20 matches found
Mageia: Security Advisory (MGASA-2017-0080)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS : icoutils vulnerabilities (USN-4695-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4695-1 advisory. Choongwoo Han discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execu...
Huawei EulerOS: Security Advisory for icoutils (EulerOS-SA-2017-1059)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for icoutils (EulerOS-SA-2017-1089)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : icoutils (openSUSE-2017-881)
This update for icoutils fixes the following issues : - CVE-2017-6009: Buffer Overflows in wrestool bsc1025703 - CVE-2017-6010, CVE-2017-6011: out-of-bounds read leading to a buffer overflow in the 'simplevec' function bsc1025700 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...
Fedora 26 : icoutils (2017-a861eb07ee)
Security fix for CVE-2017-6009, CVE-2017-6010, CVE-2017-6011. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Virtuozzo 7 : icoutils (VZLSA-2017-0837)
An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
EulerOS 2.0 SP1 : icoutils (EulerOS-SA-2017-1089)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...
EulerOS 2.0 SP2 : icoutils (EulerOS-SA-2017-1059)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...
CentOS 7 : icoutils (CESA-2017:0837)
An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Scientific Linux Security Update : icoutils on SL7.x x86_64 (20170322)
Security Fixes : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution. CVE-2017-5208, CVE-2017-5333, CVE-2017-6009 - A...
Important: Red Hat Security Advisory: icoutils security update
An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
RedHat Update for icoutils RHSA-2017:0837-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for icoutils FEDORA-2017-e8460ebed6
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-854-1 : icoutils security update
Icoutils is a set of programs that deal with MS Windows icons and cursors. Resources such as icons and cursors can be extracted from MS Windows executable and library files with wrestool. Three vulnerabilities has been found in these tools. CVE-2017-6009 A buffer overflow was observed in wrestool...
[SECURITY] [DSA 3807-1] icoutils security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3807-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 12, 2017 https://www.debian.org/security/faq -...
CVE-2017-6009
A vulnerability was found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution...
CVE-2017-6009
An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decodeneresourceid" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a fail...
CVE-2017-6009
CVE-2017-6009 : In icoutils, a buffer overflow in decode_ne_resource_id (restable.c) arises from an unchecked negative length used in memcpy, potentially allowing code execution or crash via crafted input read by wrestool. The Debian/DSA and CentOS advisories confirm multiple related issues in ic...
CVE-2017-6009
An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decodeneresourceid" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a fail...