[SECURITY] Fedora 25 Update: jasper-1.900.1-33.fc25

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

SUSE-SU-2016:2271-1 Security update for tiff

This update for tiff fixes the following issues: CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for invalid images bsc964225 CVE-2016-3186: Buffer overflow in gif2tiff bnc973340. CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat bsc987351...

Libtorrent 'inflate_gzip' denial of service vulnerability

libtorrent is an open source C++ Bittorrent library , it provides high performance and good code style of the BT development package , and supports directly through the network stack to grab the file page . A denial of service vulnerability exists in Libtorrent 1.1.0, which causes a denial of...

Hand to hand teach you how to construct the office exploits EXP（the second period）-bug warning-the black bar safety net

On a period I shared office classic Vulnerability CVE-2 0 1 2-0 1 5 8 that demonstrates how a stack-based buffer overflow in the principles of construction to trigger the vulnerability document. The current share of the vulnerability is CVE-2 0 1 3-3 9 0 6, is also a typical overflow type office...

[SECURITY] Fedora 23 Update: borgbackup-1.0.7-1.fc23

BorgBackup short: Borg is a deduplicating backup program. Optionally, it supports compression and authenticated encryption...

[SECURITY] Fedora 24 Update: borgbackup-1.0.7-1.fc24

BorgBackup short: Borg is a deduplicating backup program. Optionally, it supports compression and authenticated encryption...

[SECURITY] Fedora 25 Update: borgbackup-1.0.7-1.fc25

BorgBackup short: Borg is a deduplicating backup program. Optionally, it supports compression and authenticated encryption...

Does your WebCam Crash after Windows 10 Anniversary Update? Here’s How to Fix It

If your webcam has stopped working after installing recently-released Microsoft's big Anniversary Update for Windows 10, you are not alone. With some significant changes to improve Windows experience, Windows 10 Anniversary Update includes the support for webcams that has rendered a number of...

Rupture - A framework for BREACH and other compression-based crypto attacks

Rupture is a framework for easily conducting BREACH and other compression-based attacks. For more information, please visit Rupture's home page: RuptureIt Authors Rupture is developed by: Dimitris Karakostas [email protected] Dionysis Zindros [email protected] Eva Sarafianou...

Microsoft Windows - GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic Out-of-Bounds Write (MS16-097)

Microsoft Windows - GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic Out-of-Bounds Write MS16-097 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=824 The GDI+ library can handle bitmaps originating from untrusted sources through a variety of attack vectors, like EMF...

Microsoft Windows - GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic Out-of-Bounds Write (MS16-097)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=824 The GDI+ library can handle bitmaps originating from untrusted sources through a variety of attack vectors, like EMF files, which may embed bitmaps in records such as EMRPLGBLT, EMRBITBLT, EMRSTRETCHBLT, EMRSTRETCHDIBITS etc. T...

[SECURITY] Fedora 24 Update: mingw-xz-5.2.2-3.fc24

XZ Utils are an attempt to make LZMA compression easy to use on free as in freedom operating systems. This is achieved by providing tools and librari es which are similar to use than the equivalents of the most popular existing compression algorithms. LZMA is a general purpose compression algorit...

[SECURITY] Fedora 24 Update: jasper-1.900.1-33.fc24

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

[SECURITY] Fedora 23 Update: lighttpd-1.4.41-1.fc23

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...

WordPress Cross-Site Request Forgery Vulnerability (CNVD-2016-06200)

WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in the 'wpajaxwpcompressiontest' function in the...

DEBIAN-CVE-2016-6635

Cross-site request forgery CSRF vulnerability in the wpajaxwpcompressiontest function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the wpajaxwpcompressiontest function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option...

CVE-2016-6635

Cross-site request forgery CSRF vulnerability in the wpajaxwpcompressiontest function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option...

UBUNTU-CVE-2016-6635

Cross-site request forgery CSRF vulnerability in the wpajaxwpcompressiontest function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option...

CVE-2016-6635

Cross-site request forgery CSRF vulnerability in the wpajaxwpcompressiontest function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option...