Summary In the Linux kernel, there is a use-after-free in net/netrom/af_netrom.c since accept is also allowed for a successfully connected AF_NETROM connection. For an attacker to exploit this, the sy...
Summary Apache Tomcat did not correctly parse the HTTP transfer-encoding request header in some circumstances, leading to the possibility of request smuggling when used with a reverse proxy. Specifica...
Summary ** DISPUTED ** OpenSSH allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct....
SamPirok
on:
Security Advisory: SA-2022-004 – Spring Framework
