Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3065)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3001)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

Proof of concept for CVE-2023-4911 Looney Tunables This vu...

CLSA-2023-1698312626 glibc: Fix of CVE-2023-4911

CVE-2023-4911: Terminate if end of input is reached...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911-Looney-Tunables Looney Tunables Local privilege...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911-Looney-Tunables Looney Tunables Local privilege...

ROS-20231020-10

Vulnerability in the GNU C Library glibc iconv utility due to insufficient validation of input data. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service by invoking the iconv utility with the "-c" option. by invoking the iconv utility with the "-c" option...

Fedora: Security Advisory for icecat (FEDORA-2023-7342330743)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GNU Mailutils: unexpected processsing of escape sequences

Background GNU Mailutils is a collection of mail-related utilities, including an IMAP4 server imap4d and a Mail User Agent mail. Description A vulnerability has been discovered in GNU Mailutils. Please review the CVE identifier referenced below for details. Impact mail1 from mailutils would proce...

GLSA-202310-13 : GNU Mailutils: unexpected processsing of escape sequences

The remote host is affected by the vulnerability described in GLSA-202310-13 GNU Mailutils: unexpected processsing of escape sequences - fail2ban is a daemon to ban hosts that cause multiple authentication errors. In versions 0.9.7 and prior, 0.10.0 through 0.10.6, and 0.11.0 through 0.11.2, ther...

[SECURITY] Fedora 38 Update: icecat-115.3.1-7.rh2.fc38

GNU IceCat is the GNU version of the Firefox ESR browser. Extensions included to this version of IceCat: LibreJS GNU LibreJS aims to address the JavaScript problem described in the article "The JavaScript Trap" of Richard Stallman. HTTPS Everywhere HTTPS Everywhere is an extension that encrypts...

The vulnerability of the bfd_dwarf2_find_nearest_line_with_alt function in the GNU Binutils development environment allows a attacker to trigger a DNS attack.

The vulnerability of the bfddwarf2findnearestlinewithalt function in the GNU Binutils development environment is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to trigger a DNS attack using a specially created ELF file...

The vulnerability of the `load_separatedebug_files` function in the GNU Binutils development environment, which allows an attacker to trigger a DNS attack

The vulnerability of the loadseparatedebugfiles function in the GNU Binutils development toolset is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a perpetrator to trigger a DNS attack using a specially created ELF file...

The vulnerability of the `find_abstract_instance` function in the GNU Binutils development environment, which allows a hacker to cause a service failure.

The vulnerability of the findabstractinstance function in the GNU Binutils development environment is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the `make_tempdir` and `make_tempname` functions in the GNU Binutils development tool allows a attacker to cause a service failure.

The vulnerability of the maketempdir and maketempname functions in the GNU Binutils development tool set is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

Ubuntu 16.04 ESM / 18.04 ESM : GNU cflow vulnerability (USN-5375-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-5375-1 advisory. It was discovered that GNU cflow was incorrectly handling memory cleanup operations at the end of a compilation module. An attacker could possibly use...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911 This is a PoC for CVE-2023-4911 "Looney Tunable...

OESA-2023-1735 gcc security update

The gcc package contains the GNU Compiler Collection version 10. You'll need this package in order to compile C code. Security Fixes: A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-siz...

OESA-2023-1725 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

ROS-20231013-05

Vulnerability of prfunctiontype function in prdbg.c file of GNU Binutils development tool is related to a memory leak. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the parsestabstructfields function of the GNU development tool...