rpm package
suse/privoxy&distro=SUSE Package Hub 15 SP2
pkg:rpm/suse/privoxy&distro=SUSE%20Package%20Hub%2015%20SP2
Vulnerabilities (7)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-20217 | — | < 3.0.31-bp152.4.6.1 | 3.0.31-bp152.4.6.1 | Mar 25, 2021 | A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system availability. | ||
| CVE-2021-20216 | — | < 3.0.31-bp152.4.6.1 | 3.0.31-bp152.4.6.1 | Mar 25, 2021 | A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability. | ||
| CVE-2021-20276 | — | < 3.0.32-bp152.4.9.1 | 3.0.32-bp152.4.9.1 | Mar 9, 2021 | A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service. | ||
| CVE-2021-20275 | — | < 3.0.32-bp152.4.9.1 | 3.0.32-bp152.4.9.1 | Mar 9, 2021 | A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service. | ||
| CVE-2021-20274 | — | < 3.0.32-bp152.4.9.1 | 3.0.32-bp152.4.9.1 | Mar 9, 2021 | A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves. | ||
| CVE-2021-20273 | — | < 3.0.32-bp152.4.9.1 | 3.0.32-bp152.4.9.1 | Mar 9, 2021 | A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off. | ||
| CVE-2021-20272 | — | < 3.0.32-bp152.4.9.1 | 3.0.32-bp152.4.9.1 | Mar 9, 2021 | A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash. |
- CVE-2021-20217Mar 25, 2021affected < 3.0.31-bp152.4.6.1fixed 3.0.31-bp152.4.6.1
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system availability.
- CVE-2021-20216Mar 25, 2021affected < 3.0.31-bp152.4.6.1fixed 3.0.31-bp152.4.6.1
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability.
- CVE-2021-20276Mar 9, 2021affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1
A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service.
- CVE-2021-20275Mar 9, 2021affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1
A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service.
- CVE-2021-20274Mar 9, 2021affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1
A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves.
- CVE-2021-20273Mar 9, 2021affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1
A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off.
- CVE-2021-20272Mar 9, 2021affected < 3.0.32-bp152.4.9.1fixed 3.0.32-bp152.4.9.1
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash.