-
Dear Open Source Project Maintainer,
cryptocheck tool has detected the use of MD5 and SHA-1 hash functions within the project. The following security advisory is provided:
MD5 and SHA-1 are no l…
-
### Describe the bug
Recently, Security Advisories containing duplicate/reused PHSA IDs have been published.
A few examples:
* [PHSA-2022-0444 (expat for 2.0)](https://github.com/vmware/photon/wi…
-
Advisory [GHSA-xxxw-3j6h-q7h6](https://github.com/advisories/GHSA-xxxw-3j6h-q7h6) references a vulnerability in the following Go modules:
| Module |
| - |
| [github.com/grafana/grafana-plugin-sdk-go]…
-
```
From: Jose Exposito Quintana
Date: Tue, Oct 29, 2024 at 5:16 PM
Subject: X.Org Security Advisory: Issues in X.Org X server prior to 21.1.14
and Xwayland prior to 24.1.4
To: ,
X.Org Sec…
-
-
Advisory [GHSA-p7mv-53f2-4cwj](https://github.com/advisories/GHSA-p7mv-53f2-4cwj) references a vulnerability in the following Go modules:
| Module |
| - |
| [github.com/cometbft/cometbft](https://pkg…
-
TALOS-2021-1416
CVE-2021-40402
Gerbv RS-274X aperture macro multiple outline primitives out-of-bounds read vulnerability
### Summary
An out-of-bounds read vulnerability exists in the…
-
The GitHub advisories are somewhat weird:
1. the graphql API data require auth and are incomplete (they do not contain external references)
2. the HTML data at https://github.com/advisories contains…
-
https://ssd-disclosure.com/ssd-advisory-vestacp-multiple-vulnerabilities/
Please be aware of the Security vulnrebilities found in VestaCP. They could be nasty..
-
Hello,
I'm an independent security researcher performing security research under the [GitHub Security Lab Bug Bounty Program](https://securitylab.github.com/). I believe I may have found a security…