[SECURITY] Fedora 26 Update: libmspack-0.6-0.1.alpha.fc26

The purpose of libmspack is to provide both compression and decompression of some loosely related file formats used by Microsoft...

Smush Image Compression and Optimization <= 2.7.5 - File Transversal

The Smush – Lazy Load Images, Optimize & Compress Images WordPress plugin was affected by a File Transversal security vulnerability...

[SECURITY] Fedora 26 Update: jasper-2.0.14-1.fc26

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

OpenJPEG Heap Overflow Vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A heap overflow vulnerability exists in the opjcompress component of OpenJPEG, which could be exploited by a remote attacker to conduct a denial of service attack or remotely execute arbitrary code by constructing a specially crafted BMP image...

7z's LZMA compression algorithm with Bitdefender heap buffer overflow vulnerability-vulnerability warning-the black bar safety net

Previously, in order to write that article about 7z PPMD compression algorithm vulnerability of the articles, I read a lot of the 7-Zip source code, and found a lot of very valuable information, this information can better help my analysis of anti virus products, vulnerability in it. So, I'm read...

MGASA-2017-0291 Updated clamav packages fix security vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service CVE-2017-6418. It was discovered that ClamAV incorrectly handled parsing certain PE files with WWPack...

Updated clamav packages fix security vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service CVE-2017-6418. It was discovered that ClamAV incorrectly handled parsing certain PE files with WWPack...

[SECURITY] [DSA 3946-1] libmspack security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3946-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 18, 2017 https://www.debian.org/security/faq -...

Ubuntu 14.04 LTS / 16.04 LTS : ClamAV vulnerabilities (USN-3393-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3393-1 advisory. It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause...

The vulnerabilities of the antivirus software programs Quick Heal Internet Security, Quick Heal Total Security, and Quick Heal AntiVirus Pro allow attackers to escalate their privileges and execute arbitrary code.

The vulnerability of anti-virus software programs such as Quick Heal Internet Security, Quick Heal Total Security, and Quick Heal AntiVirus Pro arises from writing beyond the buffer boundaries in dynamic memory. This vulnerability exists due to insufficient checking of the dwCompressionSize...

USN-3393-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2017-6418 It was discovered that ClamAV incorrectly handled certain malformed CHM files. A remote...

loguru

...

HTTP Load Generator: hey

hey is a tiny program that sends some load to a web application – ApacheBench ab replacement. hey was originally called boom and was influenced from Tarek Ziade’s tool at tarekziade/boom . Installation go get -u github.com/rakyll/hey Note: Requires go 1.7 or greater. Usage hey runs provided numbe...

Linux Ad & Malware Blocking Script: Hostsblock

Hostsblock is a bash script designed to take advantage of /etc/hosts file to provide system-wide blocking of internet advertisements, malicious domains, trackers, and other undesirable content. To do so, it downloads a configurable set of blocklists and processes their entries into a single...

EulerOS 2.0 SP1 : openssh (EulerOS-SA-2017-1138)

According to the version of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is...

CVE-2017-6420

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service use-after-free via a crafted PE file with WWPack compression...

Design/Logic Flaw

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service use-after-free via a crafted PE file with WWPack compression...

CVE-2017-6420

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service use-after-free via a crafted PE file with WWPack compression...

DEBIAN-CVE-2017-6420

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service use-after-free via a crafted PE file with WWPack compression...

CVE-2017-6420

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service use-after-free via a crafted PE file with WWPack compression...