K15565: OpenSSL vulnerability CVE-2014-3512

Security Advisory Description Multiple buffer overflows in crypto/srp/srplib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via an invalid SRP 1 g, 2 A, or 3 B parameter...

K28056114: Linux kernel vulnerability CVE-2016-5829

Security Advisory Description Multiple heap-based buffer overflows in the hiddevioctlusage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted 1 HIDIOCGUSAGES or 2...

K16118: libXfont vulnerabilities CVE-2014-0209, CVE-2014-0210 and CVE-2014-0211

Security Advisory Description CVE-2014-0209 Multiple integer overflows in the 1 FontFileAddEntry and 2 lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the...

K15936: NTP vulnerability CVE-2014-9295

Security Advisory Description Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to 1 the cryptorecv function when the Autokey Authentication feature is used, 2 the ctlputdata function, and 3 the configu...

K16715: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2013-1960 Heap-based buffer overflow in the t2pprocessjpegstrip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted TIFF image file. CVE-2013-1961 Stack-bas...

SUSE CVE-2004-0005

Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 octal encoding in yahoodecode that causes a null byte to be written beyond the buffer, 2 octal encoding in yahoodecode that causes a pointer to reference memory...

SUSE CVE-2004-0941

Multiple buffer overflows in the gd graphics library libgd 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990...

SUSE CVE-2004-1005

Multiple buffer overflows in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

SUSE CVE-2005-0076

Multiple buffer overflows in the XView library 3.2 may allow local users to execute arbitrary code via setuid applications that use the library...

SUSE CVE-2005-0160

Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via 1 2 overflows in ACE archives, 2 a long command line argument, or 3 certain "Ready for next volume" messages...

SUSE CVE-2005-1461

Multiple buffer overflows in the 1 SIP, 2 CMIP, 3 CMP, 4 CMS, 5 CRMF, 6 ESS, 7 OCSP, 8 X.509, 9 ISIS, 10 DISTCC, 11 FCELS, 12 Q.931, 13 NCP, 14 TCAP, 15 ISUP, 16 MEGACO, 17 PKIX1Explitit, 18 PKIXQualified, 19 Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a...

SUSE CVE-2005-3243

Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the 1 SLIMP3 and 2 AgentX dissector...

SUSE CVE-2006-4262

Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via multiple vectors including 1 a long pathname that is not properly handled during file list parsing, 2 long pathnames that result from path...

SUSE CVE-2006-5868

Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image...

SUSE CVE-2007-4066

Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.ex...

SUSE CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

SUSE CVE-2008-5680

Multiple buffer overflows in Opera before 9.63 might allow 1 remote attackers to execute arbitrary code via a crafted text area, or allow 2 user-assisted remote attackers to execute arbitrary code via a long host name in a file: URL. NOTE: this might overlap CVE-2008-5178...

SUSE CVE-2009-1097

Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...

SUSE CVE-2010-0991

Multiple heap-based buffer overflows in imlib2 1.4.3 allow context-dependent attackers to execute arbitrary code via a crafted 1 ARGB, 2 XPM, or 3 BMP file, related to the IMAGEDIMENSIONSOK macro in lib/image.h...

SUSE CVE-2010-4328

Multiple stack-based buffer overflows in opt/novell/iprint/bin/ipsmd in Novell iPrint for Linux Open Enterprise Server 2 SP2 and SP3 allow remote attackers to execute arbitrary code via unspecified LPR opcodes...