-
### Description
Our application is net8.0-android and customer is sending us a MobSF static analysis that gives security alerts related to Stack Canary.
I'm not an expert in this fields, so I simp…
-
Introduced through: react-scripts@5.0.1
Fixed In: tough-cookie@4.1.3
Please upgrade internal package tough-cookie (v4.1.2 to v4.1.3) of react-scripts
![Screenshot 2024-03-01 at 6 25 28 PM](http…
-
Integrating vulnerability analysis into the tool's functionality represents a pivotal step towards achieving comprehensive firmware evaluation. By conducting vulnerability assessments during the ELF f…
-
## Description
A new ADP named "cisa" has been integrated into the vulnerability content. This content includes data generated by [CISA vulnrichment](https://github.com/cisagov/vulnrichment). After c…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
Running Istio 1.23 a…
-
* Create tooling to use [clair](https://github.com/coreos/clair) to scan our images for vulnerabilities.
* Drive using Travis.
* Run on a cron
* Improve tooling to rebuild when vulnerabilties…
-
## Description
A community user has reported that version 4.8.0 of the vulnerability detector incorrectly reports some vulnerabilities. This issue aims to investigate these reports, verify the accura…
-
### Context
Since v4.x, Dependency-Track no longer supports global auditing of vulnerabilities.
This was done because analyses are not generally applicable to all projects depending on a given …
-
WDYT? Is this publication in scope?
```
@inbook{Yen_2005,
author = {Yen, Sung-Ming and Lien, Wei-Chih and Moon, SangJae and Ha, JaeCheol},
booktitle = {Progress in Cryptology – Mycrypt 2005},
doi =…
aewag updated
7 hours ago
-
Since Ferveo is intended to be an "online" protocol and some/many primitives being used are not constant-time/may have other side-channel vulnerabilities, there should be an analysis and potential mit…