openSUSE Security Update : docker / go (openSUSE-SU-2014:1411-1)

Docker was updated to version 1.3.1 to fix two security issues and several other bugs. These security issues were fixed : - Prevent fallback to SSL protocols lower than TLS 1.0 for client, daemon and registry CVE-2014-5277. - Secure HTTPS connection to registries with certificate verification and...

Important: glibc

Issue Overview: An off-by-one heap-based buffer overflow flaw was found in glibc's internal gconvtranslitfind function. An attacker able to make an application call the iconvopen function with a specially crafted argument could possibly use this flaw to execute arbitrary code with the privileges ...

openSUSE: Security Advisory for security (openSUSE-SU-2014:0969-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: php54

Issue Overview: acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file. A denial of service flaw was found in the way the File Information fileinfo extension parsed certain...

openSUSE Security Update : tiff (openSUSE-SU-2013:1482-1)

This tiff security update fixes several buffer overflow issues and a out-of-bounds wirte problem. - tiff: buffer overflows/use after free problem CVE-2013-4231CVE-2013-4232bnc834477 - libtiff gif2tiff: OOB Write in LZW decompressor CVE-2013-4244bnc834788 - libtiff gif2tiff: heap-based buffer...

openSUSE Security Update : openssl (openSUSE-SU-2014:0635-1)

Fixed bug bnc876282, CVE-2014-0198 openssl: OpenSSL NULL pointer dereference in dossl3write Add file: CVE-2014-0198.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-359. The...

openSUSE Security Update : squid3 (openSUSE-SU-2012:0213-1)

This update fixes the following security issue : - 727492: Invalid free by processing CNAME CVE-2011-4096 This update also fixes the following non-security issue : - 737905: installation creates empty spurious file '/1' %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

openSUSE Security Update : pcp (openSUSE-SU-2012:1081-1)

Update to pcp-3.6.5. + Fixes for security advisory CVE-2012-3418; bnc775009. + Workaround for security advisory CVE-2012-3419; bnc775010. + Fixes for security advisory CVE-2012-3420; bnc775011. + Fixes for security advisory CVE-2012-3421; bnc775013. %NASLMINLEVEL 70300 C Tenable Network Security,...

openSUSE Security Update : tiff (openSUSE-SU-2012:0539-1)

specially crafted tiff files could cause a heap overflow in libtiff %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-234. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : php5 (openSUSE-2012-288)

The patch for CVE-2012-1823 was incomplete, this update fixes the remaining bits CVE-2012-2335, CVE-2012-2336 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-288. The text...

openSUSE Security Update : tftp (openSUSE-SU-2011:0734-1)

Malicious clients could overflow a buffer in tftpd by specifying a large value for the utimeout option CVE-2011-2199. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update tftp-4783. The text...

RedHat Update for openssl RHSA-2014:0624-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2013-1158 · Gnu +4 · Gimp-Debuginfo +5

Name of the Vulnerable Software and Affected Versions: GIMP versions 2.6.9 and earlier gimp-debuginfo version 2.2.13 Description: The issue is related to a heap-based buffer overflow in the read xwd cols function in the X Window Dump XWD plug-in, which can be exploited by remote attackers using a...

SuSE Update for kernel openSUSE-SU-2013:0925-1 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test $Id: gbsuse201309251.nasl 8448 2018-01-17 16:18:06Z teissa $ SuSE Update for kernel openSUSE-SU-2013:0925-1 kernel Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program ...

RedHat Update for qspice RHSA-2013:1474-01

Check for the Version of qspice OpenVAS Vulnerability Test RedHat Update for qspice RHSA-2013:1474-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

RedHat Update for hplip RHSA-2013:1274-01

Check for the Version of hplip OpenVAS Vulnerability Test RedHat Update for hplip RHSA-2013:1274-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Oracle Linux 5 : java-1.6.0-openjdk (ELSA-2010-0339)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0339 advisory. 1:1.6.0.0-1.11.b16.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-1.11.b16.el5 - Remove javaws alternative due to conflict with java-1.6.0-sun's...

RedHat Update for mesa RHSA-2013:0898-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE Update for mysql-community-server openSUSE-SU-2013:0013-1 (mysql-community-server)

Check for the Version of mysql-community-server OpenVAS Vulnerability Test $Id: gbsuse201300131.nasl 8494 2018-01-23 06:57:55Z teissa $ SuSE Update for mysql-community-server openSUSE-SU-2013:0013-1 mysql-community-server Authors: System Generated Check Copyright: Copyright c 2013 Greenbone...

Scientific Linux Security Update : elinks on SL5.x, SL6.x i386/x86_64 (20130211)

It was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI. CVE-2012-4545 %NASLMINLEVEL...