VYPR

rpm package

suse/shadowsocks-libev&distro=SUSE Package Hub 15 SP1

pkg:rpm/suse/shadowsocks-libev&distro=SUSE%20Package%20Hub%2015%20SP1

Vulnerabilities (2)

  • CVE-2019-5164Dec 3, 2019
    affected < 3.3.3-bp151.5.3.1fixed 3.3.3-bp151.5.3.1

    An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets sent to ss-manager can cause an arbitrary binary to run, resulting in code execution and privilege escalation. An attacker can send network pa

  • CVE-2019-5163Dec 3, 2019
    affected < 3.3.3-bp151.5.3.1fixed 3.3.3-bp151.5.3.1

    An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a FATAL error code path and exit. An attacker can send arbitrary UDP packets to trig