Ubuntu Security Update USN-4569-1: Yaws vulnerabilities

Thread starter LinuxBot
Start date Oct 5, 2020

LinuxBot

Member

Oct 5, 2020

#1

It was discovered that Yaws did not properly sanitize XML input. A remote attacker could use this vulnerability to execute an XML External Entity (XXE) injection attack. (CVE-2020-24379) It was discovered that Yaws mishandled certain input when running CGI scripts. A remote attacker could use this vulnerability to execute arbitrary commands. (CVE-2020-24916)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8150-1: SPIP vulnerabilities

Replies: 0

Views: 158

Apr 6, 2026

LinuxBot

Ubuntu Security Update USN-8077-1: Bleach vulnerabilities

Replies: 0

Views: 124

Mar 5, 2026

LinuxBot

Ubuntu Security Update USN-8216-1: .NET vulnerabilities

Replies: 0

Views: 136

Apr 28, 2026

LinuxBot

Ubuntu Security Update USN-8174-1: XML::Parser vulnerabilities

Replies: 0

Views: 120

Apr 14, 2026

LinuxBot

Ubuntu Security Update USN-8223-1: Roundcube Webmail vulnerabilities

Replies: 0

Views: 124

Apr 29, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,621 (members: 4, guests: 2,617)

Latest posts

Videogame Sountrack
- Latest: Fymgee
- 17 minutes ago
Linux Gaming
trixie... xfce
- Latest: Fymgee
- 22 minutes ago
General Linux Topics
Guidance with bash shell scripting?
- Latest: beanburrito
- 36 minutes ago
Command Line
O
Linux on Macbook 12" early 2016
- Latest: onzem
- 38 minutes ago
General Linux Topics
L
Is this scripting language understandable?
- Latest: lily64mark
- Today at 6:16 AM
Dev-ops

Top