8 matches found
Mageia: Security Advisory (MGASA-2018-0214)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : libofx (openSUSE-2018-820)
This update for libofx fixes the following issues : The following security vulnerabilities have been addressed : - CVE-2017-2920: Fixed an exploitable buffer overflow in the tag parsing functionality, which could result in an out of bounds write and could be triggered via a specially crafted OFX...
openSUSE: Security Advisory for libofx (openSUSE-SU-2018:2229-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED12 Security Update : libofx (SUSE-SU-2018:2064-1)
This update for libofx fixes the following issues: Security issues fixed : - CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality bsc1058673. - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitizeproprietarytags in lib/ofxpreproc.cpp bsc106196...
Fedora Update for libofx FEDORA-2018-4a2b875d6b
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Computerinsel Photoline SVG Parsing Code Execution Vulnerability(CVE-2017-2920)
Summary An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SV...
CVE-2017-2920
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file t...
CVE-2017-2920
Summary (CVE-2017-2920): A memory corruption vulnerability in the tag parsing functionality of LibOFX (OFX processing library) can be triggered by specially crafted OFX/.SVG-derivative inputs, potentially allowing out-of-bounds writes. Documented in multiple advisories (Mageia, openSUSE, SUSE, Ge...