8 matches found
OPENSUSE-SU-2026:20857-1 Security update for mapserver
This update for mapserver fixes the following issues: Changes in mapserver: - Update to releasee 8.6.3 SLD parser: fix out of bounds access on SLD with only a Rule with a ElseFilter but without a symbolizer CVE-2026-33721, boo1260869 CVE-2026-45104, boo1266663...
[SECURITY] [DLA 4537-1] mapserver security update
Debian LTS Advisory DLA-4537-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin April 17, 2026 https://wiki.debian.org/LTS Package : mapserver Version : 7.6.2-1+deb11u2 CVE ID : CVE-2026-33721 A heap-buffer-overflow was found in mapserver, a CGI-based framework for...
Fedora: Security Advisory (FEDORA-2026-178c482e71)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2026-6d7e0a8b45)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 43 : mapserver (2026-6d7e0a8b45)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-6d7e0a8b45 advisory. Backport fix for CVE-2026-33721. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
libjavamapscript-8.6.1-1.1 on GA media (moderate)
libjavamapscript-8.6.1-1.1 on GA media Announcement ID: openSUSE-SU-2026:10452-1 Rating: moderate Cross-References: CVE-2026-33721 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
SUSE CVE-2026-33721
MapServer is a system for developing web-based GIS applications. Starting in version 4.2 and prior to version 8.6.1, a heap-buffer-overflow write in MapServer's SLD Styled Layer Descriptor parser lets a remote, unauthenticated attacker crash the MapServer process by sending a crafted SLD with mor...
CVE-2026-33721
MapServer is a system for developing web-based GIS applications. Starting in version 4.2 and prior to version 8.6.1, a heap-buffer-overflow write in MapServer’s SLD Styled Layer Descriptor parser lets a remote, unauthenticated attacker crash the MapServer process by sending a crafted SLD with mor...