CVE-2010-4336

The currdcreatefile function src/utilsrrdcreate.c in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service assertion failure via a packet with a timestamp whose value is 10 or less, as demonstrated by creating RRD files using the 1 RRDtool and 2 RRDCacheD...

CVE-2010-4336

The currdcreatefile function src/utilsrrdcreate.c in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service assertion failure via a packet with a timestamp whose value is 10 or less, as demonstrated by creating RRD files using the 1 RRDtool and 2 RRDCacheD...

CVE-2010-4336

Affected software: collectd 4.x (before 4.9.4 and before 4.10.2). Vulnerability: the cu_rrd_create_file function (src/utils_rrdcreate.c) can trigger an assertion failure, leading to remote denial of service when handling a packet with a timestamp value of 10 or less, as demonstrated via RRDtool a...

CVE-2010-4336

The currdcreatefile function src/utilsrrdcreate.c in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service assertion failure via a packet with a timestamp whose value is 10 or less, as demonstrated by creating RRD files using the 1 RRDtool and 2 RRDCacheD...

CVE-2010-3680

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service mysqld daemon crash by creating temporary tables with nullable columns while using InnoDB, which triggers an assertion failure...

CVE-2010-3836

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service assertion failure and server crash via vectors related to view preparation, pre-evaluation of LIKE predicates, and IN Optimizers...

CVE-2010-3681

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service mysqld daemon crash by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure...

MySQL: mysqld DoS (assertion failure) by alternate reads from two indexes on a table using the HANDLER interface (MySQL bug #54007)

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service mysqld daemon crash by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure...

Mandriva Update for avahi MDVSA-2010:204 (avahi)

Check for the Version of avahi OpenVAS Vulnerability Test Mandriva Update for avahi MDVSA-2010:204 avahi Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CVE-2010-2951

dnsinternal.cc in Squid 3.1.6, when IPv6 DNS resolution is not enabled, accesses an invalid socket during an IPv4 TCP DNS query, which allows remote attackers to cause a denial of service assertion failure and daemon exit via vectors that trigger an IPv4 DNS response with the TC bit set...

CVE-2010-2951

Removed by vendor...

Authentication flaw

The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.0 protocol by not checking for reuse of openid.responsenonce values, which allows remote attackers to bypass authentication by leveraging an assertion from an OpenID provider...

Design/Logic Flaw

Google Chrome before 6.0.472.59 on Linux does not properly handle cursors, which might allow attackers to cause a denial of service assertion failure via unspecified vectors...

CVE-2010-3411

Removed by vendor...

Squid 3.1.6 DNS Reply Denial of Service

According to its banner, the version of the Squid proxy caching server installed on the remote host is 3.1.6. This version is affected by a denial of service vulnerability that is caused by an assertion failure when contacting IPv4-only DNS resolvers. Note that Nessus has relied only on the versi...

openSUSE Security Update : perl (openSUSE-SU-2010:0519-1)

perl Safe.pm module was affected by two problems where attackers could break out of such a safed execution. CVE-2010-1447 , CVE-2010-1168 This update fixes this problem. Also the following bugs were fixed : - fix tell cornercase bnc596167 - fix regex memory leak bnc557636 - also run h2ph on...

Microsoft Windows win32k!xxxRealDrawMenuItem() Missing HBITMAP Bounds Checks

Microsoft Windows win32k!xxxRealDrawMenuItem missing HBITMAP bounds checks ---------------------------------------------------------------------------- Microsoft produce two builds of each of thier supported operating system, a checked build and a free build. The free build is intended for end...

avahi: assertion failure after receiving a packet with corrupted checksum

The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a denial of service assertion failure and daemon exit via a DNS packet with an invalid checksum followed by a DNS packet with a valid checksum, a different vulnerability...

CVE-2010-2244

The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a denial of service assertion failure and daemon exit via a DNS packet with an invalid checksum followed by a DNS packet with a valid checksum, a different vulnerability...

CVE-2010-2244

The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a denial of service assertion failure and daemon exit via a DNS packet with an invalid checksum followed by a DNS packet with a valid checksum, a different vulnerability...