3 matches found
Debian dla-4426 : osslsigncode - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4426 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4426-1 [email protected] https://www.debian.org/lts/security/...
Linux Distros Unpatched Vulnerability : CVE-2023-36377
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, .sys, and .dll...
CVE-2023-36377
CVE-2023-36377 affects osslsigncode, a signing tool. A Buffer Overflow in osslsigncode v2.3 and earlier can allow local arbitrary code execution when signing crafted files (.exe/.sys/.dll). Multiple Debian LTS advisories document affected package osslsigncode and fixes via upgraded versions: Debi...