98 matches found
Security fix for the ALT Linux 8 package postgresql11-1C version 11.12-alt0.M80P.2
11.12-alt0.M80P.2 built Dec. 21, 2021 Alexei Takaseev in task 289365 Nov. 11, 2021 Alexei Takaseev - Fixes CVE-2021-3677, CVE-2021-23214, CVE-2021-23222...
Security fix for the ALT Linux 9 package postgresql12-1C version 12.7-alt0.M90P.3
12.7-alt0.M90P.3 built Dec. 3, 2021 Alexei Takaseev in task 289302 Nov. 10, 2021 Alexei Takaseev - Fixes CVE-2021-23214, CVE-2021-23222...
Security fix for the ALT Linux 10 package postgresql15-1C version 13.3-alt5
Nov. 10, 2021 Alexei Takaseev 13.3-alt5 - Fixes CVE-2021-23214, CVE-2021-23222...
Security fix for the ALT Linux 9 package postgresql12-1C version 12.7-alt0.M90P.2
12.7-alt0.M90P.2 built Aug. 23, 2021 Alexei Takaseev in task 282411 Aug. 11, 2021 Alexei Takaseev - Fixes CVE-2021-3677...
Security fix for the ALT Linux 10 package postgresql15-1C version 12.7-alt2
Aug. 11, 2021 Alexei Takaseev 12.7-alt2 - Fixes CVE-2021-3677...
Security fix for the ALT Linux 8 package postgresql11-1C version 11.12-alt0.M80P.1
11.12-alt0.M80P.1 built June 4, 2021 Alexei Takaseev in task 272119 May 19, 2021 Alexei Takaseev - 11.12 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Update 1C patch...
Security fix for the ALT Linux 9 package postgresql12-1C version 12.6-alt1.M90P.1
12.6-alt1.M90P.1 built May 24, 2021 Alexei Takaseev in task 272061 May 18, 2021 Alexei Takaseev - Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029...
Security fix for the ALT Linux 10 package postgresql15-1C version 12.6-alt2
May 17, 2021 Alexei Takaseev 12.6-alt2 - Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029...
Stack Consumption
xpdf is vulnerable to stack consumption. The vulnerability exists due to an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp function...
Security fix for the ALT Linux 8 package postgresql11-1C version 11.10-alt0.M80P.2
11.10-alt0.M80P.2 built March 17, 2021 Alexei Takaseev in task 266728 Feb. 20, 2021 Alexei Takaseev - Fixes CVE-2021-3393 - Update 1C patch...
Updated xpdf packages fix security vulnerabilities
In Xpdf 4.02, SplashOutputDev::endType3CharGfxState state SplashOutputDev.cc:3079 is trying to use the freed t3GlyphStack-cache, which causes an heap-use-after-free problem. The codes of a previous fix for nested Type 3 characters wasn't correctly handling the case where a Type 3 char referred to...
Security fix for the ALT Linux 10 package postgresql15-1C version 12.5-alt4
Feb. 11, 2021 Alexei Takaseev 12.5-alt4 - Fix permission checks on constraint violation errors on partitions. Fixes CVE-2021-3393 - Re-applay patch from 1C...
Security fix for the ALT Linux 9 package postgresql12-1C version 12.5-alt4
Feb. 11, 2021 Alexei Takaseev 12.5-alt4 - Fix permission checks on constraint violation errors on partitions. Fixes CVE-2021-3393 - Re-applay patch from 1C...
Fedora 32 : 1:xpdf (2021-4a437fe032)
The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-4a437fe032 advisory. - In Xpdf 4.02, SplashOutputDev::endType3CharGfxState state SplashOutputDev.cc:3079 is trying to use the freed t3GlyphStack-cache, which causes an...
Fedora 33 : 1:xpdf (2021-013d9a30e0)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-013d9a30e0 advisory. - In Xpdf 4.02, SplashOutputDev::endType3CharGfxState state SplashOutputDev.cc:3079 is trying to use the freed t3GlyphStack-cache, which causes an...
PT-2021-19235 · 1с · 1С:Предприятие +1
Name of the Vulnerable Software and Affected Versions: 1C:Enterprise 8 versions prior to 8.3.17.1851 Description: The issue concerns the Web server in 1C:Enterprise 8, which sends base64 encoded credentials in the creds URL parameter. Recommendations: For versions prior to 8.3.17.1851, update to...
Xpdf Stack Depletion Vulnerability
Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. A stack consumption vulnerability exists in the FoFiType1C::getOp function in Xpdf 4.02. The vulnerability stems from a failure to correctly reference a subroutine in a Type 1C font...
CVE-2020-35376
Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp function...
CVE-2020-35376
Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp function...
Design/Logic Flaw
Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp function...