[SECURITY] Fedora 7 Update: speex-1.2-0.3.beta1

Speex is a patent-free compression format designed especially for speech. It is specialized for voice communications at low bit-rates in the 2-45 kbps range. Possible applications include Voice over IP VoIP, Internet audio streaming, audio books, and archiving of speech data e.g. voice mail...

[SECURITY] Fedora 8 Update: speex-1.2-0.4.beta2

Speex is a patent-free compression format designed especially for speech. It is specialized for voice communications at low bit-rates in the 2-45 kbps range. Possible applications include Voice over IP VoIP, Internet audio streaming, audio books, and archiving of speech data e.g. voice mail...

Speex: User-assisted execution of arbitrary code

Background Speex is an audio compression format designed for speech that is free of patent restrictions. Description oCERT reported that the Speex library does not properly validate the "mode" value it derives from Speex streams, allowing for array indexing vulnerabilities inside multiple player...

Important: Red Hat Security Advisory: speex security update

Updated speex packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Speex is a patent-free compression format designed especially for...

Debian DSA-1537-1 : xpdf - several vulnerabilities

Alin Rad Pop Secunia discovered a number of vulnerabilities in xpdf, a set of tools for display and conversion of Portable Document Format PDF files. The Common Vulnerabilities and Exposures project identifies the following three problems : - CVE-2007-4352 Inadequate DCT stream validation allows ...

[SECURITY] Fedora 8 Update: bzip2-1.0.4-13.fc8

Bzip2 is a freely available, patent-free, high quality data compressor. Bzip2 compresses files to within 10 to 15 percent of the capabilities of the best techniques available. However, bzip2 has the added benefit of being approximately two times faster at compression and six times faster at...

Debian: Security Advisory (DSA-1515-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1515-1 (libnet-dns-perl)

The remote host is missing an update to libnet-dns-perl announced via advisory DSA 1515-1. OpenVAS Vulnerability Test $Id: deb15151.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1515-1 libnet-dns-perl Authors: Thomas Reinke Copyright: Copyright c 2008...

Debian DSA-1515-1 : libnet-dns-perl - several vulnerabilities

Several remote vulnerabilities have been discovered in libnet-dns-perl. The Common Vulnerabilities and Exposures project identifies the following problems : It was discovered that libnet-dns-perl generates very weak transaction IDs when sending queries CVE-2007-3377 . This update switches...

DSA-1515-1 libnet-dns-perl - several vulnerabilities

Bulletin has no description...

[SECURITY] Fedora 8 Update: lighttpd-1.4.18-6.fc8

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...

[SECURITY] Fedora 7 Update: lighttpd-1.4.18-3.fc7

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...

EMC RepliStor远程堆溢出漏洞

BUGTRAQ ID: 27915 CVECAN ID: CVE-2008-6426 EMC RepliStor是实时容灾备份解决方案。 EMC RepliStor处理畸形请求数据时存在漏洞，远程攻击者可能利用此漏洞控制服务器。 EMC RepliStor中负责执行压缩的代码未经考虑目标缓冲区的大小便解压了数据，这可能触发堆溢出，导致以RepliStor Server或Control Server的权限（通常为SYSTEM）执行任意指令。攻击者无需认证便可以触发这些漏洞，但必须要能够连接到目标服务器的TCP 7144或7145端口。 EMC RepliStor 6.2 SP2 厂商补丁：...

ASP database plug horse small conference-vulnerability warning-the black bar safety net

By lake2 （ http://lake2.0x54.org ） With the development of technology, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case? i.e. insertion of each of the characters between the There are spaces for?...

DSA-1471-1 libvorbis - several vulnerabilities

Bulletin has no description...

Debian Security Advisory DSA 752-1 (gzip)

The remote host is missing an update to gzip announced via advisory DSA 752-1. Two problems have been discovered in gzip, the GNU compression utility. The Common Vulnerabilities and Exposures project identifies the following problems. CVE-2005-0988 Imran Ghory discovered a race condition in the...

Debian Security Advisory DSA 1026-1 (sash)

The remote host is missing an update to sash announced via advisory DSA 1026-1. Markus Oberhumer discovered a flaw in the way zlib, a library used for file compression and decompression, handles invalid input. This flaw can cause programs which use zlib to crash when opening an invalid file. A...

Debian: Security Advisory (DSA-763-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 122-1 (zlib, various)

The remote host is missing an update to zlib, various announced via advisory DSA 122-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Binn SBuilder (nid) Remote Blind Sql Injection Vulnerabily

Info: Software: Binn SBuilder HomePage: http://www.cms.ge/ Exploit: Blind Sql Injection High Where: fulltext.php?nid= Bug Found By: JosS Contact: sys-projectathotmail.com Web: http://www.spanish-hackers.com Dork: "Powered by CMS.GE" Dork2: priv8! + Important tables and columns: Tables: Table:...