An issue was discovered in Mellium mellium.im/sasl before 0.3.1. When performing SCRAM-based SASL authentication, if the remote end advertises support for channel binding, no random nonce is generated ...
Continue Reading
January 05, 2023
Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions 1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting `pipe_mode` w ...
Continue Reading
January 05, 2023
[]() Financial institutions are being targeted by a new version of ...
Continue Reading
January 05, 2023
[]() DevOps platform CircleCI on Wednesday urged its customers to rotate ...
Continue Reading
January 05, 2023
Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions 1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting `pipe_mode` w ...
Continue Reading
January 05, 2023
KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-coded Jwtsigkeys, resulting in the same Jwtsigkeys for all online projects. This means that an attacker ...
Continue Reading
January 04, 2023
 [The ~~first~~ second release candidate of Go 1.20 is out]()![1] This is the first release I participated in as ...
Continue Reading
January 04, 2023
Multiple improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerabilities [CWE-78] in FortiTester may allow an authenticated attacker to execute arbitrary com ...
Continue Reading
January 04, 2023
Back to Main
