1087 matches found
Ubuntu Update for emacs21, emacs22 vulnerabilities USN-607-1
Ubuntu Update for Linux kernel vulnerabilities USN-607-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6071.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for emacs21, emacs22 vulnerabilities USN-607-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : emacs21, emacs22 vulnerabilities (USN-607-1)
It was discovered that Emacs did not account for precision when formatting integers. If a user were tricked into opening a specially crafted file, an attacker could cause a denial of service or possibly other unspecified actions. This issue does not affect Ubuntu 8.04. CVE-2007-6109 Steve Grubb...
Design/Logic Flaw
The GENERATESEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems, performs a multiplication that generates a portion of zero bits during conversion due to insufficient precision, which produces 24 bits of entropy and simplifies brute force attacks against...
USN-607-1: Emacs vulnerabilities
It was discovered that Emacs did not account for precision when formatting integers. If a user were tricked into opening a specially crafted file, an attacker could cause a denial of service or possibly other unspecified actions. This issue does not affect Ubuntu 8.04. CVE-2007-6109 Steve Grubb...
Debian Security Advisory DSA 1111-2 (kernel-source-2.6.8 et. al.)
The remote host is missing an update to kernel-source-2.6.8 et. al. announced via advisory DSA 1111-2. OpenVAS Vulnerability Test $Id: deb11112.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1111-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft...
Debian Security Advisory DSA 1082-1 (kernel-2.4.17)
The remote host is missing an update to kernel-image-2.4.17-hppa kernel-image-2.4.17-ia64 kernel-image-2.4.17-s390 kernel-patch-2.4.17-apus kernel-patch-2.4.17-mips kernel-patch-2.4.17-s390 kernel-source-2.4.17 announced via advisory DSA 1082-1. OpenVAS Vulnerability Test $Id: deb10821.nasl 6616...
DEBIAN-CVE-2007-6109
Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service application crash and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval...
No title provided
The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...
Heap overflow
The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...
CVE-2007-4661
CVE-2007-4661 affects PHP 5.2.3: the chunk_split function miscomputes the required buffer size due to precision loss in floating point arithmetic, which can lead to a heap-based buffer overflow. The description notes this stems from an incomplete fix for CVE-2007-2872 and lists the impact as unkn...
[SECURITY] [DSA 1347-1] New xpdf packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1347-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 4th, 2007 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1248-1] New libsoup packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1248-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 12nd, 2007 http://www.debian.org/security/faq -...
Security aspects of time synchronization infrastructure
A large number of services on modern corporate network require time to be synchronized within network or with absolute time and may fail if there are any problems with time synchronization. Below are just few examples of services and required time precision. For synchronization within network:...
DEBIAN-CVE-2006-6499
The jsdtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers to cause a denial of service via any plugins tha...
CVE-2006-6499
The jsdtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers to cause a denial of service via any plugins tha...
CVE-2006-6499
The jsdtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers to cause a denial of service via any plugins tha...
PT-2006-7103 · Mozilla +1 · Firefox +3
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 2.x before 2.0.0.1 Mozilla Firefox versions 1.5.x before 1.5.0.9 Thunderbird versions before 1.5.0.9 SeaMonkey versions before 1.0.7 Description: The js dtoa function overwrites memory instead of exiting when the...
[SECURITY] [DSA 1226-1] New links packages fix arbitrary shell command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1226-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 3rd, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1111-2] New Linux kernel 2.6.8 packages fix privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 1111-2 [email protected] http://www.debian.org/security/ Dann Frazier July 26th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1111-1] New Linux kernel 2.6.8 packages fix privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 1111-1 [email protected] http://www.debian.org/security/ Dann Frazier Jul 16th, 2006 http://www.debian.org/security/faq -...