pkg:Debian/ndpi
11 total CVEsCRITICAL7HIGH4
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2020-15475In nDPI through 3.2, ndpi_reset_packet_line_info in lib/ndpi_main.c omits certain reinitialization, leading to a use-after-free.from 0, < 3.4-1
- CRITICAL9.8CVE-2020-15474In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c.from 0, < 3.4-1
- CRITICAL9.8CVE-2020-11939In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows that result in a controlled remote heap overf…from 0, < 3.4-1
- CRITICAL9.1CVE-2020-15473In nDPI through 3.2, the OpenVPN dissector is vulnerable to a heap-based buffer over-read in ndpi_search_openvpn in lib/protocols/openvpn.c.from 0, < 3.4-1
- from 0, < 3.4-1
- from 0, < 2.6-3+deb10u1
- CRITICAL9.1CVE-2020-15471In nDPI through 3.2, the packet parsing code is vulnerable to a heap-based buffer over-read in ndpi_parse_packet_line_info in lib/ndpi_main…from 0, < 3.4-1
- from 0, < 4.0-1
- from 0, < 3.4-1
- from 0, < 1.8-1+deb9u1
- HIGH7.5CVE-2020-11940In nDPI through 3.2 Stable, an out-of-bounds read in concat_hash_string in ssh.c can be exploited by a network-positioned attacker that can…from 0, < 3.4-1