18 matches found
SUSE CVE-2017-1000376
libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was previously stated that this affects libffi version 3.2.1 but this appears to be incorrect. libffi...
Huawei EulerOS: Security Advisory for libffi (EulerOS-SA-2020-2357)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : libffi (EulerOS-SA-2020-2357)
According to the version of the libffi packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that...
EulerOS Virtualization 3.0.2.2 : libffi (EulerOS-SA-2020-2186)
According to the version of the libffi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Plea...
Huawei EulerOS: Security Advisory for libffi (EulerOS-SA-2020-2113)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libffi (EulerOS-SA-2020-1760)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.6.0 : libffi (EulerOS-SA-2020-1760)
According to the version of the libffi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Plea...
Huawei EulerOS: Security Advisory for libffi (EulerOS-SA-2019-1756)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libffi (EulerOS-SA-2019-1941)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-1000376
libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was previously stated that this affects libffi version 3.2.1 but this appears to be incorrect. libffi...
EulerOS Virtualization for ARM 64 3.0.2.0 : libffi (EulerOS-SA-2019-1941)
According to the version of the libffi package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the...
EulerOS 2.0 SP5 : libffi (EulerOS-SA-2019-1756)
According to the version of the libffi packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that...
SUSE SLES11 Security Update : gcc43 (SUSE-SU-2018:0300-1) (Stack Clash)
This update for gcc43 fixes the following issues: Security issue fixed : - CVE-2017-1000376: Don't request excutable stack from libffi. bnc1045091 New features : - Add support for retpolines to mitigate the Spectre Variant 2 attack. bnc1074621 - Add support for zero-sized VLAs and allocas with...
[SECURITY] [DLA 997-1] libffi security update
Package : libffi Version : 3.0.10-3+deb7u1 CVE ID : CVE-2017-1000376 libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. For Debian 7 "Wheezy", these proble...
CVE-2017-1000376
libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was previously stated that this affects libffi version 3.2.1 but this appears to be incorrect. libffi...
[SECURITY] [DSA 3889-1] libffi security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3889-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez June 19, 2017 https://www.debian.org/security/faq -...
CVE-2017-1000376
CVE-2017-1000376 affects libffi. The vulnerability enables an executable stack that can be exploited to trigger arbitrary code execution on 32-bit x86 systems prior to libffi 3.1; upstream is believed to have fixed the issue in version 3.1. Other references indicate that libffi 3.1.x mitigates th...
Debian Security Advisory DSA 3889-1 (libffi - security update)
libffi, a library used to call code written in one language from code written in a different language, was enforcing an executable stack on the i386 architecture. While this might not be considered a vulnerability by itself, this could be leveraged when exploiting other vulnerabilities, like for...