Scientific Linux Security Update : icu on SL5.x, SL6.x i386/x86_64

The International Components for Unicode ICU library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially crafted locale representation was opened in an...

isc-dhcp -- multiple vulnerabilities

ISC reports: An unexpected client identifier parameter can cause the ISC DHCP daemon to segmentation fault when running in DHCPv6 mode, resulting in a denial of service to further client requests. In order to exploit this condition, an attacker must be able to send requests to the DHCP server. An...

DEBIAN-CVE-2012-0876

The XML parser xmlparse.c in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via an XML file with many identifiers with the same value...

CVE-2012-0876

The XML parser xmlparse.c in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via an XML file with many identifiers with the same value...

UBUNTU-CVE-2012-0876

The XML parser xmlparse.c in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via an XML file with many identifiers with the same value...

GLSA-201206-31 : Linux-PAM: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201206-31 Linux-PAM: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Linux-PAM. Please review the CVE identifiers referenced below for details. Impact : A local attacker could use specially crafted files ...

GLSA-201205-03 : Chromium, V8: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201205-03 Chromium, V8: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details. Impact : A context-dependent...

GLSA-201204-04 : FreeType: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201204-04 FreeType: Multiple vulnerabilities Multiple vulnerabilities have been discovered in FreeType. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to open a...

GLSA-201205-04 : Chromium, V8: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201205-04 Chromium, V8: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details. Impact : A context-dependent...

GLSA-201203-24 : Chromium, V8: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201203-24 Chromium, V8: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details. Impact : A context-dependent...

OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier allows remote attackers to affect integrity, related to CORBA...

CVE-2012-1875

creationtimestamp| type| source ---|---|--- 2012-06-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/19141 2013-11-12 10:29:19+00:00| seen| MISP/52820098-69f4-4415-b737-4635950d2109 2014-05-24 07:23:08+00:00| seen| MISP/53804616-c6a8-48ea-b511-dbf1950d210b 2018-05-29...

RHEL 5 : java-1.6.0-openjdk (RHSA-2012:0730)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0730 advisory. - OpenJDK: improper protection of CORBA data models CORBA, 7079902 CVE-2012-1711 - OpenJDK: fontmanager layout lookup code memory corruption...

OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier allows remote attackers to affect integrity, related to CORBA...

RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2012:0514)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0514 advisory. - OpenJDK: JavaSound incorrect bounds check Sound, 7088367 CVE-2011-3563 - GlassFish: hash table collisions CPU usage DoS oCERT-2011-003...

CVE-2012-4876

creationtimestamp| type| source ---|---|--- 2012-03-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18675 2012-04-06 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18709 2018-05-29 15:50:33+00:00| seen|...

Debian DSA-2420-1 : openjdk-6 - several vulnerabilities

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform. - CVE-2011-3377 The IcedTea browser plugin included in the openjdk-6 package does not properly enforce the Same Origin Policy on web content served under a domain name which has a common suffix...

Adobe Shockwave Player Multiple Vulnerabilities (Feb 2012) - Windows

Adobe Shockwave Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

openssl: malformed RFC 3779 data can cause assertion failures

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

GLSA-201201-17 : Chromium: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201201-17 Chromium: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details. Impact : A remote attacker could entice a us...