SUSE CVE-2011-0989

The RuntimeHelpers.InitializeArray method in metadata/icall.c in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, does not properly restrict data types, which allows remote attackers to modify internal read-only data structures, and cause a denial of service plugin crash or...

openSUSE Security Update : libmoon-devel (openSUSE-SU-2011:0313-1)

Moonlight was prone to several security problems : CVE-2011-0989: modification of read-only values via RuntimeHelpers.InitializeArray CVE-2011-0990: buffer overflow due to race condition in in Array.FastCopy CVE-2011-0991: use-after-free due to DynamicMethod resurrection CVE-2011-0992: informatio...

CVE-2011-0989

The RuntimeHelpers.InitializeArray method in metadata/icall.c in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, does not properly restrict data types, which allows remote attackers to modify internal read-only data structures, and cause a denial of service plugin crash or...

SuSE 11.1 Security Update : moonlight (SAT Patch Number 4246)

Moonlight was prone to several security problems : - modification of read-only values via RuntimeHelpers.InitializeArray. CVE-2011-0989 - buffer overflow due to race condition in in Array.FastCopy. CVE-2011-0990 - use-after-free due to DynamicMethod resurrection. CVE-2011-0991 - information leak...