-
Notifications
You must be signed in to change notification settings - Fork 420
Security: google/security-research
Security Navigation
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
AWS: In-band protocol negotiation and robustness weaknesses in AWS KMS and Encryption SDKsGHSA-wqgp-vphw-hphf published
Sep 28, 2020 by sirdarckcatLow -
Telestream: SQL injection in Sentry/MediusGHSA-g69r-8jwh-2462 published
Sep 16, 2020 by u269cHigh -
AWS: In-band key negotiation issue in the AWS S3 Crypto SDK for golangGHSA-7f33-f4f5-xwgw published
Aug 10, 2020 by u269cLow -
AWS: CBC Padding oracle in the AWS S3 Crypto SDK for golangGHSA-f5pg-7wfw-84q9 published
Aug 10, 2020 by u269cModerate -
AngularJS: XSS in JQLite DOM manipulation functionsGHSA-5cp4-xmrw-59wf published
Aug 3, 2020 by sirdarckcatModerate -
AWS: Unencrypted md5 plaintext hash in metadata in the AWS S3 Crypto SDK for golangGHSA-76wf-9vgp-pj7w published
Aug 10, 2020 by u269cModerate -
Apple: Cross-process SpectreRSB/ret2spec vulnerability in macOSGHSA-g79q-75p5-733r published
Aug 14, 2020 by u269cModerate -
Zoom: Multiple OAuth vulnerabilitiesGHSA-6r3h-49f8-wwph published
Jul 28, 2020 by sirdarckcatHigh -
Zoom: XSS in Zoom.us Signup FlowGHSA-fpgp-vrmv-v8f2 published
Jul 7, 2020 by sirdarckcatHigh -
BSD: Out-of-bounds kernel heap access in hib_get_item for FreeBSD and OpenBSDGHSA-2j5v-f98f-f9gr published
Sep 1, 2020 by u269cModerate