Lucene search
+L

136 matches found

OpenVAS
OpenVAS
added 2016/06/19 12:0 a.m.31 views

Fedora Update for optipng FEDORA-2016-2e339a7779

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.03519EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2016-0135)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.03519EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2016/04/19 12:0 a.m.31 views

Ubuntu 14.04 LTS : OptiPNG vulnerabilities (USN-2951-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2951-1 advisory. Gustavo Grieco discovered that OptiPNG incorrectly handled memory. A remote attacker could use this issue with a specially crafted image file to cause...

9.3CVSS7.2AI score0.05383EPSS
Exploits3References6
OpenVAS
OpenVAS
added 2016/04/19 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-2951-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.05383EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2016/04/18 12:0 a.m.23 views

openSUSE Security Update : optipng (openSUSE-2016-469)

optipng was updated to fix one security issue. This security issue was fixed : - CVE-2016-2191: Invalid write while processing bitmap images bsc973992. - CVE-2016-3981: Heap buffer overflow pngxrbmp.c bmpreadrows - CVE-2016-3982: Heap buffer overflow pngxrbmp.c bmprle4fread %NASLMINLEVEL 70300 C...

9.3CVSS7.2AI score0.04426EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2016/04/18 12:0 a.m.26 views

openSUSE Security Update : optipng (openSUSE-2016-468)

optipng was updated to fix one security issue. This security issue was fixed : - CVE-2016-2191: Invalid write while processing bitmap images bsc973992. - CVE-2016-3981: Heap buffer overflow pngxrbmp.c bmpreadrows - CVE-2016-3982: Heap buffer overflow pngxrbmp.c bmprle4fread %NASLMINLEVEL 70300 C...

9.3CVSS7.2AI score0.04426EPSS
Exploits2References4
OSV
OSV
added 2016/04/13 4:59 p.m.7 views

CVE-2016-2191

The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory write and crash via a series of delta escapes in a crafted BMP image...

6.5CVSS6.6AI score
Exploits0References10
CVE
CVE
added 2016/04/13 4:0 p.m.97 views

CVE-2016-2191

OptiPNG before 0.7.6 is affected by a vulnerability in bmp_read_rows (pngxtern/pngxrbmp.c) triggered by crafting BMP delta escapes. The issue can cause an invalid memory write and crash, enabling a denial of service. Some advisories also note potential arbitrary code execution in certain contexts...

6.5CVSS6.2AI score0.03519EPSS
Exploits1References10Affected Software1
Debian
Debian
added 2016/04/07 9:17 p.m.59 views

[SECURITY] [DSA 3546-1] optipng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3546-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 07, 2016 https://www.debian.org/security/faq -...

9.3CVSS7.1AI score0.05383EPSS
Exploits2
OpenVAS
OpenVAS
added 2016/04/07 12:0 a.m.30 views

Debian Security Advisory DSA 3546-1 (optipng - security update)

Hans Jerry Illikainen discovered that missing input sanitising in the BMP processing code of the optipng PNG optimiser may result in denial of service or the execution of arbitrary code if a malformed file is processed. OpenVAS Vulnerability Test $Id: deb3546.nasl 6608 2017-07-07 12:05:05Z cfisch...

9.3CVSS0.1AI score0.05383EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2015/11/08 12:0 a.m.38 views

Gentoo Security Advisory GLSA 201510-03

Gentoo Linux Local Security Checks GLSA 201510-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.8CVSS6.1AI score0.046EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/08/18 12:0 a.m.32 views

Amazon Linux AMI : wireshark (ALAS-2015-580)

Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file. CVE-2014-8714 , CVE-2014-8712 , CVE-2014-8713 , CVE-2014-8711 , CVE-2014-8710 , CVE-2015-0562 , CVE-2015-0564 ,...

5CVSS6.1AI score0.046EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2015/07/30 12:0 a.m.39 views

Oracle Linux 6 : wireshark (ELSA-2015-1460)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1460 advisory. - Resolves: CVE-2015-2189 CVE-2015-2191 - Resolves: CVE-2014-8710 CVE-2014-8711 CVE-2014-8712 CVE-2014-8713 CVE-2014-8714 CVE-2015-0562 CVE-2015-0564...

5CVSS6.4AI score0.046EPSS
Exploits0References10
Oracle linux
Oracle linux
added 2015/07/28 12:0 a.m.49 views

wireshark security, bug fix, and enhancement update

1.8.10-17.0.2 - Fix ocfs2 dissector John Haxby orabug 21505640 1.8.10-17.0.1.el6 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-17 - security patches - Resolves: CVE-2015-2189 CVE-2015-2191 1.8.10-16 - security patches - Resolves: CVE-2014-8710 CVE-2014-8711...

5CVSS0.3AI score0.046EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/07/23 12:0 a.m.34 views

RedHat Update for wireshark RHSA-2015:1460-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.2AI score0.046EPSS
Exploits0References2
Debian
Debian
added 2015/04/22 9:45 a.m.37 views

[SECURITY] [DLA 198-1] wireshark security update

Package : wireshark Version : 1.8.2-5wheezy15deb6u1 CVE ID : CVE-2015-2191 CVE-2015-2188 CVE-2015-0564 CVE-2015-0562 CVE-2014-8714 CVE-2014-8713 CVE-2014-8712 CVE-2014-8711 CVE-2014-8710 CVE-2014-6432 CVE-2014-6431 CVE-2014-6430 CVE-2014-6429 CVE-2014-6428 CVE-2014-6423 CVE-2014-6422 The followin...

5CVSS6.8AI score0.04422EPSS
Exploits0
securityvulns
securityvulns
added 2015/04/09 12:0 a.m.78 views

[SECURITY] [DSA 3210-1] wireshark security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3210-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 31, 2015 http://www.debian.org/security/faq -...

5CVSS1.5AI score0.046EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/04/02 12:0 a.m.30 views

SuSE 11.3 Security Update : wireshark (SAT Patch Number 10444)

Wireshark was updated to version 1.10.13 fixing bugs and security issues : The following security issues have been fixed. - The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 bnc920696 - The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 bnc920697 - The TNEF dissector...

5CVSS6.2AI score0.046EPSS
Exploits0References9
Debian
Debian
added 2015/03/31 5:31 p.m.41 views

[SECURITY] [DSA 3210-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3210-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 31, 2015 http://www.debian.org/security/faq -...

5CVSS6.1AI score0.046EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/31 12:0 a.m.30 views

Mandriva Linux Security Advisory : wireshark (MDVSA-2015:183)

Updated wireshark package fixes security vulnerabilies : The WCP dissector could crash CVE-2015-2188. The pcapng file parser could crash CVE-2015-2189. The TNEF dissector could go into an infinite loop CVE-2015-2191. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

5CVSS5.8AI score0.046EPSS
Exploits0References4
Rows per page
Query Builder