EulerOS 2.0 SP3 : graphviz (EulerOS-SA-2019-2592)

According to the version of the graphviz packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via forma...

CVE-2019-11287

A resource-consumption flaw was identified in the rabbitmq-server web management plugin. Utilizing a malicious 'X-Reason' HTTP header, a remote attacker could insert a malicious Erlang format string which will expand and consume heap memory, resulting in a crash. The highest threat from this...

Medium: udisks2

Issue Overview: UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrat...

EulerOS 2.0 SP2 : ncurses (EulerOS-SA-2019-2420)

According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a heap-based buffer over-read in the ncfindentry function in tinfo/comphash.c in the terminfo library in ncurses before...

EulerOS 2.0 SP2 : graphviz (EulerOS-SA-2019-2355)

According to the version of the graphviz packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via forma...

libpoe-component-irc-perl Formatting String Error Vulnerability

libpoe-component-irc-perl is an event-driven Perl IRC client module. A format string error vulnerability exists in versions of libpoe-component-irc-perl prior to 6.32, which can be exploited to execute arbitrary commands on a system by sending specially crafted IRC commands...

CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

CVE-2012-0824

gnusound 0.7.5 has format string issue...

Format string

gnusound 0.7.5 has format string issue...

CVE-2012-0824

gnusound 0.7.5 has format string issue...

CVE-2012-0824

gnusound 0.7.5 has format string issue...

CVE-2012-0824

CVE-2012-0824 affects gnusound 0.7.5 with a format string issue (root cause: improper format string handling). Public data in the initial doc shows CVSS metrics: CVSS v2 base 7.5 (HIGH) and CVSS v3.1 base 9.8 (CRITICAL). No explicit exploitation details or affected versions beyond 0.7.5 are provi...

CVE-2011-1588

Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error...

CVE-2011-1588

Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error...

Format string

Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error...

CVE-2011-1588

CVE-2011-1588 affects Thunar up to version 1.3.1, where a crash can occur when copying and pasting a file name containing % format characters due to a format string error. The root cause is a faulty format string handling in the relevant code path. The connected advisories indicate a fix in the O...

CVE-2011-1588

Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error...

Xen Project VCPUOP_initialise DoS (XSA-296)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to poor handling of an invalid format string in 'hypercallcreatecontinuation'. This function can be reached via a long-running 'VCPUOPinitialise'...

EulerOS 2.0 SP5 : udisks2 (EulerOS-SA-2019-2193)

According to the version of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents,...

Cisco Ios Use of Externally-Controlled Format String

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...