openSUSE: Security Advisory for zutils (openSUSE-SU-2018:2591-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for zutils (moderate)

This update for zutils to version 1.7 fixes one security issue: - CVE-2018-1000637: buffer overrun in zcat utility boo1103878 Please note that the zutils zcat utility is distinct from the default gzip zcat utility...

The vulnerability of the Win32k component in Windows operating systems, which allows a hacker to execute arbitrary code

The vulnerability of the Win32k component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in kernel mode using a specially created application...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted web page...

The vulnerability of the Graphics Device Interface component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Graphics Device Interface GDI component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page or...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted web page content...

The vulnerability of the JavaScript script handler ChakraCore in Microsoft Edge and Internet Explorer, related to the execution of operations beyond the buffer in memory, allows an attacker to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in Microsoft Edge and Internet Explorer arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted web page...

The vulnerability of microprogrammed software in HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank printers arises from an operation that goes beyond buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of microprogrammed software on HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank devices arises from operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code ...

curl: IMAP FETCH response out of bounds read

A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application...

Security Bulletin: Multiple Vulnerabilities in Current Release of IBM® SDK for Node.js™

Summary Multiple vulnerabilities in OpenSSL disclosed on August 6, 2014 by the OpenSSL Project, plus a vulnerability in the V8 JavaScript engine Vulnerability Details CVE-ID: CVE-2014-3512 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an internal buffer overrun. A remote...

Google Chrome - Swiftshader Texture Allocation Integer Overflow

Google Chrome - Swiftshader Texture Allocation Integer Overflow There's a remotely triggerable memory corruption issue in SwiftShader that's reachable from WebGL, resulting from an integer overflow issue. In the GPU process there is validation on the sizes passed to texture creation functions to...

The vulnerability in the implementation of the Web Worker mechanism of Mozilla Firefox allows a perpetrator to trigger a service failure.

The vulnerability of the Web Worker mechanism implemented by Mozilla Firefox lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability of the JavaScript script handler ChakraCore in Microsoft Edge and Internet Explorer browsers allows a perpetrator to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in Microsoft Edge and Internet Explorer browsers is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Scientific Linux Security Update : zsh on SL6.x i386/x86_64 (20180619)

Security Fixes : - zsh: Stack-based buffer overflow in genmatchesfiles at compctl.c CVE-2018-1083 - zsh: buffer overflow when scanning very long directory paths for symbolic links CVE-2014-10072 - zsh: buffer overrun in symlinks CVE-2017-18206 - zsh: buffer overflow in utils.c:checkmailpath can...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, caused by an operation that goes beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted web page...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, caused by an operation that goes beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted web page content...

The vulnerability of Internet Explorer’s JavaScript script handlers allows a hacker to execute arbitrary code.

The vulnerability of Internet Explorer’s JavaScript script handlers arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page or Microsoft Office document...

The vulnerability of JavaScript script handlers in Internet Explorer allows a perpetrator to execute arbitrary code.

The vulnerability of JavaScript script handlers in Internet Explorer arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page or Microsoft Office document...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, caused by an operation that goes beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted web page...

The vulnerability of Microsoft Excel editors arises from an operation that goes beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Excel spreadsheet editors arises from the execution of an operation outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted XLS file...