FreeType Memory Corruption and Buffer Overflow Vulnerabilities (Windows)

This host is installed with FreeType and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfreetypememcorruptionnbofvulnwin.nasl 5394 2017-02-22 09:22:42Z teissa $ FreeType Memory Corruption and Buffer Overflow Vulnerabilities Windows Authors: Sooraj KS Copyright:...

SuSE9 Security Update : freetype2 (YOU Patch Number 12630)

This update of freetype2 fixes several vulnerabilities that could lead to remote system compromise by executing arbitrary code with user privileges : - stack-based buffer overflow while processing CFF opcodes. CVE-2010-1797 - integer underflow. CVE-2010-2497 - invalid free. CVE-2010-2498 - buffer...

Debian Security Advisory DSA 2074-1 (ncompress)

The remote host is missing an update to ncompress announced via advisory DSA 2074-1. OpenVAS Vulnerability Test $Id: deb20741.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2074-1 ncompress Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

Debian: Security Advisory (DSA-2074-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-2497

FreeType vulnerability CVE-2010-2497 arises from an integer underflow in glyph handling in versions before 2.4.0, enabling remote crash or possibly arbitrary code execution via crafted fonts. Multiple advisories ( Gentoo GLSA, openSUSE, Nessus plugins, OSV) list CVE-2010-2497 among a set of FreeT...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-1525

Integer underflow in the SpreadSheet Lotus 123 reader wkssr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted size for an unspecified record typ...

CVE-2010-1525

Integer underflow in the SpreadSheet Lotus 123 reader wkssr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted size for an unspecified record typ...

CVE-2010-1525

CVE-2010-1525 affects Autonomy KeyView 10.4 and 10.9, specifically the SpreadSheet Lotus 123 reader (wkssr.dll). The vulnerability is an integer underflow during parsing of a record type size, which can trigger a heap-based buffer overflow. This may lead to a denial of service and potentially arb...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:035)

This updates provides a new OpenOffice.org version 3.1.1. It holds security and bug fixes described as follow : An integer underflow might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow...

Secunia Research: Autonomy KeyView wkssr.dll Integer Underflow Vulnerability

====================================================================== Secunia Research 28/07/2010 - Autonomy KeyView wkssr.dll Integer Underflow Vulnerability - ====================================================================== Table of Contents Affected...

Debian DSA-2074-1 : ncompress - integer underflow

Aki Helin discovered an integer underflow in ncompress, the original Lempel-Ziv compress/uncompress programs. This could lead to the execution of arbitrary code when trying to decompress a crafted LZW compressed gzip archive. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

[SECURITY] [DSA 2074-1] New ncompress packages fix execution of arbitrary code

------------------------------------------------------------------------ Debian Security Advisory DSA-2074-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano July 21, 2010 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2074-1] New ncompress packages fix execution of arbitrary code

------------------------------------------------------------------------ Debian Security Advisory DSA-2074-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano July 21, 2010 http://www.debian.org/security/faq -...

DSA-2074-1 ncompress - execution of arbitrary code

Bulletin has no description...

Fedora 11 : krb5-1.6.3-23.fc11 (2010-0515)

This update incorporates fixes from upstream which correct integer underflow problems in the AES and RC4 decryption routines CVE-2009-4212. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...