9 matches found
Mageia: Security Advisory (MGASA-2018-0214)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 28 : libofx (2018-8a208fba70)
This update fixes assorted CVEs in LibOFX. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
SUSE SLED12 Security Update : libofx (SUSE-SU-2018:2064-1)
This update for libofx fixes the following issues: Security issues fixed : - CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality bsc1058673. - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitizeproprietarytags in lib/ofxpreproc.cpp bsc106196...
[ASA-201805-19] libofx: denial of service
Arch Linux Security Advisory ASA-201805-19 ========================================== Severity: Medium Date : 2018-05-20 CVE-ID : CVE-2017-14731 Package : libofx Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-536 Summary ======= The package libofx before version...
Fedora Update for libofx FEDORA-2018-4a2b875d6b
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : libofx (2018-1b3a73b45f)
This updates LibOFX to fix assorted CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Debian DLA-1192-1 : libofx security update
CVE-2017-2816 An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this...
[SECURITY] [DLA 1192-1] libofx security update
Package : libofx Version : 1:0.9.4-2.1+deb7u1 CVE ID : CVE-2017-2816 CVE-2017-14731 CVE-2017-2816 An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on t...
CVE-2017-14731
CVE-2017-14731 affects LibOFX up to 0.9.12, where ofx_proc_file in ofx_preproc.cpp can be exploited by a crafted OFX file to cause a denial of service via a heap-based buffer over-read and application crash. Public advisories (Arch Linux ASA-201805-19, Gentoo GLSA-201908-26, SUSE/Fedora updates) ...