322 matches found
Mageia: Security Advisory (MGASA-2021-0535)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated vim packages fix security vulnerability
Multiple Heap-based Buffer Overflows Stack-based Buffer overflows and a use after free...
SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2020:14355-1)
The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14355-1 advisory. - LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak CWE-655 in VNC server code, which allow an attacker to...
Oracle Linux 8 : raptor2 (ELSA-2021-1842)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1842 advisory. - Resolves: rhbz1900904 CVE-2020-25713 raptor2: malformed input file can lead to a segfault - Resolves: rhbz1896534 CVE-2017-18926 raptor: heap-based...
CentOS 8 : raptor2 (CESA-2021:1842)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1842 advisory. - raptor: heap-based buffer overflows due to an error in calculating the maximum nspace declarations for the XML writer CVE-2017-18926 - raptor2:...
Dnsmasq < 2.83 Multiple Vulnerabilities (DNSpooq)
Dnsmasq is prone to multiple vulnerabilities dubbed Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
p11-kit -- Multiple vulnerabilities
The p11-glue project reports: CVE-2020-29363: Out-of-bounds write in p11rpcbuffergetbytearrayvalue functionA heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : GRUB 2 vulnerabilities (USN-4432-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4432-1 advisory. Jesse Michael and Mickey Shkatov discovered that the configuration parser in GRUB2 did not properly exit when errors were...
Huawei EulerOS: Security Advisory for gpgme (EulerOS-SA-2020-1494)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.2.0 : gpgme (EulerOS-SA-2020-1254)
According to the version of the gpgme package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - Multiple heap-based buffer overflows in the statushandler function in 1 engine-gpgsm.c and 2 engine-uiserver.c in GPGME...
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2019-1728)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : gpgme (EulerOS-SA-2019-2125)
According to the versions of the gpgme package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GnuPG Made Easy GPGME is a library designed to make access to GnuPG easier for applications. It provides a high-level crypto API for encryption,...
Security Bulletin: Multiple vulnerabilities in Open Source Binutils and Open Source OpenSSL affect IBM Netezza Analytics
Summary Open Source Binutils and OpenSSL is used by IBM Netezza Analytics. IBM Netezza Analytics has addressed the applicable CVEs Vulnerability Details CVEID: CVE-2014-9939 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by a stack-based buffer overflow in ihex.c. By using...
CVE-2009-2415
Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows...
NewStart CGSL MAIN 4.05 : gnutls Multiple Vulnerabilities (NS-SA-2019-0109)
The remote NewStart CGSL host, running version MAIN 4.05, has gnutls packages installed that are affected by multiple vulnerabilities: - Stack-based buffer overflow in the cdkpkgetkeyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have...
CVE-2019-14734
AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load in mtk.cpp...
CVE-2019-14733
AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load in rad.cpp...
CVE-2019-14734
AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load in mtk.cpp...
CVE-2019-14732
AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load in a2m.cpp...
CVE-2019-14733
CVE-2019-14733 affects AdPlug 2.3.1. The vulnerability is described as multiple heap-based buffer overflows in CradLoader::load() implemented in rad.cpp. CVSS metrics show a high-severity, network-accessible issue (CVSS v3.1: 8.8; network, no privileges, user interaction required; impact to confi...