Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-28644: Add restrictions when downloading to resolve with opengraph link provider by julien-nc · Pull Request #36016 · nextcloud/server

Nextcloud server is an open source home cloud implementation. In releases of the 25.0.x branch before 25.0.3 an inefficient fetch operation may impact server performances and/or can lead to a denial of service. This issue has been addressed and it is recommended that the Nextcloud Server is upgraded to 25.0.3. There are no known workarounds for this vulnerability.

CVE
Open in Source
#vulnerability#dos#php
There was 1 failure: | 59s
-- | --
654 |   | 59s
655 | 1) OCA\Settings\Tests\Controller\CheckSetupControllerTest::testCheck | 59s
656 | Failed asserting that two objects are equal. | 59s
657 | --- Expected | 59s
658 | +++ Actual | 59s
659 | @@ @@ | 59s
660 | 'OCA\Settings\SetupChecks\PhpOutputBuffering' => Array (...) | 59s
661 | 'OCA\Settings\SetupChecks\LegacySSEKeyFormat' => Array (...) | 59s
662 | 'OCA\Settings\SetupChecks\CheckUserCertificates' => Array (...) | 59s
663 | -        'imageMagickLacksSVGSupport' => false | 59s
664 | +        'imageMagickLacksSVGSupport' => true

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE