11191 matches found
CVE-2014-7937
Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via crafted Vorbis I data...
CVE-2014-7937
Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via crafted Vorbis I data...
CVE-2014-7937
Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via crafted Vorbis I data...
UBUNTU-CVE-2014-7948
The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in content/browser/appcache/appcacheupdatejob.cc in Google Chrome before 40.0.2214.91 proceeds with AppCache caching for SSL sessions even if there is an X.509 certificate error, which allows man-in-the-middle attackers to spoof HTML5...
[SECURITY] [DSA 3132-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3132-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 19, 2015 http://www.debian.org/security/faq -...
Updated binutils packages fix security vulnerabilities
Updated binutils packages fix security vulnerabilities: Multiple security issues have been found in binutils. These vulnerabilities include multiple memory safety errors, buffer overflows, use-after-frees and other implementation errors may lead to the execution of arbitrary code, the bypass of...
MGASA-2015-0027 Updated binutils packages fix security vulnerabilities
Updated binutils packages fix security vulnerabilities: Multiple security issues have been found in binutils. These vulnerabilities include multiple memory safety errors, buffer overflows, use-after-frees and other implementation errors may lead to the execution of arbitrary code, the bypass of...
Oracle Solaris Third-Party Patch Update : lua (cve_2014_5461_buffer_errors)
The remote Solaris system is missing necessary patches to address security updates : - Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service crash via a small number of arguments to a function with a...
Oracle Solaris Third-Party Patch Update : imagemagick (multiple_buffer_errors_vulnerabilities_in2)
The remote Solaris system is missing necessary patches to address security updates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Oracle Third Party software advisories. include'deprecatednasllevel.inc';...
Oracle Solaris Third-Party Patch Update : freetype (multiple_buffer_errors_vulnerabilities_in)
The remote Solaris system is missing necessary patches to address security updates : - FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to BDF fonts and the improper handling of an 'allocation error' in t...
DSA-3132-1 icedove - security update
Bulletin has no description...
Debian Security Advisory DSA 3132-1 (icedove - security update)
Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb3132.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3132-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2015 Greenbone Networks GmbH...
Oracle Solaris Third-Party Patch Update : quagga (cve_2013_2236_buffer_errors)
The remote Solaris system is missing necessary patches to address security updates : - Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers...
Oracle Solaris Third-Party Patch Update : procmail (cve_2014_3618_buffer_errors)
The remote Solaris system is missing necessary patches to address security updates : - Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted email header, related to...
SuSE 11.3 Security Update : unzip (SAT Patch Number 10159)
This update fixes the following security issues : - heap overflow condition in the CRC32 verification. CVE-2014-8139 - write error 8349 shows a problem in extract.c:testcompreb. CVE-2014-8140 - read errors 6430, 3422 show problems in process.c:getZip64Data. CVE-2014-8141 %NASLMINLEVEL 70300 C...
Debian: Security Advisory (DSA-3132-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-3127-1 : iceweasel - security update
Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: Multiple memory safety errors and implementation errors may lead to the execution of arbitrary code, information leaks or denial of service. %NASLMINLEVEL 70300 C Tenable Network Security,...
[SECURITY] [DSA 3127-1] iceweasel security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3127-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 14, 2015 http://www.debian.org/security/faq -...
DSA-3127-1 iceweasel - security update
Bulletin has no description...
Apache qpid DoS
Multiple asserts...