-
[search](https://search.nix.gsc.io/?q=xerces-c&i=fosho&repos=NixOS-nixpkgs), [files](https://github.com/NixOS/nixpkgs/search?utf8=%E2%9C%93&q=xerces-c+in%3Apath&type=Code)
* [ ] [CVE-2018-1311](https…
-
### Nuclei version:
[github.com/projectdiscovery/nuclei/v3](https://pkg.go.dev/github.com/projectdiscovery/nuclei/v3@v3.2.2) v3.2.2
### Current Behavior:
While scanning with nuclei library, we ar…
-
https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv
###Summary
In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-sp…
-
**What would you like to be added**:
Bump base image alpine([here](https://github.com/karmada-io/karmada/blob/c401a5d9f1434bffa8442d5dd270dee311b332e4/cluster/images/buildx.Dockerfile#L15), and [here…
-
I am a user of dependency check and happily using it to detect CVE's for any maven dependencies, and by doing a special project I even managed to import Tomcat for scanning.
But how can I scan my J…
-
**What happened**:
While scanning our software that packs Apache Karaf 4.4.3 (contains [org.apache.sling.commons.johnzon] 1.2.14), https://nvd.nist.gov/vuln/detail/CVE-2022-45064 is reported when sca…
-
First of all, thank you very much for your work.
When I run jelly in foxx-framework@0.3.6, I found that there is no call edge between "yargs@5.0.0:yargs.js:13:1:Yargs" and "yargs@5.0.0:yargs.js:67…
-
### What happened?
I'm using crowdsec on many servers for more than a year now and there were no problems with blacklisting – until today. During the day parts of my server were unavailable and I c…
-
### What happened?
I needed to change the port of crowdsec from 8080 to 9090 since a other process needs this port.
After changing the configs to 9090, the crowdsec-firewall-bouncer wont start anymo…
-
Our company scanning discovers this High Sevf1 security issue http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41852
for the birt-runtime-4_15_0/plugins/org.apache.commons.jxpath_1.3.0.v2009110…