Slackware: Security Advisory (SSA:2023-200-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] curl

New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.2.0-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: fopen race condition. For more...

curl: CVE-2023-32001: fopen race condition

A race condition vulnerability existed in the fopen function of the curl library. This vulnerability allowed an attacker to exploit the race condition between the stat and fopen functions, potentially leading to unauthorized file overwrites or the theft of sensitive data such as cookies. The...

SUSE CVE-2007-0448

The fopen function in PHP 5.2.0 does not properly handle invalid URI handlers, which allows context-dependent attackers to bypass safemode restrictions and read arbitrary files via a file path specified with an invalid URI, as demonstrated via the srpath URI...

Default credentials

Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is: File system rewrite remote. ¶¶ An attacker can overwrite system files like system.conf and passwd, this occurs because the insecure usage of "fopen" system function with the mode "wb" which allow...

GHSA-RMMF-5XHH-GG27 phpMyAdmin path disclosure

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the expo...

UBUNTU-CVE-2020-1918

In-memory file operations ie: using fopen on a data URI did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 and 4.93.1, a...

CVE-2020-1918

CVE-2020-1918 affects HHVM: reading memory prior to the in‑memory buffer via fopen on a data URI due to improper restriction of negative seeking. Affected versions include HHVM before 4.56.3, 4.57.0–4.80.1, 4.81.0–4.93.1, and 4.94.0–4.98.0. The provided documents do not specify a final patched ve...

UCMS Command Execution Vulnerability

UCMS is a content management system written in PHP. UCMS v1.4.8 version of the existence of command execution vulnerability, the vulnerability stems from the file written fopen function there are arbitrary command execution vulnerability, an attacker can take advantage of the vulnerability can be...

CVE-2020-25483

An arbitrary command execution vulnerability exists in the fopen function of file writes of UCMS v1.4.8, where an attacker can gain access to the server...

CVE-2020-25483

An arbitrary command execution vulnerability exists in the fopen function of file writes of UCMS v1.4.8, where an attacker can gain access to the server...

CVE-2020-25483

UCMS v1.4.8 contains an arbitrary command execution vulnerability in the fopen() function used for file writes. The issue stems from UCMS’s handling of file writes, enabling an attacker to gain access to the server. Public references from NVD, Red Hat, CNVD and others corroborate the vulnerabilit...

March 23, 2018—KB4088881 (Preview of Monthly Rollup)

March 23, 2018—KB4088881 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4088875 released March 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Improves...

March 22, 2018—KB4088882 (Preview of Monthly Rollup)

March 22, 2018—KB4088882 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4088876 released March 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...

March 22, 2018—KB4088891 (OS Build 15063.994)

March 22, 2018—KB4088891 OS Build 15063.994 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses issue with a GDI handle leak in the Windows Ribbon control. Addresses issue where,...

March 22, 2018—KB4056567 Improvements and fixes for Universal C Runtime in Windows

March 22, 2018—KB4056567 Improvements and fixes for Universal C Runtime in Windows Improvements and fixes Addresses an issue in the Universal C Runtime CRT in which a race condition occurs when you update the global locale. This condition corrupts the current locale reference count and triggers a...

UBUNTU-CVE-2018-7584

In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the phpstreamurlwraphttpex function in ext/standard/httpfopenwrapper.c. This subsequently results in copying a large string...

Linux XFBurn Stack-based Buffer Overflow Vulnerability

Exploit for linux platform in category dos / poc Exploit Title: Linux XFBurn Stack-based Buffer Overflow Type: CWE-121 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: http://goodies.xfce.org/projects/applications/xfburn Version : 0.5.4 Tested on: Ubuntu 17.04 Date: 24-03-2017 Category...

WordPress Chat-Room plugin v0.1.2 directory traversal/arbitrary file write Vulnerabilities

Exploit for php platform in category web applications Exploit Title: WordPress Chat-Room plugin v0.1.2 directory traversal/arbitrary file write Date: 2017-03-08 Exploit Author: malwrforensics Vendor Homepage: https://webdevstudios.com/ Software Link: https://wordpress.org/plugins/chat-room/...

CVE-2016-9853

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the expo...