Security update for openssl-1_1 (important)

openSUSE Security Update: Security update for openssl-11 Announcement ID: openSUSE-SU-2021:1188-1 Rating: important References: 1189520 1189521 Cross-References: CVE-2021-3711 CVE-2021-3712 CVSS scores: CVE-2021-3711 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-3712 SUSE: 5.3...

SUSE: Security Advisory (SUSE-SU-2021:2833-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:2830-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for openssl-1_1 (openSUSE-SU-2021:2830-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for openssl-1_1 (important)

openSUSE Security Update: Security update for openssl-11 Announcement ID: openSUSE-SU-2021:2830-1 Rating: important References: 1189520 1189521 Cross-References: CVE-2021-3711 CVE-2021-3712 CVSS scores: CVE-2021-3711 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-3712 SUSE: 5.3...

probench_aflnet

It is an offensive tool for network protocols. The primary CVE ID is not explicitly mentioned in the provided context; however, the tool is designed to fuzz network protocols, which may lead to the discovery of vulnerabilities. The target product/service or framework is network protocols, and the...

CVE-2021-27790

The issue (CVE-2021-27790) affects Brocade Fabric OS and centers on the ipfilter command. The vulnerability arises from the use of an unsafe string function to process user input, enabling stack-based buffer overflows. Exploitation requires authentication and leads to the possibility of arbitrary...

The vulnerability of the WebGL component in Google Chrome web browser allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the WebGL component in Google Chrome browser is related to buffer overflows during the processing of HTML content. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code by opening a malicious web page...

CVE-2015-2099

Multiple buffer overflows in WebGate Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the 1 GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, 2 Login function in the LoginContoller.LoginControllerCtrl.1 control, or 3 GetThumbnail...

CVE-2015-2098

Multiple stack-based buffer overflows in WebGate eDVR Manager allow remote attackers to execute arbitrary code via unspecified vectors to the 1 Connect, 2 ConnectEx, or 3 ConnectEx2 function in the WESPEvent.WESPEventCtrl.1 control; 4 AudioOnlySiteChannel function in the...

CVE-2015-2099

Multiple buffer overflows in WebGate Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the 1 GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, 2 Login function in the LoginContoller.LoginControllerCtrl.1 control, or 3 GetThumbnail...

Stack overflow

Multiple stack-based buffer overflows in WebGate eDVR Manager allow remote attackers to execute arbitrary code via unspecified vectors to the 1 Connect, 2 ConnectEx, or 3 ConnectEx2 function in the WESPEvent.WESPEventCtrl.1 control; 4 AudioOnlySiteChannel function in the...

CVE-2015-2098

Multiple stack-based buffer overflows in WebGate eDVR Manager allow remote attackers to execute arbitrary code via unspecified vectors to the 1 Connect, 2 ConnectEx, or 3 ConnectEx2 function in the WESPEvent.WESPEventCtrl.1 control; 4 AudioOnlySiteChannel function in the...

CVE-2015-2100

Multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the 1 TCPDiscover or 2 TCPDiscover2 function in the WESPDiscovery.WESPDiscoveryCtrl.1 control...

FreeBSD : Exiv2 -- Multiple vulnerabilities (d49f86ab-d9c7-11eb-a200-00155d01f201)

Exiv2 teams reports : Multiple vulnerabilities covering buffer overflows, out-of-bounds, read of uninitialized memory and denial of serivce. The heap overflow is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to...

Advisory ROSA-SA-2021-1927

Software: ncurses 5.9 OS: Cobalt 7.9 CVE-ID: CVE-2019-15547 CVE-Crit: HIGH CVE-DESC: An issue has been discovered in the ncurses box prior to version 5.99.0 for Rust. The printw functions have format string problems due to improper handling of C format arguments. CVE-STATUS: default CVE-REV:...

Advisory ROSA-SA-2021-1844

Software: glibc 2.17 OS: Cobalt 7.9 CVE-ID: CVE-2014-4043 CVE-Crit: MEDIUM CVE-DESC: The posixspawnfileactionsaddopen function in glibc before 2.20 does not copy its path argument according to the POSIX specification, allowing context-dependent attackers to launch exploitation vulnerabilities aft...

Advisory ROSA-SA-2021-1817

Software: cups-filters 1.0.35 OS: Cobalt 7.9 CVE-ID: CVE-2013-6473 CVE-Crit: MEDIUM CVE-DESC: Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 through 1.0.47 allow remote attackers to execute arbitrary code across a large 1 page or 2 lines in a URF file...

Debian: Security Advisory (DLA-2699-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2020:14355-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14355-1 advisory. - LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak CWE-655 in VNC server code, which allow an attacker to...