Mandrake Security Advisory MDVSA-2009:095 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory MDVSA-2009:095. OpenVAS Vulnerability Test $Id: mdksa2009095.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:095 ghostscript Authors: Thomas Reinke Copyright: Copyright c 2009...

Mandrake Security Advisory MDVSA-2009:096 (printer-drivers)

The remote host is missing an update to printer-drivers announced via advisory MDVSA-2009:096. OpenVAS Vulnerability Test $Id: mdksa2009096.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:096 printer-drivers Authors: Thomas Reinke Copyright: Copyrigh...

Mandrake Security Advisory MDVSA-2009:096 (printer-drivers)

The remote host is missing an update to printer-drivers announced via advisory MDVSA-2009:096. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only O...

Fedora Core 10 FEDORA-2009-2657 (glib2)

The remote host is missing an update to glib2 announced via advisory FEDORA-2009-2657. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

CVE-2009-0147

CVE-2009-0147 involves multiple integer overflows in the JBIG2 decoder used by Xpdf (3.02pl2 and earlier) and CUPS (1.3.9 and earlier), plus other products. The flaw affects the JBIG2 decoder paths JBIG2Stream::readSymbolDictSeg (and related symbol-dictionary handling) and JBIG2Stream::readGeneri...

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

Mandriva Linux Security Advisory : ruby (MDVSA-2008:140)

Multiple vulnerabilities have been found in the Ruby interpreter and in Webrick, the webserver bundled with Ruby. Directory traversal vulnerability in WEBrick in Ruby 1.9.0 and earlier, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing 1 + plus...

Fedora 10 : argyllcms-1.0.3-4.fc10 (2009-3435)

Multiple integer overflows and multiple insufficient upper-bounds checks on certain variable sizes were originally discovered in the Ghostscript's International Color Consortium Format Library icclib. It was found, the original patch, addressing this issue was incomplete. Note that Tenable Networ...

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : lcms vulnerabilities (USN-744-1)

Chris Evans discovered that LittleCMS did not properly handle certain error conditions, resulting in a large memory leak. If a user or automated system were tricked into processing an image with malicious ICC tags, a remote attacker could cause a denial of service. CVE-2009-0581 Chris Evans...

FreeBSD : tiff -- multiple integer overflows (3897a2f8-1d57-11d9-bc4a-000c41e2cdad)

Dmitry V. Levin discovered numerous integer overflow bugs in libtiff. Most of these bugs are related to memory management, and are believed to be exploitable for arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

Fedora 10 : argyllcms-1.0.3-3.fc10 (2009-3011)

Multiple integer overflows were found in the International Color Consortium Format Library icclib. An attacker could use this flaw to potentially execute arbitrary code by requesting to translate a specially- crafted image file created on one device into another's device native color space via a...

Fedora 10 : ghostscript-8.63-6.fc10 (2009-3709)

This update fixes several security flaws: CVE-2009-0792 multiple integer overflows and missing upper-bounds checks in icclib, CVE-2009-0196 missing boundary check in jbig2dec library, and CVE-2008-6679 buffer overflow in pdfwrite device. Note that Tenable Network Security has extracted the...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 : ghostscript, gs-esp, gs-gpl vulnerabilities (USN-757-1)

It was discovered that Ghostscript contained a buffer underflow in its CCITTFax decoding filter. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program...

Mandriva Linux Security Advisory : glib2.0 (MDVSA-2009:080)

Multiple integer overflows in GLib's Base64 encoding and decoding functions enable attackers possibly remote ones, depending on the applications glib2 is linked against with - mostly GNOME ones either to cause denial of service and to execute arbitrary code via an untrusted input CVE-2008-4316...

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

Mandriva Linux Security Advisory : python (MDVSA-2008:163)

Multiple integer overflows in the imageop module in Python prior to 2.5.3 allowed context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows CVE-2008-1679. This was due to an incomplete fix for...

Mandriva Linux Security Advisory : python (MDVSA-2009:003)

Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different...