6 matches found
openSUSE Security Update : libmicrohttpd (openSUSE-2017-728)
This update for libmicrohttpd fixes the following issues : - CVE-2013-7038: The MHDhttpunescape function in libmicrohttpd might have allowed remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read. bsc854443 -...
SUSE SLES12 Security Update : libmicrohttpd (SUSE-SU-2017:1576-1)
This update for libmicrohttpd fixes the following issues : - CVE-2013-7038: The MHDhttpunescape function in libmicrohttpd might have allowed remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read. bsc854443 -...
Important: libmicrohttpd
Issue Overview: Stack-based buffer overflow in the MHDdigestauthcheck function in libmicrohttpd before 0.9.32, when MHDOPTIONCONNECTIONMEMORYLIMIT is set to a large value, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long URI in an...
Updated libmicrohttpd package fixes security vulnerabilities
The MHDhttpunescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read CVE-2013-7038. Stack-based buffer overflow in the MHDdigestauthcheck function in...
UBUNTU-CVE-2013-7038
The MHDhttpunescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read...
CVE-2013-7038
CVE-2013-7038 affects libmicrohttpd up to version prior to 0.9.32. The MHD_http_unescape function may trigger an out-of-bounds read, allowing remote attackers to obtain sensitive information and/or cause a denial of service (crash). Several advisories (openSUSE/SUSE/Mageia/OpenVAS listings) indic...