136 matches found
[SECURITY] [DLA 1734-1] libraw security update
Package : libraw Version : 0.16.0-9+deb8u4 CVE ID : CVE-2018-5800 CVE-2018-5801 CVE-2018-5802 CVE-2018-5808 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 Secunia Research has discovered multiple vulnerabilities in libraw, a raw image decoder library, which can be exploited to cause a Denial of Servic...
GLSA-201903-23 : Chromium: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201903-23 Chromium: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and Google Chrome. Please review the referenced CVE identifiers and Google Chrome Releases for details. Impact : Please review...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1062-1 Rating: important References: 1129059 Cross-References: CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796...
openSUSE: Security Advisory for chromium (openSUSE-SU-2019:0343-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:0343-1 Rating: important References: 1129059 Cross-References: CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796...
CVE-2019-5802
Incorrect handling of download origins in Navigation in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...
[ASA-201903-8] chromium: multiple issues
Arch Linux Security Advisory ASA-201903-8 ========================================= Severity: High Date : 2019-03-13 CVE-ID : CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798...
Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 73 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 73.0.3683.75 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming...
CVE-2018-5802
LibRaw contains an out-of-bounds read vulnerability in the kodak_radc_load_raw() function (internal/dcraw_common.cpp) due to a buf variable issue. This affects LibRaw versions prior to 0.18.7 and can lead to a crash. Remediation: upgrade LibRaw to version 0.18.7 or later (as specified in the CVE ...
CVE-2018-5802
An error within the "kodakradcloadraw" function internal/dcrawcommon.cpp related to the "buf" variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash...
Scientific Linux Security Update : libkdcraw on SL7.x x86_64 (20181030)
LibRaw: Stack-based buffer overflow in quicktake100loadraw function in internal/dcrawcommon.cpp CVE-2018-5805 LibRaw: Heap-based buffer overflow in LibRaw::kodakycbcrloadraw function in internal/dcrawcommon.cpp CVE-2018-5800 LibRaw: NULL pointer dereference in LibRaw::unpack function...
libkdcraw security update
CentOS Errata and Security Advisory CESA-2018:3065 An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...
Moderate: Red Hat Security Advisory: libkdcraw security update
An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
SUSE SLED12 Security Update : libraw (SUSE-SU-2018:3343-1)
This update for libraw fixes the following issues : Security issues fixed : CVE-2018-5800: Fixed heap-based buffer overflow in LibRaw::kodakycbcrloadraw function bsc1084691. CVE-2018-5801: Fixed NULL pointer dereference in LibRaw::unpack function bsc1084690. CVE-2018-5802: Fixed out-of-bounds rea...
Security Bulletin: SmartCloud Orchestrator - Multiple security vulnerabilities exist in the IBM SDK, Java™ Technology Edition (CVE-2013-5802, CVE-2013-5772, CVE-2014-0411)
Summary IBM SmartCloud Orchestrator is shipped with an IBM SDK that is based on Oracle JDK. Oracle released October 2013 and January 2014 critical patch updates CPU, which contain security vulnerability fixes. IBM SDK, Java™ Technology Edition, has been updated to include those fixes. The IBM SDK...
Security Bulletin:Tivoli Multiple vulnerabilities in Netcool/Impact (CVE-2013-5802,,CVE-2013-5825,CVE-2013-5372)
Summary Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with Netcool/Impact. Vulnerability Details Netcool/Impact is shipped with IBM WebSphere Application Server that includes an IBM SDK for Java that is based on the Oracle JDK. Oracle has released October 2013...
Security Bulletin: Multiple vulnerabilities in usage of IBM Java SDK in IBM Content Analytics with Enterprise Search and IBM OmniFind Enterprise Edition (CVE-2013-5802, CVE-2013-4002, CVE-2013-5825, CVE-2013-5372)
Summary Potential security vulnerabilities exist in the IBM Java SDK that is shipped with the IBM Content Analytics with Enterprise Search and IBM OmniFind Enterprise Edition products. Vulnerability Details CVE ID: CVE-2013-5802 DESCRIPTION: JRE vulnerable to denial of service attacks via malform...
Security Bulletin: Rational Insight - Oracle CPU October 2013 (CVE-2013-5802, CVE-2013-5825)
Summary Multiple security vulnerabilities exist in the IBM JRE that is shipped with Rational Insight. The same security vulnerabilities also exist in the IBM Java SDK that is shipped with the IBM WebSphere Application Server WAS. Vulnerability Details | Subscribe to My Notifications to be notifie...
Security Bulletin: Multiple Vulnerabilities in current IBM SDK for Java for IBM Rational ClearQuest Web Client (CVE-2013-5802 and CVE-2013-5825)
Summary IBM Rational ClearQuest Web server is sensitive to vulnerabilities in the IBM JRE supplied with IBM WebSphere Application Server. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information...
Security Bulletin: Multiple security vulnerabilities exist in WebSphere Transformation Extender (CVE-2013-5802 CVE-2013-4002 CVE-2013-5825 CVE-2013-5372 CVE-2013-0599 CVE-2013-0464 CVE-2013-0467 CVE-2013-2962 CVE-2013-2415)
Summary WebSphere Transformation Extender products are affected by multiple security vulnerabilities that exist in Oracle JRE and IBM Eclipse Help System. Additionally, WTX Launcher is vulnerable to a denial of service attack using a buffer overflow. Vulnerability Details WebSphere Transformation...