7 matches found
Mageia: Security Advisory (MGASA-2017-0149)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2219-1] feh security update
Package : feh Version : 2.12-1+deb8u1 CVE ID : CVE-2017-7875 Tobias Stoeckmann discovered that it was possible to trigger an out-of-boundary heap write with the image viewer feh while receiving an IPC message. For Debian 8 "Jessie", this problem has been fixed in version 2.12-1+deb8u1. We recomme...
diyclockparts.emyspot.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1028758 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting diyclockparts.emyspot.com...
Fedora 27 : feh (2018-56ec0ccd82)
update to 2.28 fixes rhbz 1438979 1444077 and 1602421 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Updated feh package fixes security vulnerability
Updated feh package to fix a double-free/OOB-write in E17 IPC. This was a potential security issue as a malicious X11 app running alongside feh and pretending to be an E17 window manager could have had access to out-of-bound memory. Security vulnerability: CVE-2017-7875...
openSUSE Security Update : feh (openSUSE-2017-531)
This update for feh on Leap 42.1 fixes this security issue : - CVE-2017-7875: In wallpaper.c in feh if a malicious client pretended to be the E17 window manager, it was possible to trigger an out-of-boundary heap write while receiving an IPC message. An integer overflow leads to a buffer overflow...
CVE-2017-7875
CVE-2017-7875 affects feh (wallpaper.c). A malicious IPC message spoofing the E17 window manager can trigger an out-of-bounds heap write due to an integer overflow, leading to a buffer overflow and/or double free. The issue is triggered by certain IPC interactions and is associated with versions ...