Security update for cups (important)

openSUSE Security Update: Security update for cups Announcement ID: openSUSE-SU-2019:2573-1 Rating: important References: 1146358 1146359 Cross-References: CVE-2019-8675 CVE-2019-8696 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description: Thi...

OPENSUSE-SU-2019:2573-1 Security update for cups

This update for cups fixes the following issues: - CVE-2019-8675: Fixed a stack buffer overflow in libcups's asn1gettype functionbsc1146358. - CVE-2019-8696: Fixed a stack buffer overflow in libcups's asn1getpacked function bsc1146359. This update was imported from the SUSE:SLE-15:Update update...

tcpdump: Stack-based buffer over-read in print-hncp.c:print_prefix() via crafted pcap

In tcpdump 4.9.2, a stack-based buffer over-read exists in the printprefix function of print-hncp.c via crafted packet data because of missing initialization...

PT-2019-13855 · Nbd · Nbd

Name of the Vulnerable Software and Affected Versions: nbd affected versions not specified Description: The issue is related to the Structured reply feature of the newstyle NBD protocol, which allows the server to send a reply in chunks. A bounds check error due to signed/unsigned confusion can...

SUSE-SU-2019:3030-1 Security update for cups

This update for cups fixes the following issues: - CVE-2019-8675: Fixed a stack buffer overflow in libcups's asn1gettype functionbsc1146358. - CVE-2019-8696: Fixed a stack buffer overflow in libcups's asn1getpacked function bsc1146359...

CVE-2019-2251

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

Stack overflow

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

CVE-2019-2251

CVE-2019-2251 describes a stack-buffer overflow when a bitmap is loaded from an unauthenticated source, affecting Qualcomm/SoC families listed in the initial records (e.g., Snapdragon Auto/Compute/Connectivity and related devices). The vulnerability is tied to closed-source Qualcomm components an...

Updated fribidi packages fix security vulnerability

Updated fribidi packages fix security vulnerability: A stack buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi 1.0.0 through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text conten...

curl security and bug fix update

7.61.1-11 - rebuild with updated annobin to prevent Execshield RPMDiff check from failing 7.61.1-10 - fix SMTP end-of-response out-of-bounds read CVE-2019-3823 - fix NTLMv2 type-3 header stack buffer overflow CVE-2019-3822 - fix NTLM type-2 out-of-bounds buffer read CVE-2018-16890 - xattr: strip...

CentOS Update for thunderbird CESA-2019:3756 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Buffer overflow

An unchecked sscanf call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack...

CVE-2010-3844

An unchecked sscanf call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack...

openSUSE: Security Advisory for MozillaFirefox, MozillaFirefox-branding-SLE (openSUSE-SU-2019:2459-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2019:2451-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLE

This update for MozillaFirefox, MozillaFirefox-branding-SLE fixes the following issues: Changes in MozillaFirefox: Security issues fixed: - CVE-2019-15903: Fixed a heap overflow in the expat library bsc1149429. - CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB...

Security update for MozillaFirefox, MozillaFirefox-branding-SLE (important)

openSUSE Security Update: Security update for MozillaFirefox, MozillaFirefox-branding-SLE Announcement ID: openSUSE-SU-2019:2459-1 Rating: important References: 1104841 1129528 1137990 1149429 1151186 1153423 1153869 1154738 Cross-References: CVE-2019-11757 CVE-2019-11758 CVE-2019-11759...

Security update for MozillaFirefox, MozillaFirefox-branding-SLE (important)

openSUSE Security Update: Security update for MozillaFirefox, MozillaFirefox-branding-SLE Announcement ID: openSUSE-SU-2019:2451-1 Rating: important References: 1104841 1129528 1137990 1149429 1151186 1153423 1153869 1154738 Cross-References: CVE-2019-11757 CVE-2019-11758 CVE-2019-11759...

imagemagick:ping_tiff_fuzzer: Stack-buffer-overflow in _TIFFVGetField

Detailed Report: https://oss-fuzz.com/testcase?key=5748561614733312 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingtifffuzzer Job Type: libfuzzerasani386imagemagick Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address: 0xff974750 Crash State: TIFFVGetField...

Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20191106)

This update upgrades Thunderbird to version 68.2.0. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2 CVE-2019-11764 - Mozilla: Use-after-free when creating index updates in IndexedDB CVE-2019-11757 - Mozilla: Potentially exploitable crash due to 360 Total...

MGASA-2019-0315 Updated firefox packages fix security vulnerabilities

The updated packages fix several bugs and some security issues: Use-after-free when creating index updates in IndexedDB. CVE-2019-11757 Potentially exploitable crash due to 360 Total Security. CVE-2019-11758 Stack buffer overflow in HKDF output. CVE-2019-11759 Stack buffer overflow in WebRTC...