GitLab Community Edition/Enterprise Edition 13.4 Membership improper authorization

A vulnerability, which was classified as critical, was found in GitLab Community Edition and Enterprise Edition 13.4 (Bug Tracking Software). Affected is an unknown functionality of the component Membership Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Common Vulnerabilityies and Exposures

Contact us to get started

TightVNC 1.3.10 vncviewer rfbproto.c InitialiseRFBConnection heap-based overflow

A vulnerability was found in TightVNC 1.3.10. It has been declared as critical. This vulnerability affects the function InitialiseRFBConnection of the file rfbproto.c of the component vncviewer. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

PJSIP up to 2.11.1 RTP/RTCP out-of-bounds read

A vulnerability was found in PJSIP up to 2.11.1. It has been rated as critical. This issue affects an unknown code of the component RTP/RTCP. Applying the patch 22af44e68a0c7d190ac1e25075e1382f77e9397a is able to eliminate this problem. The bugfix is ready for download at github.com.

PJSIP up to 2.11.1 SIP Message out-of-bounds read

A vulnerability classified as critical has been found in PJSIP up to 2.11.1. Affected is an unknown code block of the component SIP Message. Applying the patch 077b465c33f0aec05a49cd2ca456f9a1b112e896 is able to eliminate this problem. The bugfix is ready for download at github.com.