[SECURITY] Fedora 11 Update: jasper-1.900.1-13.fc11

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

[SECURITY] Fedora 10 Update: jasper-1.900.1-13.fc10

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

Microsoft Office Art Property Table Memory Corruption

Added: 10/22/2009 CVE: CVE-2009-2528 BID: 36650 OSVDB: 58869 Background Microsoft Office is a package that provides word processing, spreadsheet, presentation, e-mail, and calendaring capabilities for Microsoft Windows workstations. MS Office XP 2002 and MS Office 2000 use the Microsoft Windows...

Heap overflow

Microsoft Windows Media Runtime, as used in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager ACM, does not properly initialize unspecified functions within compressed audio files, which allows remote attackers to execute arbitrary code via 1 a crafted...

Windows GDI+ TIFF memory corruption

There is a memory corruption vulnerability in TIFF file processing in Microsoft GDI+ that can be used to crash a vulnerable application and also to execute arbitrary code. The vulnerability The vulnerability is caused due to errors in decompression of CCITT G4 compressed TIFF images. CCITT...

Microsoft Windows Media Runtime File Compression Remote Memory Corruption Vulnerability

Description Microsoft Windows Media Runtime is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affecte...

MS09-051: Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)

The remote Windows host contains a version of the Windows Media Runtime that is affected by multiple vulnerabilities : - The ASF parser incorrectly parses files which make use of the Window Media Speech codec. A remote attacker can exploit this by tricking a user into opening a specially crafted...

Microsoft Windows MP3 File Media Playback Memory Corruption (MS09-047; CVE-2009-2499)

MPEG-1 Audio Layer 3 MP3 is a file format which uses lossy compression to compress audio information. A remote code execution vulnerability has been reported in the way Microsoft Windows handles specially crafted MP3 media files. The vulnerability is due the Windows component responsible for...

[SECURITY] Fedora 10 Update: perl-Compress-Raw-Bzip2-2.020-1.fc10

This module provides a Perl interface to the bzip2 compression library. It is used by IO::Compress::Bzip2...

[SECURITY] Fedora 11 Update: perl-Compress-Raw-Bzip2-2.020-1.fc11

This module provides a Perl interface to the bzip2 compression library. It is used by IO::Compress::Bzip2...

DEBIAN-CVE-2009-1722

Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via unspecified vectors...

VMSA-2008-0017 : Updated ESX packages for libxml2, ucd-snmp, libtiff

a. Updated ESX Service Console package libxml2 A denial of service flaw was found in the way libxml2 processes certain content. If an application that is linked against libxml2 processes malformed XML content, the XML content might cause the application to stop responding. The Common...

libtiff security update

CentOS Errata and Security Advisory CESA-2009:1159 Updated libtiff packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libtiff packages contai...

RHEL 4 / 5 : libtiff (RHSA-2009:1159)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:1159 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Several integer overflow flaws...

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

DEBIAN-CVE-2009-1891

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

Microsoft DNS Server Internal Hostname Disclosure Detection

Microsoft DNS server might be prone to an internal hostname disclosure. SPDX-FileCopyrightText: 2009 Tim Brown Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Core 9 FEDORA-2009-6603 (libpng)

The remote host is missing an update to libpng announced via advisory FEDORA-2009-6603. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

VulnCheck KEV: CVE-2009-1391

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service hang or crash via a crafted zlib compressed stream that triggers a...

CVE-2009-2027

The Installer in Apple Safari before 4.0 on Windows allows local users to gain privileges by checking a box that specifies an immediate launch of the application after installation, related to an unspecified compression method...