VYPR

rpm package

suse/privoxy&distro=SUSE Package Hub 15 SP2

pkg:rpm/suse/privoxy&distro=SUSE%20Package%20Hub%2015%20SP2

Vulnerabilities (7)

  • CVE-2021-20217Mar 25, 2021
    affected < 3.0.31-bp152.4.6.1fixed 3.0.31-bp152.4.6.1

    A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20216Mar 25, 2021
    affected < 3.0.31-bp152.4.6.1fixed 3.0.31-bp152.4.6.1

    A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20276Mar 9, 2021
    affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1

    A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service.

  • CVE-2021-20275Mar 9, 2021
    affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1

    A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service.

  • CVE-2021-20274Mar 9, 2021
    affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1

    A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves.

  • CVE-2021-20273Mar 9, 2021
    affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1

    A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off.

  • CVE-2021-20272Mar 9, 2021
    affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1

    A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash.