RHEL 5 : glib2 (RHSA-2009:0336)

Updated glib2 packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOM...

Ubuntu Update for cupsys vulnerabilities USN-598-1

Ubuntu Update for Linux kernel vulnerabilities USN-598-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5981.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for cupsys vulnerabilities USN-598-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu Update for linux, linux-source-2.6.15/20/22 vulnerabilities USN-625-1

Ubuntu Update for Linux kernel vulnerabilities USN-625-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6251.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/20/22 vulnerabilities USN-625-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networ...

Ubuntu USN-735-1 (gst-plugins-base0.10)

The remote host is missing an update to gst-plugins-base0.10 announced via advisory USN-735-1. OpenVAS Vulnerability Test $Id: ubuntu7351.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7351.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-735-1...

Ubuntu: Security Advisory (USN-735-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-735-1: GStreamer Base Plugins vulnerability

It was discovered that the Base64 decoding functions in GStreamer Base Plugins did not properly handle large images in Vorbis file tags. If a user were tricked into opening a specially crafted Vorbis file, an attacker could possibly execute arbitrary code with user privileges...

glib library memory corruption

Memory corruption on base64 encoding/decoding...

RedHat Update for cups RHSA-2008:0192-01

Check for the Version of cups OpenVAS Vulnerability Test RedHat Update for cups RHSA-2008:0192-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

RedHat Update for cups RHSA-2008:0192-01

Check for the Version of cups OpenVAS Vulnerability Test RedHat Update for cups RHSA-2008:0192-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

RedHat Update for cups RHSA-2008:1028-01

Check for the Version of cups OpenVAS Vulnerability Test RedHat Update for cups RHSA-2008:1028-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

CentOS Update for cups CESA-2008:0206 centos3 x86_64

Check for the Version of cups OpenVAS Vulnerability Test CentOS Update for cups CESA-2008:0206 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS Update for cups CESA-2008:1028 centos3 x86_64

Check for the Version of cups OpenVAS Vulnerability Test CentOS Update for cups CESA-2008:1028 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

[SECURITY] Fedora 10 Update: xine-lib-1.1.16.2-1.fc10

This package contains the Xine library. It can be used to play back various media, decode multimedia files from local disk drives, and display multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some uncommon formats, too...

CVE-2009-0475

Integer underflow in the Huffman decoding functionality pvmp3huffmanparsing.cpp in OpenCORE 2.0 and earlier allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code via a crafted MP3 file that triggers heap corruption...

CVE-2009-0475

CVE-2009-0475 describes an integer underflow in the Huffman decoding path (pvmp3_huffman_parsing.cpp) of OpenCORE = 2.0 with that change. Vendor patches were provided by the Android Open Source Project and ocert.org, with references detailing the patch and affected components. Mitigation involves...

[oCERT-2009-002] OpenCORE insufficient bounds checking during MP3 decoding

2009-002 OpenCORE insufficient bounds checking during MP3 decoding Description: OpenCORE, an open source multimedia decoding subsystem, suffers from an integer underflow during Huffman decoding resulting in improper bounds checking when writing to a heap allocated buffer. Decoding a specially...

Microsoft Exchange Server TNEF Decoding Remote Code Execution Vulnerability

Description Microsoft Exchange Server is prone to a remote code-execution vulnerability. Remote attackers may exploit this issue by sending maliciously constructed TNEF-encoded email data to vulnerable servers. This issue will be triggered when a user views or previews the malicious email...

Important: Red Hat Security Advisory: gstreamer-plugins-good security update

Updated gstreamer-plugins-good packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. GStreamer is a streaming media framework, based on graphs of filters whi...

[SECURITY] Fedora 10 Update: xine-lib-1.1.16-1.fc10

This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...

OpenJDK UTF-8 decoder accepts non-shortest form sequences (4486841)

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...