Moderate: Red Hat Security Advisory: libexif security update

Updated libexif packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif library. Exif is an image file format specificatio...

DEBIAN-CVE-2006-7226

Perl-Compatible Regular Expression PCRE library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of...

CVE-2006-7226

Perl-Compatible Regular Expression PCRE library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of...

pcre miscalculation of memory requirements for repeated subpattern containing a named recursion or subroutine reference

Perl-Compatible Regular Expression PCRE library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of...

pcre miscalculation of memory requirements for repeated subpattern containing a named recursion or subroutine reference

Perl-Compatible Regular Expression PCRE library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of...

Ubuntu 5.10 : tetex-bin vulnerability (USN-410-2)

USN-410-1 fixed vulnerabilities in the poppler PDF loader library. This update provides the corresponding updates for a copy of this code in tetex-bin in Ubuntu 5.10. Versions of tetex-bin after Ubuntu 5.10 use poppler directly and do not need a separate update. The poppler PDF loader library did...

Ubuntu 5.10 / 6.06 LTS / 6.10 : kdegraphics, koffice, poppler vulnerability (USN-410-1)

The poppler PDF loader library did not limit the recursion depth of the page model tree. By tricking a user into opening a specially crafter PDF file, this could be exploited to trigger an infinite loop and eventually crash an application that uses this library. kpdf in Ubuntu 5.10, and KOffice i...

Fedora 7 : bind-9.4.1-7.P1.fc7 (2007-1247)

CVE-2007-2925 - allow-query-cache/allow-recursion default acls not set - workaround - disable recursion or explicitly set allow-query-cache and allow-recursion acls - CVE-2007-2926 - cryptographically weak query id generator - 1 in 8 chance of guessing the next query id for 50% of the query ids -...

DNS Recursion bandwidth amplification Denial of Service PoC

Exploit for multiple platform in category dos / poc =========================================================== DNS Recursion bandwidth amplification Denial of Service PoC =========================================================== !/usr/bin/perl Get Net::RawIP at...

DNS Recursion Bandwidth Amplification - Denial of Service (PoC)

!/usr/bin/perl Get Net::RawIP at http://search.cpan.org/CPAN/authors/id/S/SZ/SZABGAB/Net-RawIP-0.2101.tar.gz cpan Net::DNS:Resolver seems to work fine on each machine I throw it on, as well. PS: To see if you can spoof, check out the ANA Spoofer project. http://spoofer.csail.mit.edu/ Written by...

DNS Recursion Bandwidth Amplification - Denial of Service (PoC)

DNS Recursion Bandwidth Amplification - Denial of Service PoC !/usr/bin/perl Get Net::RawIP at http://search.cpan.org/CPAN/authors/id/S/SZ/SZABGAB/Net-RawIP-0.2101.tar.gz cpan Net::DNS:Resolver seems to work fine on each machine I throw it on, as well. PS: To see if you can spoof, check out the A...

openSUSE 10 Security Update : bind (bind-2529)

A security problem was fixed in the ISC BIND nameserver version 9.3.4, these are addressed by this security update. If recursion is enabled, a remote attacker can dereference a freed fetch context causing the daemon to abort / crash. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE 10 Security Update : php5 (php5-3745)

The following issues have been fixed in PHP, which were spotted by the MOPB project or fixed in PHP 5.2.3 release : - missing openbasedir and safemode restriction CVE-2007-3007 - chunksplit integer overflow CVE-2007-2872 - DoS condition in libgd's image processing CVE-2007-2756 - possible...

BIND: Weak random number generation

Background ISC BIND is the Internet Systems Consortium implementation of the Domain Name System DNS protocol. Description Amit Klein from Trusteer reported that the random number generator of ISC BIND leads, half the time, to predictable 1 chance to 8 query IDs in the resolver routine or in zone...

Net::DNS: Multiple vulnerabilities

Background Net::DNS is a Perl implementation of a DNS resolver. Description hjp discovered an error when handling DNS query IDs which make them partially predictable. Steffen Ullrich discovered an error in the dnexpand function which could lead to an endless loop. Impact A remote attacker could...

Breakpoint Security: Encase Pre-Advisory

Breakpoint Security Advisory Affected Vendor: Guidance Software Affected Products: Encase 5.0 and possibly other version Background: With Encase's recent response to the iSec's security report and their ability to both market their product while at the same time minimizing their products issues,...

CVE-2007-2925

The default access control lists ACL in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache...

CVE-2007-2925

CVE-2007-2925 affects ISC BIND 9.4.0/9.4.1 and 9.5.0a1–9.5.0a5 where default ACLs do not enable allow-recursion or allow-query-cache, allowing remote recursion against the cache. Upstream fixes exist (e.g., 9.5.0a6, and related patches for 9.4.x/9.5.x lines). Several advisories note the issue and...

infinite recursion in netlink

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

Debian DSA-1289-1 : linux-2.6 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1496 Michal Miroslaw reported a DoS...