Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.19 views

Slackware: Security Advisory (SSA:2008-098-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02957EPSS
Exploits1References2
seebug.org
seebug.org
added 2008/04/13 12:0 a.m.56 views

GNU m4格式串及文件名引用漏洞

BUGTRAQ ID: 28688 CVECAN ID: CVE-2008-1687,CVE-2008-1688 GNU M4是广泛应用的GNU宏处理器。 GNU M4的src/freeze.c文件中的producefrozenstate函数存在格式串处理漏洞,如果向m4 -F传送了特制的文件名参数的话,就可能导致执行任意指令。 GNU M4在实现maketemp和mkstemp宏时存在漏洞,如果输出字符串中包含有特殊字符的话,就可能导致处理不正确的文件。 GNU m4 1.4.10 GNU --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.5CVSS6.4AI score0.02957EPSS
Exploits1
CVE
CVE
added 2008/04/09 7:0 p.m.58 views

CVE-2008-1688

CVE-2008-1688 affects GNU m4 up to version 1.4.10, with the issue arising from how filenames are handled when using -F. The vulnerability is described as allowing context-dependent attackers to execute arbitrary code due to improper filename handling in the code paths related to maketemp/mkstemp ...

7.5CVSS7AI score0.02957EPSS
Exploits1References9Affected Software1
Slackware Linux
Slackware Linux
added 2008/04/07 6:50 p.m.29 views

[slackware-security] m4

New m4 packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1687...

7.5CVSS6.5AI score0.02957EPSS
Exploits1
Rows per page
Query Builder