-
### Summary
In smc-tools [1][2], the open_cache_file() function in stats.c [3] operates on a predictable path in /tmp, allowing an unprivileged local user to deny the program's service.
> sprintf(…
-
Since I've been using Axum on my own project based on Torrust-Tracker, I'm moving myself to Actix framework again, but now with properly implementation.
This server uses, as far as I'm aware, still…
-
**Github username:** @0xmahdirostami
**Twitter username:** 0xmahdirostami
**Submission hash (on-chain):** 0xa5b4b9894d4e91e80f7a5a9a31763d4a7e23170ca42a7e834d046b8f62023549
**Severity:** medium
**De…
-
### Preflight Checklist
- [X] I have searched the [issue tracker](https://www.github.com/zadam/trilium/issues) for a bug report that matches the one I want to file, without success.
### Trilium Vers…
cyker updated
3 years ago
-
See Regular Expression Denial of Service (ReDoS) in micromatch #23 for additional details.
-
Reported by @dantengsky in #86
> Suppose a service composed of 3 nodes {n0 .. n2} , all nodes are synced(same term, index) at beginning.
>
> Adversary controls a minority {n0}. (Enclaves are no…
-
**Github username:** @DevPelz
**Twitter username:** Pelz_Dev
**Submission hash (on-chain):** 0x04eff2ab0e3258632487e501ca6602da6a9bc37711e52be608728e21c66de8c2
**Severity:** high
**Description:**
##…
-
`test_int` recently [failed on a buildbot](https://buildbot.python.org/all/#/builders/1115/builds/437/steps/4/logs/stdio):
```
======================================================================
…
-
# How to reproduce
Using the prepared patch file [reproduce.patch](https://github.com/rovinbhandari/FTP/files/10328866/reproduce.patch) for better illustration.
```sh
patch -p1 < reproduce.patch…
-
### Summary
RapidJSON crashes when parsing a malformed JSON input.
### Technical Details
The function [Accept](https://github.com/Tencent/rapidjson/blob/ab1842a2dae061284c0a62dca1cc6d5e7e37e346…