Heap overflow

The function numberformat is vulnerable to a heap overflow issue when its second argument $decpoints is excessively large. The internal implementation of the function will cause a string to be created with an invalid length, which can then interact poorly with other functions. This affects all...

Oracle Linux 6 : kernel (ELSA-2011-0836)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0836 advisory. - net dccp: handle invalid feature options length Jiri Pirko 703012 703013 CVE-2011-1770 - fs cifs: check for privatedata before trying to put it Jeff...