5922 matches found
SUSE-SU-2016:2670-1 Security update for gd
This update for gd fixes the following issues: - CVE-2016-8670: Stack Buffer Overflow in GD dynamicGetbuf bsc1004924 - CVE-2016-6911: Check for out-of-bound read in dynamicGetbuf bsc1005274...
openSUSE Security Update : php5 (openSUSE-2016-1221)
This update for php5 fixes the following issu : - CVE-2016-8670: Stack Buffer Overflow in GD dynamicGetbuf bsc1004924. - CVE-2016-7568: Integer overflow in the gdImageWebpCtx function in gdwebp.c libgd bsc1001900. - CVE-2016-6911: Check for out-of-bound read in dynamicGetbuf bsc1005274...
openSUSE: Security Advisory for php5 (openSUSE-SU-2016:2606-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-665-1 : libgd2 security update
CVE-2016-6911 invalid read in gdImageCreateFromTiffPtr most of the code is not present in the Wheezy version CVE-2016-8670: Stack Buffer Overflow in GD dynamicGetbuf For Debian 7 'Wheezy', these problems have been fixed in version 2.0.36rc1dfsg-6.1+deb7u6. We recommend that you upgrade your libgd...
Stack-buffer-overflow in parsed_skip
Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4733278460313600 Fuzzer: libFuzzerpcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0x7fa2a5af0ed0 Crash State:...
Internet Bug Bounty: Stack Buffer Overflow in GD dynamicGetbuf
Stack-based buffer over flow in GD dynamicGetbuf - Vulnerable function: imagecreatefromstring - Bug has been reported: https://bugs.php.net/bug.php?id=73280 - Submitted a patch and accepted: https://github.com/php/php-src/commit/cc08cbc84d46933c1e9e0149633f1ed5d19e45e9 - Impact: Remotely...
Internet Bug Bounty: stack-buffer-overflow through "ResourceBundle" methods
Upstream Bug --- https://bugs.php.net/bug.php?id=73218 Summary -- ResourceBundle::create and ResourceBundle::getLocales methods and their respective functions are vulnerables to stack buffer overflow when bundlename parameter length is equal or close to 0x7fffffff, due to a type confusion in...
Security update for php5 (important)
This update for php5 fixes the following security issues: CVE-2016-7411: Memory corruption when destructing deserialized object CVE-2016-7412: Heap overflow in mysqlnd when not receiving UNSIGNEDFLAG in BIT field CVE-2016-7413: Use after free in wddxdeserialize CVE-2016-7414: Out of bounds heap...
[SECURITY] [DSA 3676-1] unadf security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3676-1 [email protected] https://www.debian.org/security/ Luciano Bello September 24, 2016 https://www.debian.org/security/faq -...
DSA-3676-1 unadf - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3676-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DllHijackAuditor 3.5 - Stack Overflow Vulnerability
Document Title: =============== DllHijackAuditor 3.5 - Stack Overflow Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1954 Release Date: ============= 2016-09-21 Vulnerability Laboratory ID VL-ID: ==================================== 1954...
The vulnerability of the Linux operating system’s kernel allows a hacker to trigger a service failure or cause other adverse effects.
The vulnerability of the supplylminputwrite function in the drivers/thermal/supplylmcore.c file of the MSM Thermal kernel driver for the Linux operating system is caused by buffer overflow on the stack. Exploiting this vulnerability can allow an attacker to cause a system failure or other adverse...
ALPINE-CVE-2016-6318
Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...
The vulnerability of the RUMBA terminal emulator allows a hacker to execute arbitrary code.
The vulnerability of the PlayMacro function in ObjectXMacro.ObjectXMacro WdMacCtl.ocx, a terminal emulator RUMBA, is caused by buffer overflow in the stack. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code using a long MacroName argument...
SUSE-SU-2016:2211-1 Security update for cracklib
This update for cracklib fixes a security issue and a bug: Security issue fixed: - Add patch to fix a stack buffer overflow in GECOS parser bsc992966 CVE-2016-6318 The following non security issue was fixed: - Call textdomain in cracklib-check main function so that program output is translated...
Stack Buffer Overflow Vulnerability in Legba Incorporated YateBTS
Legba Incorporated YateBTS is software for analog protocol stacks for GSM networks. A stack buffer overflow vulnerability exists in Legba Incorporated YateBTS. An attacker could exploit the vulnerability by sending an oversized UDP packet resulting in a memory buffer overflow, which in turn could...
PCRE Regular Expression Compilation Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PCRE. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the compilation of regular...
Multiple D-Link Routers Stack Buffer Overflow Vulnerability
The D-Link DIR-895L is a wireless router from AUO. A stack buffer overflow vulnerability exists in multiple D-Link Routers, which allows remote attackers to submit a special request to execute arbitrary code or conduct a denial of service attack...
openSUSE: Security Advisory for libarchive (openSUSE-SU-2016:2036-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...