17 matches found
MiracleLinux 7 : gcab-0.7-4.el7 (AXSA:2018-2581:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-2581:01 advisory. gcab: Extracting malformed .cab files causes stack smashing potentially leading to arbitrary code execution CVE-2018-5345 Tenable has extracted the preceding...
NewStart CGSL CORE 5.04 / MAIN 5.04 : gcab Vulnerability (NS-SA-2019-0020)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has gcab packages installed that are affected by a vulnerability: - A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code...
CentOS 7 : gcab (CESA-2018:0350)
An update for gcab is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
gcab, libgcab1 security update
CentOS Errata and Security Advisory CESA-2018:0350 An update for gcab is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Fedora 26 : gcab (2018-c54ced412e)
New upstream release - This fixes the security bug known as CVE-2018-5345 - Do not encode timezone in generated files - Fix countless memory leaks when parsing corrupt files Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
RHEL 7 : gcab (RHSA-2018:0350)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0350 advisory. The gcab package contains a utility for managing the Cabinet archives. It can list, extract, and create Microsoft cabinet .cab files. Security Fixes:...
Scientific Linux Security Update : gcab on SL7.x x86_64 (20180226)
Security Fixes : - gcab: Extracting malformed .cab files causes stack smashing potentially leading to arbitrary code execution CVE-2018-5345 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid107020; scriptversion"3.4";...
Oracle Linux 7 : gcab (ELSA-2018-0350)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-0350 advisory. - Fixes the security issue known as CVE-2018-5345 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
gcab security update
0.7-4 - Fixes the security issue known as CVE-2018-5345 - Resolves: 1533174...
MGASA-2018-0111 Updated gcab packages fix security vulnerability
It was discovered that gcab is prone to a stack-based buffer overflow vulnerability when extracting .cab files. An attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary code with the privileges of the user running gcab, if a specially...
Fedora Update for gcab FEDORA-2018-87971e3c98
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4095-1] gcab security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4095-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 24, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4095-1] gcab security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4095-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 24, 2018 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-4095-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-5345
A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file...
CVE-2018-5345
CVE-2018-5345 describes a stack-based buffer overflow in GNOME gcab up to version 0.7.4, exploitable via malformed .cab files to crash or potentially execute arbitrary code. Connected advisories document that fixes were released in various distributions (e.g., gcab updates in Fedora 26 and Red Ha...
CVE-2018-5345
A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file...