23 matches found
CBL Mariner 2.0 Security Update: p7zip (CVE-2017-17969)
The version of p7zip installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-17969 advisory. - Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7z...
CVE-2017-17969 affecting package p7zip for versions less than 16.02-23
CVE-2017-17969 affecting package p7zip for versions less than 16.02-23. A patched version of the package is available...
CVE-2017-17969 affecting package p7zip for versions less than 16.02-22
CVE-2017-17969 affecting package p7zip for versions less than 16.02-22. A patched version of the package is available...
Mageia: Security Advisory (MGASA-2018-0123)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-17969 affecting package p7zip 16.02-22
CVE-2017-17969 affecting package p7zip 16.02-22. A patched version of the package is available...
emploi.batiactu.com Cross Site Scripting vulnerability OBB-1194410
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
chicagoab.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1044590 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Denial Of Service (DoS)
chocolatey is vulnerable to denial of service DoS attacks. The library uses an outdated version of the 7zip application that is affected by CVE-2017-17969, causing a heap based buffer overflow when it processes certain zip files, crashing the application or executing arbitrary code. This...
7-Zip < 18.00 Multiple Vulnerabilities
The version of 7-Zip installed on the remote Windows host is prior to 18.0. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid109800; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate",...
openSUSE Security Update : p7zip (openSUSE-2018-188)
This update for p7zip fixes the following security issues : - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR decompression...
Security update for p7zip (important)
This update for p7zip fixes the following security issues: - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR decompression...
SUSE SLED12 / SLES12 Security Update : p7zip (SUSE-SU-2018:0464-1)
This update for p7zip fixes the following issues: Security issues fixed : - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR...
FreeBSD : p7zip -- heap-based buffer overflow (6d337396-0e4a-11e8-94c0-5453ed2e2b49)
MITRE reports : Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive. C Tenable Network Security, Inc...
Updated p7zip packages fix security vulnerability
Heap-based buffer overflow vulnerability in the NCompress::NShrink::CDecoder::CodeReal method in p7zip. A remote attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary code with the privileges of the user running p7zip, if a specially...
Fedora 27 : p7zip (2018-f8ad787538)
Security fix for CVE-2017-17969 from Debian Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for p7zip FEDORA-2018-cd4311d4d6
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for p7zip FEDORA-2018-f8ad787538
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-4104-1 : p7zip - security update
'landave' discovered a heap-based buffer overflow vulnerability in the NCompress::NShrink::CDecoder::CodeReal method in p7zip, a 7zr file archiver with high compression ratio. A remote attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary...
CVE-2017-17969
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...
CVE-2017-17969
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...