GHSA-mm6v-68qp-f9fw: Crayfish allows Remote Code Execution via Homarus Authorization header

GHSA-c873-wfhp-wx5m:  SP1 has missing verifier checks and fiat-shamir observations

GHSA-7pq6-v88g-wf3w: Sentry's improper authentication on SAML SSO process allows user impersonation

GHSA-2c6g-pfx3-w7h8: Insecure Temporary File in RESTEasy

GHSA-5m7j-6gc4-ff5g: Mattermost fails to properly validate post props

NLnet Labs’ bcder library up to and including version 0.7.2 panics while decoding certain invalid input data rather than rejecting the data with an error. This can affect both the actual decoding stage as well as accessing content of types that utilized delayed decoding.

**BER/CER/DER decoder panics on invalid input**

High severity GitHub Reviewed Published Sep 13, 2023 to the GitHub Advisory Database • Updated Sep 14, 2023

Headline

GHSA-6jmw-6mxw-w4jc: BER/CER/DER decoder panics on invalid input

Related news

ghsa: Latest News