USN-3053-1: Linux kernel (Vivid HWE) vulnerabilities

A missing permission check when settings ACLs was discovered in nfsd. A local user could exploit this flaw to gain access to any file by setting an ACL. CVE-2016-1237 It was discovered that the keyring implementation in the Linux kernel did not ensure a data structure was initialized before...

libtiff: divide by zero in the tiffdither tool

The TIFFmalloc function in tifunix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tifwrite.c, as demonstrated by...

[SECURITY] Fedora 22 Update: libtalloc-2.1.5-2.fc22

A library that implements a hierarchical allocator with destructors...

[SECURITY] Fedora 23 Update: libtalloc-2.1.5-2.fc23

A library that implements a hierarchical allocator with destructors...

nspr: heap-buffer overflow in PL_ARENA_ALLOCATE (MFSA 2015-133)

A heap-based buffer overflow was found in NSPR. An attacker could use this flaw to cause NSPR to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSPR library...

F5 Networks BIG-IP : Boost memory allocator vulnerability (K16946)

Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...

Wireshark epan/wmem/wmem_allocator_block.c Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. Multiple 'wmemblocksplitfreechunk' functions in the epan/wmem/wmemallocatorblock.c file of the wmem block allocator in Wireshark's Memory Manager The mealloc operation restores the...

DEBIAN-CVE-2015-6242

The wmemblocksplitfreechunk function in epan/wmem/wmemallocatorblock.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain case of multiple realloc operations that restore a memory chunk to its original size, which allows remote...

CVE-2015-6242

The wmemblocksplitfreechunk function in epan/wmem/wmemallocatorblock.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain case of multiple realloc operations that restore a memory chunk to its original size, which allows remote...

UBUNTU-CVE-2015-6242

The wmemblocksplitfreechunk function in epan/wmem/wmemallocatorblock.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain case of multiple realloc operations that restore a memory chunk to its original size, which allows remote...

SOL16946 - Boost memory allocator vulnerability CVE-2012-2677

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

CVE-2015-0828

Double free vulnerability in the nsXMLHttpRequest::GetResponse function in Mozilla Firefox before 36.0, when a nonstandard memory allocator is used, allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via crafted JavaScript code that makes an...

CVE-2015-0828

Double free vulnerability in the nsXMLHttpRequest::GetResponse function in Mozilla Firefox before 36.0, when a nonstandard memory allocator is used, allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via crafted JavaScript code that makes an...

CentOS 6 : glibc (CESA-2013:1605)

Updated glibc packages that fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

Exploiting CVE-2014-0556 in Flash

Posted by Chris Evans, Kidnapper of RIP A couple of weeks ago, Adobe released security bulletin APSB14-21, including 8 fixes for bugs reported by Project Zero. Full details of these bugs are now public in our bug tracker. Some of the more interesting ones are a double free in the RTMP protocol, o...

OpenSSL ASN1 BIO Memory Corruption Vulnerability

No description provided by source. Incorrect integer conversions in OpenSSL can result in memory corruption. -------------------------------------------------------------------------- CVE-2012-2110 This advisory is intended for system administrators and developers exposing OpenSSL in production...

openSUSE Security Update : glibc (openSUSE-SU-2013:1510-1)

This update fixes the following issues in glibc : - CVE-2012-4412: glibc: buffer overflow in strcoll - CVE-2013-0242: glibc: DoS due to a buffer overrun in regexp matcher by processing multibyte characters - CVE-2013-1914: glibc: stack overflow in getaddrinfo sorting - CVE-2013-2207: glibc: ptcho...

firefox security update

24.2.0-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel = 4.10.0 to fix build failure 24.2.0-1 - Update to 24.2.0 ESR 24.1.0-4 - Fixed mozbz938730 - avoid mix of memory allocators crashes when using system sqlite 24.1.0-3 - Fixed...

RHEL 6 : glibc (RHSA-2013:1605)

Updated glibc packages that fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

glibc: three integer overflows in memory allocator

Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in glibc's memory allocator functions pvalloc, valloc, and memalign. If an application used such a function, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of t...