GHSA-2237-5r9w-vm8j: Connect-CMS information that is restricted to viewing is visible

GHSA-5rjc-jc28-cwgg: Connect-CMS Access control vulnerability

GHSA-432c-wxpg-m4q3: xml2rfc has file inclusion irregularities

GHSA-vj7w-3m8c-6vpx: SFTPGo has insufficient sanitization of user provided rsync command

GHSA-vr5f-php7-rg24: Pimcore Admin Classic Bundle allows user enumeration

These functions would crash when the context argument was None with certain extension types.

Thanks to David Benjamin (Google) for reporting this issue.


**\`openssl\` \`X509Extension::new\` and \`X509Extension::new\_nid\` null pointer dereference**

High severity GitHub Reviewed Published Mar 24, 2023 to the GitHub Advisory Database • Updated Mar 24, 2023

Headline

GHSA-6hcf-g6gr-hhcr: `openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference

ghsa: Latest News