CVE-2013-4932

CVE-2013-4932 affects the GSM A Common dissector in Wireshark, where multiple array index errors in epan/dissectors/packet-gsm_a_common.c allow a remote attacker to crash the application via a crafted packet (DoS). The issue applies to Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1. Connec...

CVE-2013-4932

Multiple array index errors in epan/dissectors/packet-gsmacommon.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service application crash via a crafted packet...

Adobe Flash Player Multiple Vulnerabilities (APSB13-17) - Windows

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

[SECURITY] Fedora 18 Update: nodejs-boom-0.4.2-2.fc18

This library provides friendly JavaScript objects that represent HTTP error s...

Oracle Linux 5 : tetex (ELSA-2010-0400)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0400 advisory. - unify patches for CVE-2010-0739 and CVE-2010-1440 - fix CVE-2010-1440 586819 - initialize data in arithmetic coder elsewhere CVE-2009-0146 - initiali...

Oracle Linux 6 : openoffice.org (ELSA-2011-0183)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0183 advisory. - CVE-2010-4643 heap based buffer overflow when parsing TGA files - CVE-2010-4253 heap based buffer overflow in PPT import - CVE-2010-3450 directory...

Oracle Linux 6 : libxml2 (ELSA-2012-0018)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0018 advisory. - Make sure the parser returns when getting a Stop order CVE-2011-3905 - Fix an allocation error when copying entities CVE-2011-3919 Tenable has...

Oracle Linux 6 : webkitgtk (ELSA-2011-0177)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0177 advisory. 1.2.6-2 - Added fix for js regression 1.2.6-1 - Update to 1.2.6 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 6 : pki-core (ELSA-2013-0511)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0511 advisory. 9.0.3-30 - Resolves 902474 - upgrading IPA from 2.2 to 3.0 sees certmonger errors 9.0.3-29 - Resolves 891985 - Increase FreeIPA root CA validity 9.0.3-28 -...

Scientific Linux Security Update : tzdata enhancement update on SL5.x, SL6.x i386/x86_64 (20130709)

This update adds the following enhancements : Morocco does not observe DST during Ramadan. Therefore, Morocco is expected to switch to Western European Time WET on July 7 and resume again to Western European Summer Time WEST on August 10. Also, the period of DST in Israel has been extended until...

Google Chrome < 28.0.1500.71 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 28.0.1500.71 and is, therefore, affected by multiple vulnerabilities : - A vulnerability exists that exposes HTTP in SSL to a man-in-the-middle attack. CVE-2013-2853 - Block pop-unders in various scenarios...

Debian DSA-2720-1 : icedove - several vulnerabilities

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client. Multiple memory safety errors, use-after-free vulnerabilities, missing permission checks, incorrect memory handling and other implementation errors may lead to the execution of...

[SECURITY] [DSA 2720-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2720-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 06, 2013 http://www.debian.org/security/faq -...

CentOS Update for java CESA-2013:1014 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous...

Cisco TC Software SIP Implementation Vulnerability

A vulnerability in the Session Initiation Protocol SIP implementation used in TC Software could allow an unauthenticated, remoteattacker to cause an endpoint to process unintended SIP NOTIFY messages. The vulnerability is due to errors in the SIP implementation. An attacker could exploit this...

Debian DSA-2716-1 : iceweasel - several vulnerabilities

Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: Multiple memory safety errors, use-after-free vulnerabilities, missing permission checks, incorrect memory handling and other implementation errors may lead to the execution of arbitrary...

Mandriva Linux Security Advisory : java-1.7.0-openjdk (MDVSA-2013:183)

Updated java-1.7.0-openjdk packages fix multiple security vulnerabilities Multiple flaws were discovered in the ImagingLib and the image attribute, channel, layout and raster processing in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java...

Moderate: Red Hat Security Advisory: openstack-swift security and bug fix update

Updated openstack-swift packages that fix one security issue and one bug are now available for Red Hat OpenStack 3.0 Grizzly Preview. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

[SECURITY] [DSA 2716-1] iceweasel security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2716-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 26, 2013 http://www.debian.org/security/faq -...