22 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-1982
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via...
RHEL 5 : privoxy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - privoxy: invalid read via empty host header in client request CVE-2016-1983 - The...
Debian: Security Advisory (DLA-398-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux: Security Advisory (ALAS-2016-663)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : privoxy (ALAS-2016-663)
The removechunkedtransfercoding function allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content. CVE-2016-1982 The clienthost function in parsers.c allows remote attackers to cause a denial of service invalid read and crash via an empty HTTP...
Fedora 23 : privoxy-3.0.23-3.fc23 (2016-29995fbd42)
Patches for CVE-2016-1982,3 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 22 : privoxy-3.0.23-3.fc22 (2016-bc7acd24c6)
Patches for CVE-2016-1982,3 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
MGASA-2016-0055 Updated privoxy packages fix security vulnerabilities
This update fixes two denial-of-service vulnerabilities that have been discovered in privoxy 3.0.23: The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
Debian: Security Advisory (DSA-3460-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : Privoxy (openSUSE-2016-132)
This update to Privoxy 3.0.24 fixes two minor security issues. The vulnerabilities should not be exploitable in the binary as compiled in openSUSE. - CVE-2016-1982: Corrupt chunk-encoded content could cause an invalid read boo963151 - CVE-2016-1983: Empty Host headers in client requests could...
Debian DSA-3460-1 : privoxy - security update
It was discovered that privoxy, a web proxy with advanced filtering capabilities, contained invalid reads that could enable a remote attacker to crash the application, thus causing a Denial of Service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
[SECURITY] [DSA 3460-1] privoxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3460-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 30, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3460-1] privoxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3460-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 30, 2016 https://www.debian.org/security/faq -...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
Affected software / component: Privoxy (filters.c, remove_chunked_transfer_coding). Vulnerability: Remote attackers can trigger a denial of service (invalid read and crash) by sending crafted chunk-encoded content. This impacts Privoxy versions before 3.0.24. Impact: Denial of Service via crafted...
privoxy: denial of service
CVE-2016-1982 denial of service A vulnerability was discovered in a way the privoxy deals with corrupted chunk-encoded content. A maliciously crafted input can result in a remote denial of service. - CVE-2016-1983 denial of service A vulnerability was found in a way the privoxy processes specific...
Debian DLA-398-1 : privoxy security update
CVE-2016-1982 Prevent invalid reads in case of corrupt chunk-encoded content CVE-2016-1983 Remove empty Host headers in client requests; resulting in invalid reads. NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has...
[SECURITY] [DLA 398-1] privoxy security update
Package : privoxy Version : 3.0.16-1+deb6u1 CVE ID : CVE-2016-1982 CVE-2016-1983 CVE-2016-1982 Prevent invalid reads in case of corrupt chunk-encoded content CVE-2016-1983 Remove empty Host headers in client requests; resulting in invalid reads...