Search for packages
| purl | pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-2hdg-fauv-7bhv | A NULL pointer dereference in Cyrus-SASL may allow remote attackers to cause a Denial of Service condition. |
CVE-2013-4122
|
| VCID-ca3b-g7k5-yucm | security update |
CVE-2019-19906
|
| VCID-fthp-w8mb-nkgr | A buffer overflow in Cyrus-SASL might allow for the execution of arbitrary code in applications or daemons that authenticate using SASL. |
CVE-2009-0688
|
| VCID-j6r3-e2er-1ffx | security flaw |
CVE-2004-0884
|
| VCID-k6kq-a26r-qffd | A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions. |
CVE-2020-8032
|
| VCID-ukce-7qpu-c7cm | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. |
CVE-2022-24407
|
| VCID-wz6n-pfcc-3kfk | Cyrus-SASL contains two vulnerabilities that might allow an attacker to completely compromise the vulnerable system. |
CVE-2005-0373
|
| VCID-yhzp-e1zf-nfh6 | security flaw |
CVE-2002-1347
|
| VCID-ymyx-w5ve-gkgh | Cyrus-SASL contains a vulnerability in the DIGEST-MD5 process that could lead to a Denial of Service. |
CVE-2006-1721
|