12 matches found
EUVD-2018-3392
Malware in sbrugna...
USN-7735-1: RubyGems vulnerabilities
It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. CVE-2023-28755 It was discovered that RubyGems incorrectly handled decompresse...
MGASA-2020-0410 Updated samba packages fix security vulnerabilities
Steven French discovered that Samba incorrectly handled ChangeNotify permissions. A remote attacker could possibly use this issue to obtain file name information CVE-2020-14318. Bas Alberts discovered that Samba incorrectly handled certain winbind requests. A remote attacker could possibly use th...
OPENSUSE-SU-2020:1819-1 Security update for samba
This update for samba fixes the following issues: Update to samba 4.11.14 - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records bsc1177613. - CVE-2020-14323: Unprivileged user can crash winbind bsc1173994. - CVE-2020-14318: Missing permissions check in...
SUSE-SU-2020:3082-1 Security update for samba
This update for samba fixes the following issues: - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records bsc1177613. - CVE-2020-14323: Unprivileged user can crash winbind bsc1173994. - CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify...
Several vulnerabilities fixed in BIND
Several vulnerabilities have been fixed in BIND. A malicious person can remotely exploit the vulnerabilities to cause the BIND process to crash and thus cause a denial-of-service on DNS traffic cause. ISC has released updates to fix the vulnerabilities in BIND 9.11.22, 9.16.6 and 9.17.4. For more...
USN-3902-1 php5, php7.0 vulnerabilities
It was discovered that the PHP XML-RPC module incorrectly handled decoding XML data. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service. CVE-2019-9020, CVE-2019-9024 It was discovered that the PHP PHAR module incorrectly handled certain...
July 18, 2017—KB4025335 (Preview of Monthly Rollup)
July 18, 2017—KB4025335 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4025336 released July 11, 2017 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addressed issue...
ipa security, bug fix, and enhancement update
4.1.0-18.0.1 - Replace login-screen-logo.png 20362818 - Drop subscription-manager requires for OL7 - Drop redhat-access-plugin-ipa requires for OL7 - Blank out header-logo.png product-name.png 4.1.0-18 - Fix ipa-pwd-extop global configuration caching 1187342 - group-detach does not add correct...
Code injection
dkim-milter 2.6.0 through 2.8.0 allows remote attackers to cause a denial of service crash by signing a message with a key that has been revoked in DNS, which triggers an assertion error...
CentOS 4 : squid (CESA-2006:0052)
An updated squid package that fixes a security vulnerability as well as several issues is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, a...
CVE-2002-1897
MyWebServer LLC MyWebServer 1.0.2 allows remote attackers to cause a denial of service crash via a long HTTP request, possibly triggering a buffer overflow...