-
Per #86 and the following link, only the first 72 bytes of the input are considered when generating a hash, leading to hash collisions in the case that inputs are 73 bytes or longer:
https://github…
-
Hey,
I just wondered if you already have think about a model for web3 vulnerabilities classification to collect them in a database like the MITRE's one ?
Thanks
-
Hi,
we have detected that your project may be vulnerable to Out-of-bounds Write in the function of `jpc_ppxstab_insert` in the file of ` src/libjasper/jpc/jpc_dec.c ` . It shares similarities to a…
-
Hi,
we have detected that your project may be vulnerable to Integer Overflow to Buffer Overflow in the function of `free_args` in the file of `src/util/util.c` . It shares similarities to a recent…
-
https://discourse.nixos.org/t/vulnerability-in-nix-2-24/51902
-
1.4.1 expects vulnerable versions of `braces` and `ip` via the dependency on chokidar@3.5.3
See:
https://www.cve.org/CVERecord?id=CVE-2024-4068
https://www.cve.org/CVERecord?id=CVE-2024-29415
…
-
### Issue description
Please fix high checkmarx security vulnerability in typeorm
### Expected Behavior
No security vulnerabilities are reported by Checkmarx in typeorm
### Actual Behavior
typeor…
-
## background
After the pod uses tls to assign the certificate, secret-csi updates the expiration time of the certificate to the pod annotation. commons-operator's pod-restarter coordinator deletes …
-
Hello! There are some **security issues** in the latest mechaCMS (3.0.0) and I would like to provide you the details privately via email and get your confirmation.
Is [hi@taufik-nurrohman.com](url) a…
-
> Other tools (...and pushover) may have similar [compromsing] powers in this environment
> [...]
> The goal is not to cast aspersions on the vendor, but to point out that the system is fundamentall…