Search CVE reports
1 – 9 of 9 results
CVE-2021-38614
Low priority** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1, when NDEBUG is used, allows a heap-based buffer overflow during parsing of a Range header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2020-36420
Low priority** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1, when NDEBUG is omitted, allows denial of service via a reachable assertion during parsing of a malformed Range header. NOTE: This vulnerability only affects products that are...
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2011-3596
Medium priorityPolipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | Not affected |
CVE-2009-4413
Medium prioritySome fixes available 3 of 4
The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which...
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |
CVE-2009-3305
Medium prioritySome fixes available 3 of 4
Polipo 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a Cache-Control header that lacks a value for the max-age field, which triggers a segmentation fault in the...
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |
CVE-2008-7191
Low priorityUnspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service (crash) via a long request URL.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |
CVE-2007-4626
Unknown prioritySome fixes available 4 of 8
Unspecified vulnerability in Polipo before 1.0.2 allows remote attackers to cause a denial of service (daemon crash) via certain network traffic associated with entities larger than 2 Gb.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |
CVE-2007-4625
Unknown prioritySome fixes available 4 of 8
Polipo before 1.0.2 allows remote HTTP servers to cause a denial of service (daemon crash) by aborting the response to a POST request.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |
CVE-2005-3163
Unknown prioritySome fixes available 7 of 8
Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root.
1 affected packages
polipo
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
polipo | — | — | — | — | — |