EUVD-2013-2138

Malware in sbrugna...

Advisory ROSA-SA-2024-2331

Software: glibc 2.17 OS: rosa-server79 packageevrstring: glibc-2.17-326.res7.7 CVE-ID: CVE-2023-4911 BDU-ID: 2023-06269 CVE-Crit: N/A CVE-DESC.: A vulnerability in the dynamic loader ld.so of the glibc library is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability...

K14901: SASL vulnerability CVE-2013-4122

Security Advisory Description Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service thread crash and consumption via 1 an...

Mageia: Security Advisory (MGASA-2013-0225)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

DEBIAN-CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

Null pointer dereference

slim has NULL pointer dereference when using crypt method from glibc 2.17...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

CVE-2013-4412

CVE-2013-4412 affects slim, with a NULL pointer dereference when using the crypt() function from glibc 2.17. The connected records confirm the description across multiple sources (NVD, OSV, Ubuntu/Debian advisories, and vendor entries), but none provide concrete details on affected versions beyon...

CVE-2013-4412

slim has NULL pointer dereference when using crypt method from glibc 2.17...

Linux glibc 缓冲区溢出 (幽灵(Ghost))

近日国外安全研究人员披露一个在 Linux Glibc 库上发现的严重的安全问题，它可以让攻击者在本地或者远程获取操作系统的控制权限，编号为CVE-2015-0235，命名为幽灵（GHOST）漏洞。什么是GHOST?为什么命名为GHOST？漏洞最早起源于:The first vulnerable version of the GNU C Library is glibc-2.2, released on November 10, 2000.“During a code audit performed internally at Qualys, we discovered a buffer...

Exim GHOST (glibc gethostbyname) Buffer Overflow Exploit

Exploit for linux platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Exim GHOST glibc gethostbyname Buffer Overflow', 'Description' = %q This modu...

Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow

Qualys Security Advisory CVE-2015-0235 GHOST: glibc gethostbyname buffer overflow -- Contents ---------------------------------------------------------------- 1 - Summary 2 - Analysis 3 - Mitigating factors 4 - Case studies 5 - Exploitation 6 - Acknowledgments -- 1 - Summary...

Qualys Security Advisory - glibc gethostbyname Buffer Overflow

Qualys Security Advisory CVE-2015-0235 GHOST: glibc gethostbyname buffer overflow -- Contents ---------------------------------------------------------------- 1 - Summary 2 - Analysis 3 - Mitigating factors 4 - Case studies 5 - Exploitation 6 - Acknowledgments -- 1 - Summary...

Fedora 19 : glibc-2.17-21.fc19 (2014-9830)

An off-by-one heap-based buffer overflow flaw was found in glibc's internal gconvtranslitfind function. An attacker able to make an application call the iconvopen function with a specially crafted argument could possibly use this flaw to execute arbitrary code with the privileges of that...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)

java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...

CVE-2013-4143

The 1 checkPasswd and 2 checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon an error by the crypt or dispcrypt function as implemented in glibc 2.17 and later, which allows attackers to bypass the screen lock via vectors related to...