The vulnerability of the Tor browser for the Debian GNU/Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the Tor browser for the Debian GNU/Linux operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by vulnerability in GNU C Library (CVE-2018-11236)

Summary IBM Integrated Management Module II IMM2 has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2018-11236 DESCRIPTION: GNU glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds of checking by the pathname arguments in the...

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in GNU C Library (CVE-2015-5180 CVE-2017-15670 CVE-2017-15804)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2015-5180 DESCRIPTION: glibc is vulnerable to a denial of service, caused by a NULL pointer dereference in the resquery function in libresolv. By...

Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by vulnerability in GNU C Library (CVE-2017-15804)

Summary IBM Integrated Management Module II IMM2 has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2017-15804 DESCRIPTION: GNU C Library aka glibc or libc6 is vulnerable to a buffer overflow, caused by improper bounds checking by glob function in glob.c...

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in GNU C Library (CVE-2017-15804 CVE-2017-15670 CVE-2015-5180)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2017-15804 DESCRIPTION: GNU C Library aka glibc or libc6 is vulnerable to a buffer overflow, caused by improper bounds checking by glob function in glob.c...

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability GNU C Library (CVE-2018-16429)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2018-16429 DESCRIPTION: GNOME GLib is vulnerable to a denial of service, caused by an out-of-bounds read in gmarkupparsecontextparse in gmarkup.c. By...

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability GNU C Library (CVE-2018-11236)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2018-11236 DESCRIPTION: GNU glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds of checking by the pathname arguments in the...

Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by vulnerability in GNU C Library (CVE-2017-12133)

Summary IBM Integrated Management Module II IMM2 has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2017-12133 DESCRIPTION: GNU C Library aka glibc or libc6 could allow a remote attacker to conduct spoofing attacks, caused by a flaw in the DNS stub...

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in cURL, DHCP and GNU C Library

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in cURL, DHCP and GNU C Library: Vulnerability Details CVEID: CVE-2017-1000100 DESCRIPTION: cURL could allow a remote attacker with complete network control to obtain sensitive information, caused by a TFT...

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilties in GNU C Library

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2018-6551 DESCRIPTION: GNU glibc could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the malloc...

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by a vulnerabilty in GNU C Library (CVE-2017-12133)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2017-12133 DESCRIPTION: GNU C Library aka glibc or libc6 could allow a remote attacker to conduct spoofing attacks, caused by a flaw in the DNS stub...

Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by vulnerabilities in GNU C Library

Summary IBM Integrated Management Module II IMM2 has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2018-6551 DESCRIPTION: GNU glibc could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the malloc...

USN-6541-1: GNU C Library vulnerabilities

It was discovered that the GNU C Library was not properly handling certain memory operations. An attacker could possibly use this issue to cause a denial of service application crash. CVE-2023-4806, CVE-2023-4813 It was discovered that the GNU C library was not properly implementing a fix for...

Security Bulletin: Vulnerabilities found in GNU screen library may affect IBM Content Collector for SAP Applications

Summary IBM Content Collector for SAP Applications may be affected by denial of service, cause by a vulnerability found in GNU screen library. Vulnerability Details CVEID:CVE-2023-24626 DESCRIPTION: GNU Screen is vulnerable to a denial of service, caused by a flaw when installed with setuid or...

Medium: indent

Issue Overview: GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file. CVE-2023-40305 Affected Packages: indent Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2...

Amazon Linux 2 : mailman (ALAS-2023-2370)

The version of mailman installed on the remote host is prior to 2.1.15-30. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2370 advisory. In GNU Mailman before 2.1.36, a crafted URL to the Cgi/options.py user options page can execute arbitrary JavaScript for...

[SECURITY] [DLA 3681-1] amanda security update

Debian LTS Advisory DLA-3681-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost December 03, 2023 https://wiki.debian.org/LTS Package : amanda Version : 1:3.5.1-2+deb10u2 CVE ID : CVE-2022-37703 CVE-2022-37705 CVE-2023-30577 Debian Bug : 1021017 1029829 1055253 Multip...

OESA-2023-1870 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function peas16 at...

OESA-2023-1871 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function peas16 at...

OESA-2023-1869 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap use after free via the function...