19 matches found
SUSE: Security Advisory (SUSE-SU-2022:3671-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: libostree / libostree-1-1 / libostree-devel / etc (SUSE-SU-2022:3671-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3671-1 advisory. - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770. Tenable has extracted the preceding description block directly from...
SUSE: Security Advisory (SUSE-SU-2022:3456-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for libostree (SUSE-SU-2022:3456-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:3455-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: libostree / libostree-1-1 / libostree-devel / libostree-grub2 / etc (SUSE-SU-2022:3456-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3456-1 advisory. - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770. Tenable has extracted the...
SUSE-SU-2022:3455-1 Security update for libostree
This update for libostree fixes the following issues: - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770...
Updated ostree packages fix security vulnerability
A memory corruption issue that could be triggered when diffing binary files. CVE-2014-9862...
SUSE SLED15: libostree / libostree-1-1 / libostree-devel / libostree-grub2 / etc (SUSE-SU-2022:3094-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3094-1 advisory. - CVE-2014-9862: Fixed a memory corruption issue that could be triggered when diffing binary files...
openSUSE: Security Advisory for libostree (SUSE-SU-2022:3094-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mageia: Security Advisory (MGASA-2016-0288)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2010-1] bsdiff security update
Package : bsdiff Version : 4.3-15+deb8u1 CVE ID : CVE-2014-9862 An issue in bsdiff, a tool to generate/apply a patch between two binary files, has been found. Using a crafted patch file an integer signedness error in bspatch could be used for a heap based buffer overflow and possibly execution of...
About the security content of OS X El Capitan v10.11.6 and Security Update 2016-004 - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...
Updated bsdiff packages fix security vulnerability
Integer signedness error in bspatch.c in bspatch in bsdiff allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file CVE-2014-9862...
FreeBSD bspatch Utility Remote Code Execution (CVE-2014-9862)
A remote code execution vulnerability has been reported in the bspatch utility in FreeBSD. The vulnerability is due to improper validation on the numbers of bytes to read from diff and extra stream values. A remote attacker can exploit this vulnerability by enticing the target user to download an...
openSUSE Security Update : bsdiff (openSUSE-2016-946)
This update for bsdiff fixes the following issues : - CVE-2014-9862: Improper checking of input allows arbitrary write on heap boo990660 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
CVE-2014-9862
Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...
CVE-2014-9862
Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...
CVE-2014-9862
CVE-2014-9862 targets the bspatch component of bsdiff. The issue is an integer signedness error in bspatch that can cause a heap-based buffer overflow when processing a crafted patch, enabling a remote attacker to execute arbitrary code or cause a denial of service. Affected products include Appl...