Showing 1 - 5 of 5

CVE-2024-24789

Status Candidate

Overview

The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with contents that vary depending on the implementation reading the file. The archive/zip package now rejects files containing these errors.

Related Files

Red Hat Security Advisory 2024-4785-03: Posted Aug 7, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-4785-03 - Network Observability 1.6 for Red Hat OpenShift.; tags | advisory; systems | linux, redhat; advisories | CVE-2024-24789; SHA-256 | b414319dfea135c1c9942a4bcd6ca9ddaace92c1c824791d339a3b9e5cccecde; Download | Favorite | View

Red Hat Security Advisory 2024-4867-03: Posted Jul 26, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-4867-03 - Red Hat openshift-serverless-clients kn 1.33.1 is now available.; tags | advisory; systems | linux, redhat; advisories | CVE-2024-24789; SHA-256 | 97d5915db11d53686ae6fa6bfa44c0ecb8d1b09473e7920e7c3cfd9eda480818; Download | Favorite | View

Ubuntu Security Notice USN-6886-1: Posted Jul 9, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6886-1 - It was discovered that the Go net/http module did not properly handle the requests when request\'s headers exceed MaxHeaderBytes. An attacker could possibly use this issue to cause a panic resulting into a denial of service. This issue only affected Go 1.21 in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that the Go net/http module did not properly validate the subdomain match or exact match of the initial domain. An attacker could possibly use this issue to read sensitive information. This issue only affected Go 1.21 in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.; tags | advisory, web, denial of service; systems | linux, ubuntu; advisories | CVE-2023-45288, CVE-2023-45289, CVE-2023-45290, CVE-2024-24783, CVE-2024-24784, CVE-2024-24785, CVE-2024-24788, CVE-2024-24789, CVE-2024-24790; SHA-256 | 66197d055fed6c97073d4c955f114f48acbb90bca8321f4984ae151d375a3e75; Download | Favorite | View

Red Hat Security Advisory 2024-4237-03: Posted Jul 3, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-4237-03 - An update for go-toolset is now available for Red Hat Enterprise Linux 8.; tags | advisory; systems | linux, redhat; advisories | CVE-2024-24789; SHA-256 | 5e967fec92b267fb8a42b1c9adc7caad81f7e62bcde1443c4664f9fb01e7da3a; Download | Favorite | View

Red Hat Security Advisory 2024-4212-03: Posted Jul 2, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-4212-03 - An update for golang is now available for Red Hat Enterprise Linux 9.; tags | advisory; systems | linux, redhat; advisories | CVE-2024-24789; SHA-256 | c536dc515d6d63ea938cd0ad2a5a0a049b4575b7f758f2246928de68ef739ebb; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 55 files
LiquidWorm 20 files
Debian 18 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2024-24789

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems