Impact
Any application using @fastify/websocket could crash if a specific, malformed packet is sent.
All versions of fastify-websocket are also impacted. That module is deprecated, so it will not be patched.
Patches
This has been patched in v7.1.1 (fa…
[org.apache.bcel:bcel] Apache Commons BCEL vulnerable to out-of-bounds write
Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications …
[org.apache.ivy:ivy] Apache Ivy vulnerable to path traversal
When Apache Ivy downloads artifacts from a repository it stores them in the local file system based on a user-supplied “pattern” that may include placeholders for artifacts coordinates like the organisation, module or version. If said coordinates conta…
[github.com/btcsuite/btcd] btcd mishandles witness size checking
btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-44797
https://github.com/lightningnetwork/lnd/issues/7002
h…
[org.apache.ivy:ivy] Apache Ivy does not verify target path when extracting the archive
With Apache Ivy 2.4.0 an optional packaging attribute has been introduced that allows artifacts to be unpacked on the fly if they used
pack200 or zip packaging.
For artifacts using the “zip”, “jar” or “war” packaging Ivy prior to version 2.5.1 doesn’t …
[froxlor/froxlor] Froxlor vulnerable to code injection
Code Injection in GitHub repository froxlor/froxlor prior to version 0.10.38.2. There are currently no known workarounds, please upgrade to version 0.10.38.2.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-3869
https://github.com/froxlor/froxlor…
[github.com/pingcap/tidb] TiDB vulnerable to Use of Externally-Controlled Format String
TiDB is vulnerable to Use of Externally-Controlled Format String. A patch is available on the master branch and expected to be part of versions 6.4.0 and 6.1.3.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-3023
https://github.com/pingcap/tidb/…
[pulsar-client] Apache Pulsar: Disabled Certificate Validation for OAuth Client Credential Requests makes C++/Python Clients vulnerable to MITM attack
The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. This vulnerability allows an attacker to perform a m…
[froxlor/froxlor] Froxlor vulnerable to Code Injection
Froxlor prior to version 0.10.39 is vulnerable to Code Injection.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-3721
https://github.com/froxlor/froxlor/commit/1182453c18a83309a3470b2775c148ede740806c
https://huntr.dev/bounties/a3c506f0-5f8a-4ea…
[org.xwiki.contrib.oidc:oidc-authenticator] XWiki OIDC Authenticator vulnerable to bypassing OpenID login by providing a custom provider
Impact
Even if a wiki has an OpenID provider configured through its xwiki.properties, it is possible to provide a third party provider by providing its details through request parameters. One can then bypass the XWiki authentication altogether by speci…