28 matches found
EUVD-2011-0544
Malware in sbrugna...
OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf
The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel as part of a cyber espionage campaign targeting the U.A.E. and the broader Gulf region. "The group utilizes sophisticated tactics that include deploying a...
Iranian Cyber Group OilRig Targets Iraqi Government in Sophisticated Malware Attack
Iraqi government networks have emerged as the target of an "elaborate" cyber attack campaign orchestrated by an Iran state-sponsored threat actor called OilRig. The attacks singled out Iraqi organizations such as the Prime Minister's Office and the Ministry of Foreign Affairs, cybersecurity compa...
OPENSUSE-SU-2024:10524-1 gypsy-0.9-10.5 on GA media
These are all security issues fixed in the gypsy-0.9-10.5 package on the GA media of openSUSE Tumbleweed...
RHEL 6 : gypsy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gypsy: multiple vulnerabilities CVE-2011-0523 - Multiple buffer overflows in the NMEA parser nmea-gen.c i...
SUSE CVE-2011-0523
gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users to read otherwise restricted files via unspecified vectors...
SUSE CVE-2011-0524
Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...
openSUSE Security Update : gypsy (openSUSE-SU-2012:0884-1)
The following changes have been made : - Add gypsy-CVE-2011-0523.patch: add config file to restrict the files that can be read. Fix CVE-2011-0523 and bnc666839. - Add gypsy-CVE-2011-0524.patch: use snprintf to avoid buffer overflows. Fix CVE-2011-0524 and bnc666839. - Add gnome-common BuildRequir...
Fedora Update for gypsy FEDORA-2013-8705
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for gypsy FEDORA-2013-8687
Check for the Version of gypsy OpenVAS Vulnerability Test Fedora Update for gypsy FEDORA-2013-8687 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for gypsy FEDORA-2013-8687
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for gypsy FEDORA-2013-8705
Check for the Version of gypsy OpenVAS Vulnerability Test Fedora Update for gypsy FEDORA-2013-8705 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
[SECURITY] Fedora 19 Update: gypsy-0.9-1.fc19
Gypsy is a GPS multiplexing daemon which allows multiple clients to access GPS data from multiple GPS sources concurrently...
[SECURITY] Fedora 17 Update: gypsy-0.9-1.fc17
Gypsy is a GPS multiplexing daemon which allows multiple clients to access GPS data from multiple GPS sources concurrently...
Fedora 19 : gypsy-0.9-1.fc19 (2013-8659)
New upstream 0.9 release - add patch to fix FTBSF due to deprecated gtypeinit - Fix CVE-2011-0523 - read arbitrary files as the root user on behalf of a regular user - Fix CVE-2011-0524 - buffer overflow in nmea device input handling code no longer in existence - aarch64 support - Fix segfault...
Fedora 18 : gypsy-0.9-1.fc18 (2013-8687)
New upstream 0.9 release - add patch to fix FTBSF due to deprecated gtypeinit - Fix CVE-2011-0523 - read arbitrary files as the root user on behalf of a regular user - Fix CVE-2011-0524 - buffer overflow in nmea device input handling code no longer in existence - aarch64 support - Fix segfault...
Fedora 17 : gypsy-0.9-1.fc17 (2013-8705)
New upstream 0.9 release - add patch to fix FTBSF due to deprecated gtypeinit - Fix CVE-2011-0523 - read arbitrary files as the root user on behalf of a regular user - Fix CVE-2011-0524 - buffer overflow in nmea device input handling code no longer in existence - aarch64 support - Fix segfault...
CVE-2011-0524
Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...
CVE-2011-0523
gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users to read otherwise restricted files via unspecified vectors...
Design/Logic Flaw
gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users to read otherwise restricted files via unspecified vectors...