CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

UBUNTU-CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

FreeBSD -- bhyve - privilege escalation vulnerability

Problem Description: An unchecked array reference in the VGA device emulation code could potentially allow guests access to the heap of the bhyve process. Since the bhyve process is running as root, this may allow guests to obtain full control of the hosts they are running on. Impact: For bhyve...

[SECURITY] Fedora 20 Update: tpp-1.3.1-17.fc20

tpp stands for text presentation program and is a ncurses-based presentation tool. The presentation can be written with your favorite editor in a simple description format and then shown on any text terminal that is supported by ncurses - ranging from an old VT100 to the Linux framebuffer to an...

Moderate: Red Hat Security Advisory: vino security update

An updated vino package that fixes several security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

Enigma2 Webinterface 1.5.x/1.6.x/1.7.x (Linux) - Remote File Disclosure

!/usr/bin/perl Enigma2 Webinterface 1.7.x 1.6.x 1.5.x remote root file disclosure exploit Author: Todor Donev Email me: todor.donev@@gmail.com Platform: Linux Type: remote Gewgle Dork: "Enigma2 movielist" filetype:rss Enigma2 is a framebuffer-based zapping application GUI for linux. It's targeted...

Debian DSA-2238-1 : vino - several vulnerabilities

Kevin Chen discovered that incorrect processing of framebuffer requests in the Vino VNC server could lead to denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2238. The te...

Ubuntu Update for vino USN-1128-1

Ubuntu Update for Linux kernel vulnerabilities USN-1128-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11281.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for vino USN-1128-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

kernel: drivers/video/ivtv/ivtvfb.c: reading uninitialized stack memory

The ivtvfbioctl function in drivers/media/video/ivtv/ivtvfb.c in the Linux kernel before 2.6.36-rc8 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGETVBLANK ioctl call...

xen security update

CentOS Errata and Security Advisory CESA-2008:0892 Updated xen packages that resolve a couple of security issues and fix a bug are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The xen packages...

Debian Security Advisory DSA 655-1 (zhcon)

The remote host is missing an update to zhcon announced via advisory DSA 655-1. OpenVAS Vulnerability Test $Id: deb6551.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 655-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1124-1 (fbi)

The remote host is missing an update to fbi announced via advisory DSA 1124-1. Toth Andras discovered that the fbgs framebuffer postscript/PDF viewer contains a typo, which prevents the intended filter against malicious postscript commands from working correctly. This might lead to the deletion o...

CVE-2006-3119

The fbgs framebuffer Postscript/PDF viewer in fbi before 2.01 has a typo that prevents a filter from working correctly, which allows user-assisted attackers to bypass the filter and execute malicious Postscript commands...

CVE-2006-3119

The fbgs framebuffer Postscript/PDF viewer in fbi before 2.01 has a typo that prevents a filter from working correctly, which allows user-assisted attackers to bypass the filter and execute malicious Postscript commands...

CVE-2006-3119

The fbgs framebuffer Postscript/PDF viewer in fbi before 2.01 has a typo that prevents a filter from working correctly, which allows user-assisted attackers to bypass the filter and execute malicious Postscript commands...

CVE-2006-3119

The CVE-2006-3119 issue concerns the fbgs PostScript/PDF viewer component of fbida (before version 2.01). A typographic mistake in the fbgs script prevents the intended filter from working, allowing a user-assisted attacker to bypass the filter and cause the PostScript commands to execute. Eviden...