A vulnerability, which was classified as critical, was found in antonbolling clan7ups. Affected is an unknown function of the component Login/Session. The manipulation leads to sql injection. The name of the patch is 25afad571c488291033958d845830ba0a1710764. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-218388.
A vulnerability was found in msmania poodim. It has been declared as critical. This vulnerability affects unknown code of the component Command Line Argument Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The name of the patch is 6340d5d2c81e55e61522c4b40a6cdd5c39738cc6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-218392.
It was discovered that Apache Maven followed repositories that are defined
in a dependency’s Project Object Model (pom) even if the repositories
weren’t encryptedh (http protocol). An attacker could use this
vulnerability to take over a repository, execute arbitrary code or cause a
denial of service.
A logic error was discovered in the implementation of the SafeSocks
option of Tor, a connection-based low-latency anonymous communication
system, which did result in allowing unsafe SOCKS4 traffic to pass.
apt-cacher-ng-3.7.4-2.el9
fixes old bugs present in the EPEL7 upload
tor-0.4.7.13-1.el7
update to latest upstream release
tor-0.4.7.13-1.el8
update to latest upstream release
tor-0.4.7.13-1.fc36
update to latest upstream release
tor-0.4.7.13-1.fc37
update to latest upstream release
tor-0.4.7.13-1.el9
update to latest upstream release
