13 matches found
Mageia: Security Advisory (MGASA-2014-0436)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : kdebase4-runtime / kdelibs4 / konversation / etc (openSUSE-2015-251)
KDE and QT were updated to fix security issues and bugs. The following vulerabilities were fixed : - CVE-2014-0190: Malformed GIF files could have crashed QT based applications - CVE-2015-0295: Malformed BMP files could have crashed QT based applications - CVE-2014-8600: Multiple cross-site...
[SECURITY] [DLA 168-1] konversation security update
Package : konversation Version : 1.3.1-2+deb6u1 CVE ID : CVE-2014-8483 Debian Bug : 768191 It was discovered that Konversation, an IRC client for KDE, could by crashed when receiving malformed messages using FiSH encryption...
Fedora 19 : konversation-1.5.1-1.fc19 (2014-13702)
Konversation 1.5.1 is a maintenance release containing only bug fixes. The included changes address several minor behavioral defects and a low-risk DoS security defect in the Blowfish ECB support. See also: https://konversation.kde.org/ Note that Tenable Network Security has extracted the precedi...
Fedora Update for konversation FEDORA-2014-13702
Check the version of konversation SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868488";...
Ubuntu 12.04 LTS : konversation vulnerability (USN-2401-1)
Manuel Nickschas discovered that Konversation did not properly perform input sanitization when using Blowfish ECB encryption. A remote attacker could exploit this to cause a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubunt...
openSUSE Security Update : quassel (openSUSE-SU-2014:1382-1)
quassel was updated to fix an out-of-bound read CVE-2014-8483. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-638. The text description of this plugin is C SUSE LLC...
Debian DSA-3068-1 : konversation - security update
It was discovered that Konversation, an IRC client for KDE, could be crashed when receiving malformed messages using FiSH encryption. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3068...
[SECURITY] [DSA 3068-1] konversation security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3068-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 07, 2014 http://www.debian.org/security/faq -...
CVE-2014-8483
The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote attackers to cause a denial of service out-of-bounds read via a malformed string...
Updated konversation package fixes security vulnerability
Due to and out-of-bounds read issue in Konversation in The ECB Blowfish decryption function, a malicious client can cause either denial of service or disclosure of information from process memory by using an improperly formed message CVE-2014-8483...
MGASA-2014-0436 Updated quassel packages fix security vulnerability
Due to and out-of-bounds read issue in Quassel core in The ECB Blowfish decryption function, a malicious client can cause either denial of service or disclosure of information from process memory by using an improperly formed message CVE-2014-8483...
CVE-2014-8483
The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote attackers to cause a denial of service out-of-bounds read via a malformed string...