9 matches found
Gentoo Security Advisory GLSA 201401-29
Gentoo Linux Local Security Checks GLSA 201401-29 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
GLSA-201401-29 : VIPS: Privilege Escalation
The remote host is affected by the vulnerability described in GLSA-201401-29 VIPS: Privilege Escalation VIPS places a zero-length directory name in the LDLIBRARYPATH, which might result in the current working directory . to be included when searching for dynamically linked libraries. Impact : A...
Fedora Update for nip2 FEDORA-2011-10769
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for nip2 FEDORA-2011-10808
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 16 : nip2-7.24.2-1.fc16 / vips-7.24.7-2.fc16 (2011-10769)
7.24 series. Run-time code generation Open via disc mode Workspace as Graph mode for nip2 FITS image format VIPS rewrite Better nibs in paintbox Better TIFF and JPEG load Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
Fedora 14 : nip2-7.24.2-1.fc14 / vips-7.24.7-2.fc14 (2011-10781)
7.24 series. Run-time code generation Open via disc mode Workspace as Graph mode for nip2 FITS image format VIPS rewrite Better nibs in paintbox Better TIFF and JPEG load Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
CVE-2010-3364
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3364
VIPS (image processing library) vulnerability CVE-2010-3364 affects VIPS up to 7.22.x, where a zero-length directory name placed in LD_LIBRARY_PATH may cause the current directory to be searched for dynamic libraries, enabling local privilege escalation. Gentoo GLSA 201401-29 cites that upgrading...
Security fix for the ALT Linux 5 package vips version 7.22.3-alt1
Oct. 16, 2010 Michael Shigorin 7.22.3-alt1 - 7.22.3 fixes CVE-2010-3364 insecure library loading; thanks crux@ for heads-up closes: 24330...