RHEL 2.1 / 3 : libtiff (RHSA-2005:019)

Updated libtiff packages that fix various integer overflows are now available. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. iDEFENSE has reported an integer overflow bug that affects libtiff. An attacker who has the ability...

Fedora Core 3 : libtiff-3.6.1-9.fc3 (2005-598)

The updated libtiff package fixes an integer overflow which could lead to a buffer overflow in the tiffdump utility. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

CVE-2004-1308

Integer overflow in 1 tifdirread.c and 2 tiffax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFFASCII or TIFFUNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow...

[SECURITY] [DSA 614-1] New xzgv packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 614-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2004 http://www.debian.org/security/faq -...

DSA-614-1 xzgv - integer overflows

Bulletin has no description...

RHEL 3 : samba (RHSA-2004:670)

Updated samba packages that fix an integer overflow vulnerability are now available for Red Hat Enterprise Linux 3. Samba provides file and printer sharing services to SMB/CIFS clients. Greg MacManus of iDEFENSE Labs has discovered an integer overflow bug in Samba versions prior to 3.0.10. An...

tiff -- directory entry count integer overflow vulnerability

In an iDEFENSE Security Advisory infamous41md reports: Remote exploitation of a heap-based buffer overflow vulnerability within the LibTIFF package could allow attackers to execute arbitrary code. The vulnerability specifically exists due to insufficient validation of user-supplied data when...

Possible remote code execution

Description Remote exploitation of an integer overflow vulnerability in the smbd daemon included in Samba 2.0.x, Samba 2.2.x, and Samba 3.0.x prior to and including 3.0.9 could allow an attacker to cause controllable heap corruption, leading to execution of arbitrary commands with root privileges...

samba -- integer overflow vulnerability

Greg MacManus, iDEFENSE Labs reports: Remote exploitation of an integer overflow vulnerability in the smbd daemon included in Samba 2.0.x, Samba 2.2.x, and Samba 3.0.x prior to and including 3.0.9 could allow an attacker to cause controllable heap corruption, leading to execution of arbitrary...

[SECURITY] [DSA 602-1] New libgd2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 602-1 [email protected] http://www.debian.org/security/ Martin Schulze November 29th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 601-1] New libgd1 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 601-1 [email protected] http://www.debian.org/security/ Martin Schulze November 29th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 589-1] New libgd1 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 589-1 [email protected] http://www.debian.org/security/ Martin Schulze November 9th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 589-1] New libgd1 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 589-1 [email protected] http://www.debian.org/security/ Martin Schulze November 9th, 2004 http://www.debian.org/security/faq -...

GD: Integer overflow

Background The GD graphics library is an open source library which allows programmers to easily generate PNG, JPEG, GIF and WBMP images from many different programming languages. Description infamous41md found an integer overflow in the memory allocation procedure of the GD routine that handles...

CVE-2004-0886

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service crash or memory corruption via TIFF images that lead to incorrect malloc calls...

[SECURITY] [DSA 571-1] New libpng3 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 571-1 [email protected] http://www.debian.org/security/ Martin Schulze October 20th, 2004 http://www.debian.org/security/faq -...

CVE-2004-0754

Integer overflow in Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the size variable in Groupware server messages...

RHEL 3 : gaim (RHSA-2004:400)

An updated gaim package that fixes several security issues is now available. Gaim is an instant messenger client that can handle multiple protocols. Buffer overflow bugs were found in the Gaim MSN protocol handler. In order to exploit these bugs, an attacker would have to perform a man in the...

Mozilla POP3 Mail Handler Remote Overflow (deprecated)

Binary data 1320.prm...

Gaim contains an integer overflow vulnerability when parsing DirectIM packets

Overview There is an integer overflow vulnerability in the handlehdrodc function, which could allow an unauthenticated, remote attacker to cause a denial of service or potentially execute arbitrary code. Description Gaim is a multi-protocol instant messenger client available for a number of...