Critical: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Adobe Flash Player AVM2 Class Change Memory Corruption (APSB11-28; CVE-2011-2451)

A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in the way AVM2 executes the bytecode. A remote attacker could exploit this vulnerability by enticing a user to open a web page containing an embedded malformed SWF file. Successful...

DEBIAN-CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

Open redirect

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

CVE-2011-3627

CVE-2011-3627 affects ClamAV’s bytecode engine prior to 0.97.3. The flaw, due to recursion in libclamav/bytecode.c and libclamav/bytecode_api.c, allows a remote attacker to trigger a denial of service (crash). Exploitation details are not provided in the given documents. The remediation is to upg...

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : clamav vulnerability (USN-1258-1)

Stephane Chazelas discovered the bytecode engine of ClamAV improperly handled recursion under certain circumstances. This could allow a remote attacker to craft a file that could cause ClamAV to crash, resulting in a denial of service. Note that Tenable Network Security has extracted the precedin...

Ubuntu Update for clamav USN-1258-1

Ubuntu Update for Linux kernel vulnerabilities USN-1258-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12581.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for clamav USN-1258-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

USN-1258-1: ClamAV vulnerability

Stephane Chazelas discovered the bytecode engine of ClamAV improperly handled recursion under certain circumstances. This could allow a remote attacker to craft a file that could cause ClamAV to crash, resulting in a denial of service...

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service crash via vectors related to "recursion level" and 1 libclamav/bytecode.c and 2 libclamav/bytecodeapi.c...

kernel: inet_diag: insufficient validation

The inetdiagbcaudit function in net/ipv4/inetdiag.c in the Linux kernel before 2.6.39.3 does not properly audit INETDIAG bytecode, which allows local users to cause a denial of service kernel infinite loop via crafted INETDIAGREQBYTECODE instructions in a netlink message, as demonstrated by an...

UBUNTU-CVE-2011-2213

The inetdiagbcaudit function in net/ipv4/inetdiag.c in the Linux kernel before 2.6.39.3 does not properly audit INETDIAG bytecode, which allows local users to cause a denial of service kernel infinite loop via crafted INETDIAGREQBYTECODE instructions in a netlink message, as demonstrated by an...

kernel: inet_diag: insufficient validation

The inetdiagbcaudit function in net/ipv4/inetdiag.c in the Linux kernel before 2.6.39.3 does not properly audit INETDIAG bytecode, which allows local users to cause a denial of service kernel infinite loop via crafted INETDIAGREQBYTECODE instructions in a netlink message, as demonstrated by an...

CentOS Update for java CESA-2011:0281 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

kernel: inet_diag: insufficient validation

The inetdiagbcaudit function in net/ipv4/inetdiag.c in the Linux kernel before 2.6.39.3 does not properly audit INETDIAG bytecode, which allows local users to cause a denial of service kernel infinite loop via crafted INETDIAGREQBYTECODE instructions in a netlink message, as demonstrated by an...

PT-2011-3683 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39.3 Description: The issue is related to the inet diag bc audit function in the Linux kernel, which does not properly audit INET DIAG bytecode. This allows local users to cause a denial of service,...

OpenJDK: JVM memory corruption via certain bytecode (HotSpot, 7020373)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availabili...