RHEL 2.1 : glibc (RHSA-2003:090)

Updated glibc packages are available to fix an integer overflow in the XDR decoder. The glibc package contains standard libraries which are used by multiple programs on the system. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a...

Gaim contains an off-by-one buffer overflow vulnerability in the gaim_quotedp_decode() function

Overview There is an off-by-one buffer overflow vulnerability in the Gaim MIME decoder. Description Gaim is a multi-protocol instant messenger available for a number of operating systems. It includes a feature that requires Gaim to decode MIME-encoded data. There is an off-by-one buffer overflow...

Xine 0.9.x and Xine-Lib 1 - Multiple Remote File Overwrite Vulnerabilities

Xine 0.9.x and Xine-Lib 1 - Multiple Remote File Overwrite Vulnerabilities source: https://www.securityfocus.com/bid/10193/info It has been reported that the xine media player and the xine media library are affected by multiple remote file overwrite vulnerabilities. This is due to a design error...

multiple vulnerabilities in ethereal

Stefan Esser of e-matters Security discovered a baker's dozen of buffer overflows in Ethereal's decoders, including: NetFlow IGAP EIGRP PGM IRDA BGP ISUP TCAP UCP In addition, a vulnerability in the RADIUS decoder was found by Jonathan Heusser. Finally, there is one uncredited vulnerability...

FreeBSD-SA-03:05.xdr

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:05.xdr Security Advisory The FreeBSD Project Topic: remote denial-of-service in XDR encoder/decoder Category: core Module: libc Announced: 2003-03-20 Credits:...

Critical: Red Hat Security Advisory: : Updated glibc packages fix vulnerabilities in RPC XDR decoder

Updated glibc packages are available to fix an integer overflow in the XDR decoder. The glibc package contains standard libraries that are used by multiple programs on the system. Sun RPC is a remote procedure call framework that allows clients to invoke procedures in a server process over a...

CVE-2003-0093

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...

CVE-2003-0093

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value...

CVE-2002-0036

Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value...

Important: Red Hat Security Advisory: krb5 security update

Updated Kerberos 5 packages are now available for Red Hat LInux Advanced Server. These updates fix a buffer overflow in the XDR decoder. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a network. XDR is a mechanism for encoding data...

Important: Red Hat Security Advisory: : : : Updated krb5 packages fix remote buffer overflow

Updated Kerberos 5 packages are now available for Red Hat Linux 6.2, 7, 7.1, 7.2, and 7.3. These updates fix a buffer overflow in the XDR decoder. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a network. XDR is a mechanism for...

Important: Red Hat Security Advisory: glibc security update

Updated glibc packages are available which fix a buffer overflow in the XDR decoder and two vulnerabilities in the resolver functions. updated 8 aug 2002 Updated packages have been made available, as the original errata introduced a bug which could cause calloc to crash on 32-bit platforms when...

FreeBSD-SA-02:34.rpc

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:34.rpc Security Advisory The FreeBSD Project Topic: Sun RPC XDR decoder contains buffer overflow Category: core Module: libc Announced: 2002-08-01 Credits: ISS X-Force...

PT-2004-3765 · Gtk+ · Gtk2 +1

Name of the Vulnerable Software and Affected Versions: gtk2 versions 2.4.4 and earlier gdk-pixbuf versions prior to 0.22 Description: The issue is related to multiple vulnerabilities in the gtk2 and gdk-pixbuf packages, which can lead to disruption of confidentiality, integrity, and availability ...

PT-2004-3767 · Gtk+ · Gtk2 +1

Name of the Vulnerable Software and Affected Versions: gdk-pixbuf versions prior to 0.22 gtk2 versions prior to 2.2.4 Description: The issue is related to an integer overflow in the ICO image decoder, which can be exploited by remote attackers to cause a denial of service, resulting in an...