Fedora 18 : dracut-024-5.git20121019.fc18 (2012-16448)

fixed ifup exit code - fixed default 'rd.auto' parameter setting - only 'warn' not 'error', if we don't strip the initramfs - do not overwrite ifcfg from anaconda - ssh-client module fixes - strip binaries in the initramfs by default now - fixes for systemd and crypto - new dracut kernel command...

CVE-2012-5238

epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3 uses incorrect OUI data structures during the decoding of 1 PPP and 2 LCP data, which allows remote attackers to cause a denial of service assertion failure and application exit via a malformed packet...

Double free

Double free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to application exit...

CVE-2012-2885

Double free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to application exit...

CVE-2012-4922

The tortimegm function in common/util.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.22-rc, does not properly validate time values, which allows remote attackers to cause a denial of service assertion failure and daemon exit via a malformed directory object, a different vulnerability than...

CVE-2012-4419

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

DEBIAN-CVE-2012-4419

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

CVE-2012-4419

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

Design/Logic Flaw

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

Directory traversal

The tortimegm function in common/util.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.22-rc, does not properly validate time values, which allows remote attackers to cause a denial of service assertion failure and daemon exit via a malformed directory object, a different vulnerability than...

CVE-2012-4922

Vulnerability summary (CVE-2012-4922) : In Tor, the tor_timegm function in common/util.c did not properly validate time values for a malformed directory object, allowing a remote attacker to trigger an assertion failure and daemon exit (DoS). This affects Tor versions before 0.2.2.39 and 0.2.3.x ...

CVE-2012-4419

CVE-2012-4419 affects Tor up to 0.2.2.39 and 0.2.3.x up to 0.2.3.21-rc. The vulnerability lies in compare_tor_addr_to_addr_policy (or/policies.c): a zero-valued port during policy comparison can trigger an assertion and cause the daemon to exit. Mitigation: upgrade to patched Tor versions (e.g., ...

Design/Logic Flaw

ISC BIND 9.x before 9.7.6-P3, 9.8.x before 9.8.3-P3, 9.9.x before 9.9.1-P3, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P3 allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for a long resource record...

bind: specially crafted resource record causes named to exit

ISC BIND 9.x before 9.7.6-P3, 9.8.x before 9.8.3-P3, 9.9.x before 9.9.1-P3, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P3 allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for a long resource record...

CVE-2012-4244

CVE-2012-4244 affects BIND 9.x with RDATA values exceeding 65535 bytes, enabling remote DoS via assertion failure in the named daemon. Connected advisories confirm a broad impact across multiple distributions and products (FreeBSD SA-12:06.bind; CentOS/RHEL updates; Fedora package updates; F5 adv...

(ospfd): Assertion failure due improper length check for a received LS-Update OSPF packet

Buffer overflow in the ospflsupdlistlsa function in ospfpacket.c in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a Link State Update aka LS Update packet that is smaller than the length...

Discuz X2 路徑洩漏

简要描述： 缺少 exit‘Access Denied’; 直接浏览该程序直接报错 BTW 一共发现了7个 XSS 包含储存式跟反射式. 等之后整完整點再发出来 详细说明： 檔案路徑: /source/include/misc/miscranklistindex.php 漏洞证明：...

linux/x86 - [setreuid()] -> [/sbin/iptables -F] -> [exit(0)] - 76 bytes

/ Author: Sh3llc0d3 Environment: Linux/x86 Developed from: GNU ASM AT&T Syntax Purpose: setreuid - /sbin/iptables -F - exit0 Size: 76 bytes Website: root-exploit.com / char code = "\xeb\x33\x31\xc0\xb0\x46\x31\xdb\x31\xc9\xcd\x80\x5e\x31\xc0\x88\x46"...

Scientific Linux Security Update : bind on SL5.x, SL6.x i386/x86_64

"The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'deprecatednasllevel.inc'; include'compat.inc'; if...

bind: heavy DNSSEC validation load can cause assertion failure

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service assertion...