Oracle Linux 6 : httpd (ELSA-2017-2478)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-2478 advisory. - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer...

httpd: ap_find_token() buffer overread

A buffer over-read flaw was found in the httpd's apfindtoken function. A remote attacker could use this flaw to cause httpd child process to crash via a specially crafted HTTP request...

httpd: mod_mime buffer overread

A buffer over-read flaw was found in the httpd's modmime module. A user permitted to modify httpd's MIME configuration could use this flaw to cause httpd child process to crash...

httpd: mod_mime buffer overread

A buffer over-read flaw was found in the httpd's modmime module. A user permitted to modify httpd's MIME configuration could use this flaw to cause httpd child process to crash...

httpd security update

2.2.15-60.0.1.5 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.5 - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer dereference - Resolves: 1463207 ...

The vulnerability of the dnxhddecode_header function in the libavcodec/dnxhddec.c multimedia library of FFmpeg allows a attacker to cause a service failure or exert other effects.

The vulnerability of the dnxhddecodeheader function in the libavcodec/dnxhddec.c multimedia library of FFmpeg relates to reading data beyond the specified buffer boundaries. Exploiting this vulnerability may allow a malicious actor to cause service failure access outside the array or other effect...

AZL-69695 CVE-2017-12596 affecting package OpenEXR 2.3.0-6

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

openvswitch: Integer underflow in the ofputil_pull_queue_get_config_reply10 function

An unsigned integer wrap around that led to a buffer over-read was found when parsing OFPTQUEUEGETCONFIGREPLY messages in Open vSwitch OvS. An attacker could use this issue to cause a remote denial of service attack...

freeradius: Buffer over-read in fr_dhcp_decode_suboptions()

An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request...

dnsmasq: Improper bounds checking leads to a buffer overread

Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491...

CVE-2017-11116

The ExifImageFile::readDQT function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted jpg file...

libming 'OpCode' function denial of service vulnerability (CNVD-2017-20196)

libming is a Flash SWF output library for PHP, Perl, Ruby, Python, C, C ++, Java, and more. The OpCode function called from isLogicalOp and decompileIF in util/decompile.c in Libming suffers from a heap-based buffer over-reading problem that allows an attacker to cause a denial of service via...

DEBIAN-CVE-2017-9545

The nexttext function in src/libmpg123/id3.c in mpg123 1.24.0 allows remote attackers to cause a denial of service buffer over-read via a crafted mp3 file...

ALPINE-CVE-2017-9545

The nexttext function in src/libmpg123/id3.c in mpg123 1.24.0 allows remote attackers to cause a denial of service buffer over-read via a crafted mp3 file...

CVE-2017-9620

The xpsselectfontencoding function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document, related to the xpsencodefontcharimp...

CVE-2017-9610

The xpsloadsfntname function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document...

DEBIAN-CVE-2017-9610

The xpsloadsfntname function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document...

UBUNTU-CVE-2017-9727

The gxttfReaderRead function in base/gxttfb.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document...

UBUNTU-CVE-2017-11639

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h...

UBUNTU-CVE-2017-9611

The InsMIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document...