26 matches found
EUVD-2014-0128
Malware in sbrugna...
Malicious code in test-mlw2-clips-flite (npm)
The package test-mlw2-clips-flite was found to contain malicious code...
MAL-2025-35091 Malicious code in test-mlw2-clips-flite (npm)
The package test-mlw2-clips-flite was found to contain malicious code...
MAL-2025-34940 Malicious code in test-mlw2-batty-flite (npm)
The package test-mlw2-batty-flite was found to contain malicious code...
Malicious code in test-mlw2-batty-flite (npm)
The package test-mlw2-batty-flite was found to contain malicious code...
new packages: flite
An update is available for flite. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.0...
Mageia: Security Advisory (MGASA-2014-0047)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ MDVSA-2014:032 ] flite
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:032 http://www.mandriva.com/en/support/security/ Package : flite Date : February 14, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in flit...
Mandriva Linux Security Advisory : flite (MDVSA-2014:032)
Multiple vulnerabilities has been discovered and corrected in flite : The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...
MGASA-2014-0047 Updated flite package fixes CVE-2014-0027
Updated flite packages fix security vulnerability: The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav CVE-2014-0027...
Updated flite package fixes CVE-2014-0027
Updated flite packages fix security vulnerability: The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav CVE-2014-0027...
Flite 'play_wave_from_socket()'不安全临时文件创建漏洞
BUGTRAQ ID: 64791 CVECAN ID: CVE-2014-0027 Flite是小型的实时综合性引擎。 Flite 1.4及其他版本中,audio/auserver.c的playwavefromsocket函数创建临时文件的方式不安全,本地用户通过对/tmp/awb.wav的符号链接攻击,利用此漏洞可修改任意文件。 0 festvox Flite 1.4 厂商补丁: festvox ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.festvox.org/flite/...
[SECURITY] Fedora 20 Update: flite-1.3-21.fc20
Flite festival-lite is a small, fast run-time speech synthesis engine developed at CMU and primarily designed for small embedded machines and/or large servers. Flite is designed as an alternative synthesis engine to Festival for voices built using the FestVox suite of voice building tools...
[SECURITY] Fedora 19 Update: flite-1.3-20.fc19
Flite festival-lite is a small, fast run-time speech synthesis engine developed at CMU and primarily designed for small embedded machines and/or large servers. Flite is designed as an alternative synthesis engine to Festival for voices built using the FestVox suite of voice building tools...
Fedora 20 : flite-1.3-21.fc20 (2014-0579)
CVE-2014-0027 flite: insecure temporary file use Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 19 : flite-1.3-20.fc19 (2014-0574)
CVE-2014-0027 flite: insecure temporary file use Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2014-0027
The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...
DEBIAN-CVE-2014-0027
The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...
CVE-2014-0027
The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...
Information disclosure
The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...