Fedora 25 : libsoup (2017-872a0a9a85)

Security fix for CVE-2017-2885 stack based buffer overflow with HTTP Chunked Encoding. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

Security update for libsoup (important)

This update for libsoup fixes the following issues: - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup bsc1052916, CVE-2017-2885. This update was imported from the...

openSUSE: Security Advisory for libsoup (openSUSE-SU-2017:2153-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED12 / SLES12 Security Update : libsoup (SUSE-SU-2017:2129-1)

This update for libsoup fixes the following issues : - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup bsc1052916, CVE-2017-2885. Note that Tenable Network Security h...

SUSE SLES12 Security Update : libsoup (SUSE-SU-2017:2130-1)

This update for libsoup fixes the following issues : - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup bsc1052916, CVE-2017-2885. Note that Tenable Network Security h...

SUSE-SU-2017:2129-1 Security update for libsoup

This update for libsoup fixes the following issues: - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup bsc1052916, CVE-2017-2885...

SUSE-SU-2017:2130-1 Security update for libsoup

This update for libsoup fixes the following issues: - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup bsc1052916, CVE-2017-2885...

PHP 5.3 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/39877/info PHP is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the PHP process. Failed exploit attempts will result in a denial-of-servic...

CVE-2010-1866

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an integer overflow in...

CVE-2010-1866

CVE-2010-1866 concerns the PHP dechunk filter in PHP 5.3 through 5.3.2. When decoding HTTP chunked encoding streams, a negative chunk size can bypass signed comparisons due to an integer overflow in the chunk size decoder, enabling a context-dependent DoS and potentially memory corruption. Public...

CVE-2010-1866

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an integer overflow in...

PT-2010-3492 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions 5.3 through 5.3.2 Description: The issue allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an...

TrendMicro ServerProtect multiple vulnerabilities

Buffer overflows on HTTP chunked encoding parsing, DoS, directory traversal...

RSA SecurID Web Agent buffer overflow

Heap overflow on HTTP chunked encoding parsing. Stack overflow on oversized HTTP request Redirect: header...