A vulnerability was found in OpenRC up to 0.44.6. It has been rated as critical. This issue affects the function strlen. Upgrading to version 0.44.7 eliminates this vulnerability. Applying the patch bb8334104baf4d5a4a442a8647fb9204738f2204 is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Menu 
- Products
- Solution
- About
OpenRC up to 0.44.6 strlen memory corruption
- Virtual Patching
- October 14, 2021
- 2:08 pm
- Virtual Patching
- October 14, 2021
- 2:08 pm
Common Vulnerabilityies and Exposures
Django up to 2.2.24/3.1.13/3.2.9 HTTP Request access control
A vulnerability was found in Django up to 2.2.24/3.1.13/3.2.9 (Content Management System). It has been classified as critical. This affects some unknown processing of the component HTTP Request Handler. Upgrading to version 2.2.25, 3.1.14 or 3.2.10 eliminates this vulnerability. The upgrade is hosted for download at djangoproject.com.
WSO2 Identity Server 5.7.0 Password Reset recoverpassword.do callback password recovery
A vulnerability was found in WSO2 Identity Server 5.7.0. It has been declared as critical. This vulnerability affects an unknown function of the file accountrecoveryendpoint/recoverpassword.do of the component Password Reset Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an […]
Apereo CAS up to 6.4.1 REST API Endpoint cross site scripting
A vulnerability was found in Apereo CAS up to 6.4.1. It has been rated as problematic. This issue affects an unknown functionality of the component REST API Endpoint. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
-