SUSE-SU-2018:4128-1 Security update for openvswitch

This update for openvswitch to version 2.7.6 fixes the following issues: These security issues were fixed: - CVE-2018-17205: Prevent OVS crash when reverting old flows in bundle commit bsc1104467. - CVE-2018-17206: Avoid buffer overread in BUNDLE action decoding bsc1104467. - CVE-2018-17204:When...

PYSEC-2018-117

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

The vulnerability of Firefox ESR browsers relates to the execution of operations beyond the buffer in memory, which allows an attacker to trigger a service failure or execute arbitrary code.

The vulnerability of Firefox ESR is related to a flaw that causes reading beyond the allocated memory buffer during graphic operations. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...

DEBIAN-CVE-2018-18313

Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory...

ALPINE-CVE-2018-18313

Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory...

UBUNTU-CVE-2018-19839

In LibSass prior to 3.5.5, the function handleerror in sasscontext.cpp allows attackers to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file...

UBUNTU-CVE-2018-19843

opmov in libr/asm/p/asmx86nz.c in radare2 before 3.1.0 allows attackers to cause a denial of service buffer over-read via crafted x86 assembly data, as demonstrated by rasm2...

radare2 opmov function denial of service vulnerability

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in the opmov function in the libr/asm/p/asmx86nz.c file in radare2 versions prior to 3.1.0. An attacker can exploit this vulnerability to cause a denial of service buffer out-of-bounds read...

UBUNTU-CVE-2018-19759

There is a heap-based buffer over-read at stbimagewrite.h function: stbiwritepngtomem in libsixel 1.8.2 that will cause a denial of service...

DEBIAN-CVE-2018-19758

There is a heap-based buffer over-read at wav.c in wavwriteheader in libsndfile 1.0.28 that will cause a denial of service...

DEBIAN-CVE-2018-19763

There is a heap-based buffer over-read at writer.c function: writepngtofile in libsixel 1.8.2 that will cause a denial of service...

PT-2018-15074 · Libsixel +1 · Libsixel +1

Name of the Vulnerable Software and Affected Versions: libsixel version 1.8.2 Description: The issue is a heap-based buffer over-read located in the stb image write.h file, specifically within the stbi write png to mem function. This will cause a denial of service. Recommendations: For libsixel...

UBUNTU-CVE-2018-19664

libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the putpixelrows function in wrbmp.c, as demonstrated by djpeg...

ALPINE-CVE-2018-19661

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulawarray in ulaw.c that will lead to a denial of service...

DEBIAN-CVE-2018-19662

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alawarray in alaw.c that will lead to a denial of service...

DEBIAN-CVE-2018-19661

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulawarray in ulaw.c that will lead to a denial of service...

ALPINE-CVE-2018-19662

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alawarray in alaw.c that will lead to a denial of service...

UBUNTU-CVE-2018-19625

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuffcomposite.c by preventing a heap-based buffer over-read...

UBUNTU-CVE-2018-19661

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulawarray in ulaw.c that will lead to a denial of service...

UBUNTU-CVE-2018-19662

An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alawarray in alaw.c that will lead to a denial of service...