[SECURITY] Fedora 27 Update: libtiff-4.0.10-1.fc27

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...

openSUSE Security Update : libmatroska / mkvtoolnix (openSUSE-2018-1432)

This update for libmatroska, mkvtoolnix fixes the following issues : Security issue fixed : - CVE-2018-4022: Fixed use-after-free vulnerability that existed in the way MKV matroska file format was handled bsc1113709. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Security update for libmatroska, mkvtoolnix (low)

This update for libmatroska, mkvtoolnix fixes the following issues: Security issue fixed: - CVE-2018-4022: Fixed use-after-free vulnerability that existed in the way MKV matroska file format was handled bsc1113709...

[SECURITY] Fedora 27 Update: zchunk-0.9.14-1.fc27

zchunk is a compressed file format that splits the file into independent chunks. This allows you to only download the differences when downloading a new version of the file, and also makes zchunk files efficient over rsync. zchunk files are protected with strong checksums to verify that the file...

[SECURITY] Fedora 29 Update: zchunk-0.9.14-1.fc29

zchunk is a compressed file format that splits the file into independent chunks. This allows you to only download the differences when downloading a new version of the file, and also makes zchunk files efficient over rsync. zchunk files are protected with strong checksums to verify that the file...

BlazeDVD Pro 7.0.2.0 suffers from a buffer overflow vulnerability

BlazeVideo is a company dedicated to the development, production and marketing of multimedia entertainment applications for PCs and mobile devices. A buffer overflow vulnerability exists in BlazeDVD Pro 7.0.2.0, which stems from a failure to perform checksums when processing parsed PLF files, and...

RHEL 7 : libmspack (RHSA-2018:3327)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3327 advisory. The libmspack packages contain a library providing compression and extraction of the Cabinet CAB file format used by Microsoft. Security...

USN-3804-1: OpenJDK vulnerabilities

It was discovered that the Security component of OpenJDK did not properly ensure that manifest elements were signed before use. An attacker could possibly use this to specially construct an untrusted Java application or applet that could escape sandbox restrictions. CVE-2018-3136 Artem Smotrakov...

Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Any Sound Recorder 2.93 Buffer Overflow SEH', 'Description' = %q This module exploits a stack based buffer overflow in Any Sound...

AnySoundRecorder 2.93 - Buffer Overflow Local (SEH) Exploit

Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Any Sound Recorder 2.93 Buffer Overflow SEH', 'Description' = %q This module...

Design/Logic Flaw

A use-after-free vulnerability exists in the way MKVToolNix MKVINFO v25.0.0 handles the MKV matroska file format. A specially crafted MKV file can cause arbitrary code execution in the context of the current user...

CVE-2018-4022

A use-after-free vulnerability exists in the way MKVToolNix MKVINFO v25.0.0 handles the MKV matroska file format. A specially crafted MKV file can cause arbitrary code execution in the context of the current user...

CVE-2018-4022

A use-after-free vulnerability exists in the way MKVToolNix MKVINFO v25.0.0 handles the MKV matroska file format. A specially crafted MKV file can cause arbitrary code execution in the context of the current user...

MKVToolNix MKVINFO read_one_element code execution vulnerability

Summary A use-after-free vulnerability exists in the way MKVToolNix MKVINFO v25.0.0 handles the MKV matroska file format. A specially crafted MKV file can cause arbitrary code execution in the context of the current user. Tested Versions MKVToolNix mkvinfo v25.0.0 ‘Prog Noir’ 64-bit Product URLs...

VLC Media Player 2.2.8 MKV Use-After-Free

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VLC Media Player MKV Use After Free', 'Description' = %q This module exploits a use after free vulnerability in VideoLAN VLC = MSFLICENSE, 'Autho...

CVE-2018-3981

An exploitable out-of-bounds write exists in the TIFF-parsing functionality of Canvas Draw version 5.0.0. An attacker can deliver a TIFF image to trigger this vulnerability and gain code execution...

Atlantis Word Processor document endnote reference code execution vulnerability

Summary An exploitable arbitrary write vulnerability exists in the Word document parser of the Atlantis word processor. A specially crafted document can prevent Atlas from adding elements to an array that is indexed by a loop. When reading from this array, the application will use an out-of-bound...

DEBIAN-CVE-2018-14679

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service uninitialized data dereference and application crash...

DEBIAN-CVE-2018-14451

An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp...

PT-2018-12495 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: MP4v2 version 2.0.0 Description: The issue arises from the MP4NameFirstMatches function in mp4util.cpp, which incorrectly handles substrings of atom names. This mishandling leads to the use of an inappropriate data type for associated atoms,...