4206 matches found
Squid Multiple DoS Vulnerabilities (SQUID-2016:3, SQUID-2016:4) - Linux
Squid is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Squid Multiple DoS Vulnerabilities (SQUID-2016:3, SQUID-2016:4) - Windows
Squid is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
MGASA-2016-0133 Updated squid packages fix security vulnerabilities
Updated squid packages fix security vulnerabilities: Due to a buffer overrun, the Squid pinger binary in Squid before 3.5.16 is vulnerable to a denial of service or information leak attack when processing ICMPv6 packets. This bug also permits the server response to manipulate other ICMP and ICMPv...
FreeBSD : squid -- multiple vulnerabilities (297117ba-f92d-11e5-92ce-002590263bf5)
Squid security advisory 2016:3 reports : Due to a buffer overrun Squid pinger binary is vulnerable to denial of service or information leak attack when processing ICMPv6 packets. This bug also permits the server response to manipulate other ICMP and ICMPv6 queries processing to cause information...
Badlock Bug in Samba SMB Protocol
Despite the Badlock hype machine cranked up high, we don’t know much about this impending soul-crushing vulnerability other than it could be bad, it could be in the Windows Server Message Block and it already has its own requisite logo and website. Nonetheless, we have a little more than two week...
squid -- multiple vulnerabilities
Squid security advisory 2016:3 reports: Due to a buffer overrun Squid pinger binary is vulnerable to denial of service or information leak attack when processing ICMPv6 packets. This bug also permits the server response to manipulate other ICMP and ICMPv6 queries processing to cause information...
Zortam Mp3 Media Studio 20.15 - Overflow (PoC) (SEH)
Zortam Mp3 Media Studio 20.15 - Overflow PoC SEH -- coding: utf-8 -- Exploit Title : Zortam Mp3 Media Studio 20.15 - SEH overflow DOS Date: 2016-03-12 Author: INSECT.B Facebook : https://www.facebook.com/B.INSECT00 GitHub : binsect00 Blog : http://binsect00.tistory.com Vendor Homepage :...
Microsoft Windows Kernel - ATMFD.dll OTF Font Processing Stack Corruption (MS16-026)
Microsoft Windows Kernel - ATMFD.dll OTF Font Processing Stack Corruption MS16-026 Source: https://code.google.com/p/google-security-research/issues/detail?id=682 We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file: ---...
SUSE-SU-2016:0677-1 Security update for postgresql94
This update for postgresql94 fixes the following issues: - Security and bugfix release 9.4.6: IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. Fix infinite loops and buffer-overrun proble...
Fedora 22 : qemu-2.3.1-10.fc22 (2016-890e612f52)
CVE-2015-7549: pci: NULL pointer dereference issue bz 1291138 CVE-2015-8558: DoS by infinite loop in ehciadvancestate bz 1291309 CVE-2015-8666: Heap-based buffer overrun during VM migration bz 1294027 CVE-2015-8744: vmxnet3: fix crash with short packets bz 1295440 CVE-2015-8745: vmxnet3: don't...
Fedora 23 : qemu-2.4.1-5.fc23 (2016-e9bba2bb01)
CVE-2015-7549: pci: NULL pointer dereference issue bz 1291138 CVE-2015-8558: DoS by infinite loop in ehciadvancestate bz 1291309 CVE-2015-8666: Heap-based buffer overrun during VM migration bz 1294027 CVE-2015-8744: vmxnet3: fix crash with short packets bz 1295440 CVE-2015-8745: vmxnet3: don't...
Fedora 23 : xen-4.5.2-7.fc23 (2016-2c15b72b01)
PV superpage functionality missing sanity checks XSA-167, CVE-2016-1570 VMX: intercept issue with INVLPG on non-canonical address XSA-168, CVE-2016-1571 Qemu: pci: NULL pointer dereference issue CVE-2015-7549 qemu: DoS by infinite loop in ehciadvancestate CVE-2015-8558 qemu: Heap-based buffer...
Fedora 23 : xen-4.5.2-6.fc23 (2015-d8253e2b1d)
paravirtualized drivers incautious about shared memory contents XSA-155, CVE-2015-8550 qemu-dm buffer overrun in MSI-X handling XSA-164, CVE-2015-8554 information leak in legacy x86 FPU/XMM initialization XSA-165, CVE-2015-8555 ioreq handling possibly susceptible to multiple read issue XSA-166 No...
Fedora 22 : xen-4.5.2-6.fc22 (2015-c44bd3e0fa)
paravirtualized drivers incautious about shared memory contents XSA-155, CVE-2015-8550 qemu-dm buffer overrun in MSI-X handling XSA-164, CVE-2015-8554 information leak in legacy x86 FPU/XMM initialization XSA-165, CVE-2015-8555 ioreq handling possibly susceptible to multiple read issue XSA-166 No...
DLA-432-1 postgresql-8.4 - security update
Bulletin has no description...
SUSE-SU-2016:0555-1 Security update for postgresql94
This update for postgresql94 fixes the following issues: - Security and bugfix release 9.4.6: IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. Fix infinite loops and buffer-overrun proble...
SUSE-SU-2016:0539-1 Security update for postgresql93
This update for postgresql93 fixes the following issues: - Security and bugfix release 9.3.11: Fix infinite loops and buffer-overrun problems in regular expressions CVE-2016-0773, bsc966436. Fix regular-expression compiler to handle loops of constraint arcs CVE-2007-4772. Prevent certain PL/Java...
openSUSE Security Update : claws-mail (openSUSE-2016-219)
This update for claws-mail fixes the following issues : - CVE-2015-8614: additional fixes for buffer overrun issues which allowed remote attackers to cause a crash or have unspecified further impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
openSUSE Security Update : claws-mail (openSUSE-2016-214)
This update for claws-mail fixes the following issues : - CVE-2015-8614: additional fixes for buffer overrun issues which allowed remote attackers to cause a crash or have unspecified further impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
openSUSE Security Update : claws-mail (openSUSE-2016-1)
This update for claws-mail fixes the following security issue : - CVE-2015-8614: buffer overrun issues in Japanese character set conversion code could allow an adversary to remotely crash claws and potentially have further unspecified impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Securit...