T00:00:00Z Fix available
USN-6754-1
  • Ubuntu:Pro:18.04:LTS/nghttp2
  • Ubuntu:20.04:LTS/nghttp2
  • Ubuntu:22.04:LTS/nghttp2
  • Ubuntu:23.10/nghttp2
  • Ubuntu:Pro:16.04:LTS/nghttp2
 nghttp2 vulnerabilities
  • See details.
 2024-04-25T22:23:15.301978Z Fix available
USN-6753-1
  • Ubuntu:Pro:18.04:LTS/cryptojs
  • Ubuntu:20.04:LTS/cryptojs
  • Ubuntu:Pro:22.04:LTS/cryptojs
  • Ubuntu:Pro:16.04:LTS/cryptojs
 cryptojs vulnerability
  • See details.
 2024-04-25T20:59:19.200890Z Fix available
USN-6751-1
  • Ubuntu:Pro:18.04:LTS/zabbix
  • Ubuntu:Pro:20.04:LTS/zabbix
  • Ubuntu:Pro:22.04:LTS/zabbix
  • Ubuntu:Pro:14.04:LTS/zabbix
  • Ubuntu:Pro:16.04:LTS/zabbix
 zabbix vulnerabilities
  • See details.
 2024-04-25T20:13:57.992502Z Fix available
GHSA-ppx5-q359-pvwj
  • PyPI/vyper
 vyper's range(start, start + N) reverts for negative numbers
  • 0.3.10
  • 0.3.10rc1
  • 0.3.10rc2
  • 0.3.10rc3
  • 0.3.10rc4
  • 0.3.10rc5
  • 0.3.8
  • ...
 2024-04-25T19:53:43Z Fix available
GHSA-xchq-w5r3-4wg3
  • PyPI/vyper
 vyper performs incorrect topic logging in raw_log
  • 0.1.0b1
  • 0.1.0b10
  • 0.1.0b11
  • 0.1.0b12
  • 0.1.0b13
  • 0.1.0b14
  • 0.1.0b15
  • ...
 2024-04-25T19:53:10Z No fix available
GHSA-r56x-j438-vw5m
  • PyPI/vyper
 vyper performs double eval of the slice args when buffer from adhoc locations
  • 0.1.0b1
  • 0.1.0b10
  • 0.1.0b11
  • 0.1.0b12
  • 0.1.0b13
  • 0.1.0b14
  • 0.1.0b15
  • ...
 2024-04-25T19:51:41Z No fix available
GHSA-3whq-64q2-qfj6
  • PyPI/vyper
 vyper performs double eval of raw_args in create_from_blueprint
  • 0.1.0b1
  • 0.1.0b10
  • 0.1.0b11
  • 0.1.0b12
  • 0.1.0b13
  • 0.1.0b14
  • 0.1.0b15
  • ...
 2024-04-25T19:50:50Z No fix available
GHSA-m2v9-w374-5hj9
  • PyPI/vyper
 vyper default functions don't respect nonreentrancy keys
  • 0.1.0b1
  • 0.1.0b10
  • 0.1.0b11
  • 0.1.0b12
  • 0.1.0b13
  • 0.1.0b14
  • 0.1.0b15
  • ...
 2024-04-25T19:50:35Z Fix available
GHSA-5jrj-52x8-m64h
  • PyPI/vyper
 vyper performs double eval of the argument of sqrt
  • 0.1.0b1
  • 0.1.0b10
  • 0.1.0b11
  • 0.1.0b12
  • 0.1.0b13
  • 0.1.0b14
  • 0.1.0b15
  • ...
 2024-04-25T19:50:16Z No fix available
GHSA-346h-749j-r28w
  • Packagist/mdanter/ecc
 PHPECC vulnerable to multiple cryptographic side-channel attacks
  • 0.2.0
  • v0.3.0
  • v0.3.1
  • v0.3.2
  • v0.4.0
  • v0.4.1
  • v0.4.2
  • ...
 2024-04-25T18:31:58Z No fix available
GHSA-7j7j-66cv-m239
  • Go/github.com/zitadel/zitadel
 ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass
  • See details.
 2024-04-25T18:31:31Z Fix available
GHSA-25w4-hfqg-4r52
  • Maven/io.quarkus:quarkus-resteasy-reactive-common-deployment
  • Maven/io.quarkus:quarkus-resteasy-reactive-common
 Quarkus: authorization flaw in quarkus resteasy reactive and classic
  • 1.11.0.Beta1
  • 1.11.0.Beta2
  • 1.11.0.CR1
  • 1.11.0.Final
  • 1.11.1.Final
  • 1.11.2.Final
  • 1.11.3.Final
  • ...
 2024-04-25T18:30:39Z Fix available
GHSA-9wmf-xf3h-r8pr
  • Maven/org.jberet:jberet-core
 Jberet: jberet-core logging database credentials
  • 1.0.0.Alpha1
  • 1.0.0.Alpha2
  • 1.0.0.Alpha3
  • 1.0.0.Alpha4
  • 1.0.0.Beta1
  • 1.0.0.Beta2
  • 1.0.0.CR1
  • ...
 2024-04-25T18:30:39Z Fix available
GHSA-m9w6-wp3h-vq8g
  • Go/github.com/coredns/coredns
 CoreDNS may return invalid cache entries
  • See details.
 2024-04-25T18:30:39Z Fix available
GHSA-mv64-86g8-cqq7
  • Maven/io.quarkus.resteasy.reactive:resteasy-reactive
 Quarkus: security checks in resteasy reactive may trigger a denial of service
  • 3.8.0.CR1
  • 3.3.0
  • 3.3.0.CR1
  • 3.3.1
  • 3.3.2
  • 3.3.3
  • 3.4.0
  • ...
 2024-04-25T18:30:39Z Fix available
Load more...