RHEL 5 : curl (RHSA-2010:0273)

Updated curl packages that fix one security issue, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

Mandriva Update for clamav MDVSA-2010:082 (clamav)

Check for the Version of clamav OpenVAS Vulnerability Test Mandriva Update for clamav MDVSA-2010:082 clamav Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Linux Security Advisory : clamav (MDVSA-2010:082-1)

Multiple vulnerabilities has been found and corrected in clamav : ClamAV before 0.96 does not properly handle the 1 CAB and 2 7z file formats, which allows remote attackers to bypass virus detection via a crafted archive that is compatible with standard archive utilities CVE-2010-0098. The...

Memory corruption

The qtmdecompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service memory corruption and application crash via a crafted CAB archive that uses the Quantum aka .Q compression format. NOTE: some of these details are obtained from third party...

DEBIAN-CVE-2010-1311

The qtmdecompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service memory corruption and application crash via a crafted CAB archive that uses the Quantum aka .Q compression format. NOTE: some of these details are obtained from third party...

CVE-2010-1311

The qtmdecompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service memory corruption and application crash via a crafted CAB archive that uses the Quantum aka .Q compression format. NOTE: some of these details are obtained from third party...

CVE-2010-1311

The qtmdecompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service memory corruption and application crash via a crafted CAB archive that uses the Quantum aka .Q compression format. NOTE: some of these details are obtained from third party...

Memory corruption

Disk Images in Apple Mac OS X before 10.6.3 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted disk image with bzip2 compression...

CVE-2010-0065

Disk Images in Apple Mac OS X before 10.6.3 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted disk image with bzip2 compression...

curl: zlib-compression causes curl to pass more than CURL_MAX_WRITE_SIZE bytes to write callback

contentencoding.c in libcurl 7.10.5 through 7.19.7, when zlib is enabled, does not properly restrict the amount of callback data sent to an application that requests automatic decompression, which might allow remote attackers to cause a denial of service application crash or have unspecified othe...

[SECURITY] Fedora 11 Update: tar-1.22-5.fc11

The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...

[SECURITY] Fedora 13 Update: libpng-1.2.43-1.fc13

The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm. Libpng...

[SECURITY] Fedora 12 Update: tar-1.22-12.fc12

The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...

[SECURITY] Fedora 13 Update: tar-1.22-16.fc13

The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...

Plug horse code is space-separated solutions-vulnerability warning-the black bar safety net

Some time ago, the new cloud management system, dynamic network Forum get a WEBSHELL and this, today, we discuss this aspect of things, in fact, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case?...

Design/Logic Flaw

The pngdecompresschunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of...

Windows Media Player PNG Processing (CVE-2004-1244)

Windows Media Player supports rendering of the Portable Network Graphics PNG images. The PNG specification defines a file format that provides a lossless, portable, image compression. Windows Media Player 9 contains a core library wmp.dll for handling the decoding of PNG image files. A...

Fedora Update for gzip FEDORA-2010-0884

Check for the Version of gzip OpenVAS Vulnerability Test Fedora Update for gzip FEDORA-2010-0884 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for gzip FEDORA-2010-0964

Check for the Version of gzip OpenVAS Vulnerability Test Fedora Update for gzip FEDORA-2010-0964 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

In ASP the database insert webshell small conference-vulnerability warning-the black bar safety net

Some time ago, the new cloud management system, dynamic network Forum get a WEBSHELL and this, today, we discuss this aspect of things, in fact, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case?...