Debian Security Advisory DSA 3766-1 (mapserver - security update)

It was discovered that mapserver, a CGI-based framework for Internet map services, was vulnerable to a stack-based overflow. This issue allowed a remote user to crash the service, or potentially execute arbitrary code. OpenVAS Vulnerability Test $Id: deb3766.nasl 6607 2017-07-07 12:04:25Z cfische...

DSA-3766-1 mapserver - security update

Bulletin has no description...

Debian: Security Advisory (DSA-3766-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 25 : mapserver (2016-04c687d2aa)

Security fix for CVE-2016-9839 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

Fedora 24 : mapserver (2016-cb03b6b70f)

Security fix for CVE-2016-9839 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

Fedora Update for mapserver FEDORA-2016-cb03b6b70f

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for mapserver FEDORA-2016-04c687d2aa

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MapServer < 7.0.3 Information Disclosure Vulnerability

MapServer is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:osgeo:mapserver";...

[SECURITY] Fedora 24 Update: mapserver-6.2.3-1.fc24

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

[SECURITY] Fedora 25 Update: mapserver-7.0.3-1.git0f9ece8.fc25

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

MapServer Information Disclosure Vulnerability

MapServer is a C-based open source map data rendering engine developed by the University of Minnesota USA, which can be used to display spatial data and to realize interactive map applications on the Web e.g., creating "geographic image maps". An information disclosure vulnerability exists in the...

DEBIAN-CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

Design/Logic Flaw

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

CVE-2016-9839

CVE-2016-9839 affects MapServer versions prior to 7.0.3, where OGR driver error messages may leak sensitive information when data connections fail. The vulnerability arises from overly verbose error output. In published advisories, Fedora/OpenVAS entries describe a security fix and map the issue ...

CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

CVE-2016-9839

In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails...

PT-2016-7839 · Mapserver · Mapserver

Name of the Vulnerable Software and Affected Versions: MapServer versions prior to 7.0.3 Description: The issue is related to the OGR driver in MapServer, where error messages are too verbose. This verbosity may lead to the leakage of sensitive information if a data connection fails...