Google Android Qualcomm WLAN Component Information Disclosure Vulnerability (CNVD-2017-31252)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An information disclosure vulnerability exists in the Google Android Qualcomm WLAN component, which can be exploited by an attacker to obtain sensitive information buffer...

Poppler Heap Buffer Read Vulnerability

Poppler is based on xpdf-3.0 code base PDF rendering library. The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler suffers from a heap buffer read vulnerability that can be exploited by an attacker to launch a denial of service attack...

[SECURITY] [DLA 1111-1] weechat security update

Package : weechat Version : 0.3.8-1+deb7u3 CVE ID : CVE-2017-14727 Debian Bug : 876553 It was discovered that WeeChats logger plugin is vulnerable to an invalid buffer read which can be exploited remotely to trigger an application crash or other undefined behaviour. For Debian 7 "Wheezy", these...

GraphicsMagick coders/rle.c file denial of service vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the ReadRLEImage of the coders/rle.c file in GraphicsMagick version 1.3.26, which fails to properly handle RLE packet...

JasPer Denial of Service Vulnerability (CNVD-2017-25451)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer version 2.0.13. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer out-of-bounds read and...

CURL-CVE-2017-1000099 FILE buffer read out of bounds

When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers. The code doing this would send the wrong buffer to the user stdout or the application's provide callback, which could lead to other private data from the heap to...

cURL -- multiple vulnerabilities

The cURL project reports: FILE buffer read out of bounds TFTP sends more than buffer size URL globbing out of bounds read...

libming 'OpCode' function denial of service vulnerability (CNVD-2017-20195)

libming is a Flash SWF output library for PHP, Perl, Ruby, Python, C, C ++, Java, and more. The OpCode function called from decompileINCRDECR line 1474 in util/decompile.c in Libming is safe and can be exploited by an attacker to cause a denial of service heap buffer out-of-bounds read with the...

SWFTools 'readBlock()' heap buffer read vulnerability

SWFTools is a suite of open source software tools for creating and manipulating SWF files. A heap buffer read vulnerability exists in the 'readBlock' function of the lib/ttf.c file in SWFTools version 0.9.2. The vulnerability can be exploited to cause a heap buffer out-of-bounds read with the hel...

lrzip denial of service vulnerability (CNVD-2017-06449)

lrzip Long Range ZIP is an open source compression utility for large files. A security bypass vulnerability exists in the 'bufRead::get' function of the libzpaq/libzpaq.h file in liblrzip.so in lrzip version 0.631. A remote attacker could use this vulnerability to cause a denial of service other...

Debian DLA-883-1 : curl security update

It was discovered that there was a buffer read overrun vulnerability in curl, a tool for downloading files from the internet, etc. If a '%' ended the --write-out parameter, the string's trailing NUL would be skipped and memory past the end of the buffer could be accessed and potentially displayed...

Win CE Schannel cert name out of buffer read

curl's TLS server certificate checks are flawed on Windows CE. This vulnerability occurs in the verify certificate function when comparing a wildcard certificate name as returned by the Windows API function CertGetNameString to the hostname used to make the connection to the server. The pattern...

SUSE SLES11 Security Update : xorg-x11-libs (SUSE-SU-2016:3189-1)

This update for xorg-x11-libs fixes the following issues : - insufficient validation of data from the X server can cause a one byte buffer read underrun bsc1003023, CVE-2016-7953 - insufficient validation of data from the X server can cause out of boundary memory access or endless loops Denial of...

SUSE-SU-2016:3189-1 Security update for xorg-x11-libs

This update for xorg-x11-libs fixes the following issues: - insufficient validation of data from the X server can cause a one byte buffer read underrun bsc1003023, CVE-2016-7953 - insufficient validation of data from the X server can cause out of boundary memory access or endless loops Denial of...

openSUSE Security Update : libXvMC (openSUSE-2016-1424)

This update for libXvMC fixes the following security issue : - insufficient validation of data from the X server could cause a one byte buffer read underrun boo1003023, CVE-2016-7953 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

UBUNTU-CVE-2016-9539

tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer. Reported as MSVR 35092...

SUSE SLED12 / SLES12 Security Update : X Window System client libraries (SUSE-SU-2016:2828-1)

This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...

[slackware-security] x11

New x11 packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libX11-1.6.4-i586-1slack14.2.txz: Upgraded. Insufficient validation of data from the X server can cause o...

openSUSE Security Update : X Window System client libraries (openSUSE-2016-1214)

This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...

SUSE SLES11 Security Update : bsdtar (SUSE-SU-2016:1939-1)

bsdtar was updated to fix seven security issues. These security issues were fixed : - CVE-2015-8929: Memory leak in tar parser bsc985669. - CVE-2016-4809: Memory allocate error with symbolic links in cpio archives bsc984990. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. -...