79 matches found
EulerOS 2.0 SP1 : java-1.7.0-openjdk (EulerOS-SA-2018-1128)
According to the versions of the java-1.7.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OpenJDK: incorrect handling of Reference clones can lead to sandbox bypass.CVE-2018-2814 - OpenJDK: unrestricted deserialization of...
EulerOS 2.0 SP1 : exempi (EulerOS-SA-2018-1124)
According to the versions of the exempi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant...
EulerOS 2.0 SP1 : cups (EulerOS-SA-2018-1079)
According to the versions of the cups packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - CUPS printing system provides a portable printing layer for UNIXAr operating systems. It has been developed by Apple Inc.to promote a standard...
EulerOS 2.0 SP1 : squid (EulerOS-SA-2018-1074)
According to the versions of the squid packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The Squid Software Foundation Squid HTTP Caching Proxy version 3.0 to 3.5.27, 4.0 to 4.0.22 contains a Incorrect Pointer Handling vulnerability i...
EulerOS 2.0 SP1 : openjpeg (EulerOS-SA-2018-1094)
According to the version of the openjpeg package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in mj2/opjmj2extract.c in OpenJPEG 2.3.0. The output prefix was not checked for length, which could overflow a buffer, whe...
EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1072)
According to the versions of the dhcp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet. A malicious DHCP server could potentially use...
EulerOS 2.0 SP1 : irssi (EulerOS-SA-2018-1060)
According to the versions of the irssi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. A NULL pointer dereference occurs for an 'empty' nick.i1/4^...
EulerOS 2.0 SP1 : dovecot (EulerOS-SA-2018-1056)
According to the version of the dovecot packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by...
EulerOS 2.0 SP1 : curl (EulerOS-SA-2018-1039)
According to the version of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The FTP wildcard function in curl and libcurl before 7.57.0 allows remote attackers to cause a denial of service out-of-bounds read and application...
EulerOS 2.0 SP1 : wireshark (EulerOS-SA-2018-1041)
According to the version of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by...
EulerOS 2.0 SP1 : ruby (EulerOS-SA-2018-1029)
According to the version of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a...
EulerOS 2.0 SP1 : ncurses (EulerOS-SA-2018-1005)
According to the version of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Stack-based buffer overflow in the ncwriteentry function in tinfo/writeentry.c in ncurses 6.0 allows attackers to cause a denial of service...
EulerOS 2.0 SP1 : xdg-user-dirs (EulerOS-SA-2018-1024)
According to the version of the xdg-user-dirs package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that the system umask policy is not being honored when creating XDG user directories /Desktop etc on first login. This could lea...
EulerOS 2.0 SP1 : evince (EulerOS-SA-2018-1009)
According to the version of the evince packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Command injection in evince via filename when printing to PDF. This affects versions earlier than 3.25.91.CVE-2017-1000159 Note that Tenable Networ...
EulerOS 2.0 SP1 : python (EulerOS-SA-2017-1334)
According to the version of the python packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - CPython aka Python up to 2.7.13 is vulnerable to an integer overflow in the PyStringDecodeEscape function in stringobject.c, resulting in heap-base...
EulerOS 2.0 SP1 : postgresql (EulerOS-SA-2017-1340)
According to the versions of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Privilege escalation flaws were found in the initialization scripts of PostgreSQL. An attacker with access to the postgres user account coul...
EulerOS 2.0 SP1 : mpfr (EulerOS-SA-2017-1293)
According to the version of the mpfr packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Buffer overflow in the mpfrstrtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors...
EulerOS 2.0 SP1 : procmail (EulerOS-SA-2017-1316)
According to the version of the procmail package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The procmail packages contain a mail processing tool that can be used to create mail servers, mailing lists, sort incoming mail into separate...
EulerOS 2.0 SP1 : webkitgtk3 (EulerOS-SA-2017-1309)
According to the versions of the webkitgtk3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised...
EulerOS 2.0 SP1 : php (EulerOS-SA-2017-1301)
According to the versions of the php packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference flaw was found in libgd. An attacker could use a specially-crafted .gd2 file to cause an application linked with libgd t...