CVE-2016-2463

Multiple integer overflows in the h264dec component in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media...

CVE-2016-1951

Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime NSPR before 4.12 allow remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a long string to a PRprintf function...

CVE-2016-1951

Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime NSPR before 4.12 allow remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a long string to a PRprintf function...

openSUSE Security Update : expat (openSUSE-2016-695)

This update for expat fixes the following issues : Security issue fixed : - CVE-2016-0718: Fix Expat XML parser that mishandles certain kinds of malformed input documents. bsc979441 - CVE-2015-1283: Fix multiple integer overflows. bnc980391 This update was imported from the SUSE:SLE-12:Update...

SUSE-SU-2016:1508-1 Security update for expat

This update for expat fixes the following issues: Security issue fixed: - CVE-2016-0718: Fix Expat XML parser that mishandles certain kinds of malformed input documents. bsc979441 - CVE-2015-1283: Fix multiple integer overflows. bnc980391...

CVE-2015-8875

Multiple integer overflows in the 1 pixopscompositenearest, 2 pixopscompositecolornearest, and 3 pixopsprocess functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted image, whi...

CVE-2015-8875

Multiple integer overflows in the 1 pixopscompositenearest, 2 pixopscompositecolornearest, and 3 pixopsprocess functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted image, whi...

CVE-2015-8875

Multiple integer overflows in the 1 pixopscompositenearest, 2 pixopscompositecolornearest, and 3 pixopsprocess functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted image, whi...

CVE-2015-8875

CVE-2015-8875 affects the GDK-PixBuf library, specifically the pixops.c implementations (pixops_composite_nearest, pixops_composite_color_nearest, pixops_process) in gdk-pixbuf, with versions before 2.33.1 vulnerable. The flaw is a heap-based buffer overflow triggered by crafted images, enabling ...

CVE-2015-8875

Multiple integer overflows in the 1 pixopscompositenearest, 2 pixopscompositecolornearest, and 3 pixopsprocess functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted image, whi...

CVE-2015-8875

Multiple integer overflows in the 1 pixopscompositenearest, 2 pixopscompositecolornearest, and 3 pixopsprocess functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted image, whi...

openSUSE Security Update : expat (openSUSE-2016-660)

This update for expat fixes the following security issues : - CVE-2015-1283: Fixed multiple integer overflows that could lead to buffer overflows boo980391 - CVE-2016-0718: Fixed Expat XML parser that mishandles certain kinds of malformed input documents boo979441. %NASLMINLEVEL 70300 C Tenable...

Security update for expat (important)

This update for expat fixes the following security issues: - CVE-2015-1283: Fixed multiple integer overflows that could lead to buffer overflows boo980391 - CVE-2016-0718: Fixed Expat XML parser that mishandles certain kinds of malformed input documents boo979441...

CVE-2016-4073

Multiple integer overflows in the mbflstrcut function in ext/mbstring/libmbfl/mbfl/mbfilter.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted mbstrcut call...

CVE-2016-4073

CVE-2016-4073 affects PHP prior to 5.5.34, 5.6.x prior to 5.6.20, and 7.x prior to 7.0.5. The mbfl_strcut function in ext/mbstring/libmbfl/mbfl/mbfilter.c has multiple integer overflows that allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code...

CVE-2016-4073

Multiple integer overflows in the mbflstrcut function in ext/mbstring/libmbfl/mbfl/mbfilter.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted mbstrcut call...

expat: arbitrary code execution

CVE-2015-1283 arbitrary code execution Multiple integer overflows in the XMLGetBuffer function allow remote attackers to cause a denial of service heap-based buffer overflow or possibly arbitrary code execution via crafted XML data. This problem has already been fixed in version 2.1.0-1 but this...

Debian Security Advisory DSA 3432-1 (icedove - security update)

Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb3432.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA 3432-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2016 Greenbone Networks GmbH...

Debian: Security Advisory (DSA-3432-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-3078

Multiple integer overflows in phpzip.c in the zip extension in PHP before 7.0.6 allow remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted call to 1 getFromIndex or 2 getFromName in the ZipArchive...