CVE-2008-3229

Stack-based buffer overflow in op before Changeset 563, when xauth support is enabled, allows local users to gain privileges via a long XAUTHORITY environment variable...

CVE-2008-3229

The CVE-2008-3229 entry describes a stack-based buffer overflow in op before Changeset 563 when xauth support is enabled, allowing local users to gain privileges via a long XAUTHORITY environment variable. The connected records confirm the basic cause and impact (local privilege escalation) but d...

libvorbis多个缓冲区溢出漏洞

BUGTRAQ ID: 29206 CVECAN ID: CVE-2008-1419,CVE-2008-1420,CVE-2008-1423 libvorbis是开源的音频音乐编码解码函数库。 libvorbis在处理畸形格式的OGG文件时存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 如果特制的OGG文件包含有codebook维度为0的话，打开该文件就会导致使用libvorbis库的应用程序崩溃、出现死循环或堆溢出。...

Fedora 7 : moin-1.5.8-4.fc7 (2008-1880)

Wed Feb 20 2008 Lubomir Kundrak 1.5.8-4 - Fix CVE-2008-0780 XSS in login action 2f952fa361c7 - Fix CVE-2008-0781 multiple XSS in AttachFile action db212dfc58ef - Fri Feb 8 2008 Matthias Saou 1.5.8-3 - Include e69a16b6e630 1.5 changeset as cookieidfix 432017. - Sun Aug 5 2007 Matthias Saou 1.5.8-2...

Multiple libvorbis flaws (CVE-2007-4066, CVE-2007-4029)

lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows context-dependent attackers to cause a denial of service infinite loop via a crafted OGG file, aka trac Changeset 13217...

CVE-2007-4065

lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows context-dependent attackers to cause a denial of service infinite loop via a crafted OGG file, aka trac Changeset 13217...