SUSE SLES11 Security Update : glibc (SUSE-SU-2014:1122-1)

This glibc update fixes a critical privilege escalation vulnerability and the following security and non-security issues : - bnc892073: An off-by-one error leading to a heap-based buffer overflow was found in gconvtranslitfind. An exploit that targets the problem is publicly available...

Microsoft Graphics Filters CGM Image Converter Buffer Overrun (MS10-105) - Ver2 (CVE-2010-3945)

Computer Graphics Metafile CGM is a free and open international standard file format for 2D vector graphics, raster graphics, and text. A remote code execution vulnerability has been discovered in the way that Microsoft Office allocates buffer size when handling CGM image files. The vulnerability...

Fedora 21 : t1utils-1.39-1.fc21 (2015-7654)

t1utils Version 1.39 2015-02-26 ================================= - t1disasm: Security fixes for buffer overrun reported by Jakub Wilk and Niels Thykier. t1utils Version 1.38 2013-09-29 ================================= - t1disasm: Fix an infinite loop on some fonts reported by Niels Thykier. Not...

Fedora 20 : t1utils-1.39-1.fc20 (2015-7581)

t1utils Version 1.39 2015-02-26 ================================= - t1disasm: Security fixes for buffer overrun reported by Jakub Wilk and Niels Thykier. t1utils Version 1.38 2013-09-29 ================================= - t1disasm: Fix an infinite loop on some fonts reported by Niels Thykier. Not...

Kernel: crypto: buffer overruns in RFC4106 implementation using AESNI

A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...

Kernel: crypto: buffer overruns in RFC4106 implementation using AESNI

A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...

Fedora 22 : t1utils-1.39-1.fc22 (2015-7616)

t1utils Version 1.39 2015-02-26 ================================= - t1disasm: Security fixes for buffer overrun reported by Jakub Wilk and Niels Thykier. t1utils Version 1.38 2013-09-29 ================================= - t1disasm: Fix an infinite loop on some fonts reported by Niels Thykier. Not...

Mandriva Linux Security Advisory : t1utils (MDVSA-2015:215)

Updated t1utils package fixes security vulnerabilities : The t1utils package has been updated to version 1.39, which fixes a buffer overrun, infinite loop, and stack overflow in t1disasm. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

The vulnerability of the microprogramming software of Cisco Nexus 5000 allows a intruder to execute arbitrary code.

Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...

Updated t1utils packages fix security vulnerabilities

Updated t1utils package fixes security vulnerabilities: The t1utils package has been updated to version 1.39, which fixes a buffer overrun, infinite loop, and stack overflow in t1disasm...

MGASA-2015-0167 Updated t1utils packages fix security vulnerabilities

Updated t1utils package fixes security vulnerabilities: The t1utils package has been updated to version 1.39, which fixes a buffer overrun, infinite loop, and stack overflow in t1disasm...

libpng security vulnerabilities

Few integer overflows lead to heap buffer overrun...

Microsoft Internet Explorer Malformed BMP File Buffer Overrun Code Execution - Ver2 (CVE-2004-0566)

A code execution vulnerability has been reported in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Debian DLA-75-1 : mysql-5.1 security update

CVE-2014-4274 Insecure handling of a temporary file that could lead to abritrary execution of code through the creation of a mysql configuration file pointing to an attacker-controlled plugindir. CVE-2013-2162 Insecure creation of the debian.cnf credential file. Credentials could be stolen by a...

e2fsprogs: arbitrary code execution

If corrupted file system didn't trip over some corruption check, and then the file system was modified via tune2fs or debugfs, such that the superblock was marked dirty and then written out via the closefs path, it's possible that the buffer overrun could be triggered when the file system is...

grep: Denial of service

Background grep is the GNU regular expression matcher. Description A heap buffer overrun has been fixed in the bmexectrans function in kwset.c. Impact A local user can cause Denial of Service. Workaround There is no known workaround at this time. Resolution All grep users should upgrade to the...

Updated postgresql packages fix security vulnerabilities

Updated postgresql packages fix security vulnerabilities: A user with limited clearance on a table might have access to information in columns without SELECT rights on through server error messages CVE-2014-8161. The function tochar might read/write past the end of a buffer. This might crash the...

MGASA-2015-0069 Updated postgresql packages fix security vulnerabilities

Updated postgresql packages fix security vulnerabilities: A user with limited clearance on a table might have access to information in columns without SELECT rights on through server error messages CVE-2014-8161. The function tochar might read/write past the end of a buffer. This might crash the...

Fortinet FortiWeb Multiple Vulnerabilities in OpenSSL (FG-IR-14-018)

Fortinet FortiWeb is prone to multiple vulnerabilities in OpenSSL. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

openSUSE Security Update : grep (openSUSE-2015-121)

grep was updated to fix one security issue. This security issue was fixed : - Heap buffer overrun with a carefully crafted combination of input and regexp CVE-2015-1345. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...