Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2022/10/21 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2022:3671-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/21 12:0 a.m.21 views

SUSE SLES15: libostree / libostree-1-1 / libostree-devel / etc (SUSE-SU-2022:3671-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3671-1 advisory. - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770. Tenable has extracted the preceding description block directly from...

7.8CVSS7.3AI score0.06762EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/29 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2022:3456-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/29 12:0 a.m.16 views

openSUSE: Security Advisory for libostree (SUSE-SU-2022:3456-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/29 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:3455-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.29 views

SUSE SLED15: libostree / libostree-1-1 / libostree-devel / libostree-grub2 / etc (SUSE-SU-2022:3456-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3456-1 advisory. - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770. Tenable has extracted the...

7.8CVSS7.3AI score0.06762EPSS
Exploits0References4
OSV
OSV
added 2022/09/28 2:57 p.m.9 views

SUSE-SU-2022:3455-1 Security update for libostree

This update for libostree fixes the following issues: - CVE-2014-9862: Fixed arbitrary write on heap vulnerability bsc1201770...

7.8CVSS7.6AI score0.06762EPSS
Exploits0References3
Mageia
Mageia
added 2022/09/16 7:39 p.m.31 views

Updated ostree packages fix security vulnerability

A memory corruption issue that could be triggered when diffing binary files. CVE-2014-9862...

7.8CVSS8AI score0.06762EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/09/09 12:0 a.m.36 views

SUSE SLED15: libostree / libostree-1-1 / libostree-devel / libostree-grub2 / etc (SUSE-SU-2022:3094-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3094-1 advisory. - CVE-2014-9862: Fixed a memory corruption issue that could be triggered when diffing binary files...

7.8CVSS7.2AI score0.06762EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/07 12:0 a.m.11 views

openSUSE: Security Advisory for libostree (SUSE-SU-2022:3094-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2016-0288)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.06762EPSS
Exploits0References4
Debian
Debian
added 2019/11/26 9:29 p.m.53 views

[SECURITY] [DLA 2010-1] bsdiff security update

Package : bsdiff Version : 4.3-15+deb8u1 CVE ID : CVE-2014-9862 An issue in bsdiff, a tool to generate/apply a patch between two binary files, has been found. Using a crafted patch file an integer signedness error in bspatch could be used for a heap based buffer overflow and possibly execution of...

7.8CVSS8.1AI score0.06762EPSS
Exploits0
Apple
Apple
added 2017/11/30 10:28 a.m.93 views

About the security content of OS X El Capitan v10.11.6 and Security Update 2016-004 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

10CVSS0.8AI score0.89058EPSS
Exploits28Affected Software5
Mageia
Mageia
added 2016/08/31 3:32 p.m.36 views

Updated bsdiff packages fix security vulnerability

Integer signedness error in bspatch.c in bspatch in bsdiff allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file CVE-2014-9862...

7.8CVSS8.2AI score0.06762EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2016/08/23 12:0 a.m.6 views

FreeBSD bspatch Utility Remote Code Execution (CVE-2014-9862)

A remote code execution vulnerability has been reported in the bspatch utility in FreeBSD. The vulnerability is due to improper validation on the numbers of bytes to read from diff and extra stream values. A remote attacker can exploit this vulnerability by enticing the target user to download an...

7.2CVSS4.8AI score0.06762EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/08 12:0 a.m.17 views

openSUSE Security Update : bsdiff (openSUSE-2016-946)

This update for bsdiff fixes the following issues : - CVE-2014-9862: Improper checking of input allows arbitrary write on heap boo990660 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

7.8CVSS7.2AI score0.06762EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/07/22 2:59 a.m.25 views

CVE-2014-9862

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...

7.8CVSS7.3AI score0.06762EPSS
Exploits0References7
OSV
OSV
added 2016/07/22 2:59 a.m.6 views

CVE-2014-9862

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...

7.8CVSS7.8AI score
Exploits0References15
CVE
CVE
added 2016/07/22 1:0 a.m.140 views

CVE-2014-9862

CVE-2014-9862 targets the bspatch component of bsdiff. The issue is an integer signedness error in bspatch that can cause a heap-based buffer overflow when processing a crafted patch, enabling a remote attacker to execute arbitrary code or cause a denial of service. Affected products include Appl...

7.8CVSS7.9AI score0.06762EPSS
Exploits0References14Affected Software1
Rows per page
Query Builder