MySQL — свободная реляционная система управления базами данных
Релизный цикл, информация об уязвимостях
График релизов
Количество 1 152
CVE-2019-5481
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
SUSE-SU-2019:2339-2
Security update for curl
CVE-2019-5482
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.
CVE-2019-5481
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
SUSE-SU-2019:2009-1
Security update for curl
CVE-2019-5443
A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privileged user it can do anything it wants.
CVE-2019-5443
A non-privileged user or program can put code and a config file in a k ...
CVE-2019-5443
A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privileged user it can do anything it wants.
SUSE-SU-2019:1357-2
Security update for curl
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2019-5481 Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. | CVSS3: 9.8 | 5% Низкий | почти 6 лет назад |
 | SUSE-SU-2019:2339-2 Security update for curl | 11% Средний | почти 6 лет назад | |
 | CVE-2019-5482 Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3. | CVSS3: 6.3 | 11% Средний | почти 6 лет назад |
| CVE-2019-5481 Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. | CVSS3: 5.7 | 5% Низкий | почти 6 лет назад |
| CVE-2019-10219 A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack. | CVSS3: 6.5 | 1% Низкий | почти 6 лет назад |
| SUSE-SU-2019:2009-1 Security update for curl | 30% Средний | почти 6 лет назад | |
 | CVE-2019-5443 A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privileged user it can do anything it wants. | CVSS3: 7.8 | 1% Низкий | почти 6 лет назад |
| CVE-2019-5443 A non-privileged user or program can put code and a config file in a k ... | CVSS3: 7.8 | 1% Низкий | почти 6 лет назад |
| CVE-2019-5443 A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privileged user it can do anything it wants. | CVSS3: 7.8 | 1% Низкий | почти 6 лет назад |
| SUSE-SU-2019:1357-2 Security update for curl | 30% Средний | почти 6 лет назад |
Уязвимостей на страницу