17001 matches found
openSUSE: Security Advisory for libsoup (openSUSE-SU-2019:1310-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Denial Of Service (DoS)
GNU Libtasn1 is vulnerable to denial of service attacks. A remote unauthenticated attacker could exploit the vulnerable asn1extractderoctet function to cause an out-of-bounds heap read via a crafted certificate leading to a system crash...
Arbitrary Code Execution
GNU Wget is vulnerable to arbitrary code execution. By tricking an unsuspecting user into connecting to a malicious HTTP server, an attacker could exploit this flaw to potentially execute arbitrary code...
Arbitrary Code Execution
GNU C Library is vulnerable to arbitrary code execution. An attacker could use the unsanitized LDPOINTERGUARD environment variable to bypass the pointer guarding protection on set-user-ID or set-group-ID programs to execute arbitrary code with the permissions of the user running the application...
Denial Of Service (DoS)
GNU C Library is vulnerable to denial of service DoS attacks. Use of a long catalog name in the catopen function may cause a stack-based buffer overflow allowing a context-dependent attacker to cause denial of service via an application crash or possible execution of arbitrary code...
Arbitrary Code Execution And Denial Of Service (DoS)
GNU C Library is vulnerable to arbitrary code execution and denial of service. An context-dependent attacker could trigger an out-of-bounds heap-memory access via the size argument to the hcreater function to cause a denial of service or possibly execute arbitrary code...
Denial Of Service (DoS)
GNU C Library is vulnerable to denial of service DoS attacks. An out-of-range time values passed to the strftime function could result in an out-of-bounds memory access allowing attackers to cause a application crash or possibly obtain sensitive information...
Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read
The grep utility searches through textual input for lines that contain a match to a specified pattern and then prints the matching lines. The GNU grep utilities include grep, egrep, and fgrep. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way grep parsed larg...
Denial Of Service (DoS)
The coreutils package contains the core GNU utilities. It is a combination of the old GNU fileutils, sh-utils, and textutils packages. It was discovered that the sort, uniq, and join utilities did not properly restrict the use of the alloca function. An attacker could use this flaw to crash those...
Denial Of Service (DoS)
The coreutils package contains the core GNU utilities. It is a combination of the old GNU fileutils, sh-utils, and textutils packages. It was discovered that the sort, uniq, and join utilities did not properly restrict the use of the alloca function. An attacker could use this flaw to crash those...
CVE-2019-11639
An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...
CVE-2019-11637
An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...
CVE-2019-11640
An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...
CVE-2019-11639
An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...
CVE-2019-11640
An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...
DEBIAN-CVE-2019-11640
An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...
CVE-2019-11638
An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...
CVE-2019-11637
An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...
DEBIAN-CVE-2019-11638
An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...
CVE-2019-11638
An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...