CVE-2015-4468

Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

CVE-2015-4468

Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

CVE-2015-4468

Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

SUSE SLED12 / SLES12 Security Update : vorbis-tools (SUSE-SU-2015:1014-1)

Vorbis tools was updated to fix division by zero and integer overflows by crafted WAV files CVE-2014-9638, CVE-2014-9639, bnc914439, bnc914441, that would allow attackers to crash the vorbis tools processes. Note that Tenable Network Security has extracted the preceding description block directly...

SUSE SLED12 / SLES12 Security Update : xorg-x11-server (SUSE-SU-2015:0047-1)

This X.Org update fixes the following security issues : - denial of service due to unchecked malloc in client authentication CVE-2014-8091 - integer overflows calculating memory needs for requests: CVE-2014-8092: X11 core protocol requests CVE-2014-8093: GLX extension CVE-2014-8094: DRI2 extensio...

SUSE SLES10 Security Update : glibc (SUSE-SU-2014:1128-1)

This glibc update fixes a critical privilege escalation problem and the following security and non-security issues : - bnc892073: An off-by-one error leading to a heap-based buffer overflow was found in gconvtranslitfind. An exploit that targets the problem is publicly available. CVE-2014-5119 -...

SUSE SLED10 / SLES10 Security Update : glibc (SUSE-SU-2012:1667-1)

This update for GNU C library glibc fixes multiple integer overflows in strtod and related functions. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as...

SUSE SLES11 Security Update : glibc (SUSE-SU-2014:1122-1)

This glibc update fixes a critical privilege escalation vulnerability and the following security and non-security issues : - bnc892073: An off-by-one error leading to a heap-based buffer overflow was found in gconvtranslitfind. An exploit that targets the problem is publicly available...

SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0189-1)

The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to 3.0.101 and also includes various other bug and security fixes. A new feature was added : - supported.conf: marked net/netfilter/xtset as supported bnc851066fate313309 The following security bugs have been fixed : CVE-2013-4587:...

Adobe Flash Player multiple security vulnerabilities

Buffer overflows, memory corruptions, integer overflows, race conditions, restriction bypass...

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-46 Miscellaneous memory safety hazards rv:38.0 / rv:31.7 MFSA-2015-47 Buffer overflow parsing H.264 video with Linux Gstreamer MFSA-2015-48 Buffer overflow with SVG content and CSS MFSA-2015-49 Referrer policy ignored when links opened by middle-click and...

Updated potrace packages fix CVE-2013-7437

Updated potrace packages fix security vulnerability: Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow CVE-2013-7437...

libgfortran integer overflows

Multiple integer overflows...

Mandriva Linux Security Advisory : freerdp (MDVSA-2015:171)

Updated freerdp packages fix security vulnerabilities : Integer overflows in memory allocations in client/X11/xfgraphics.c in FreeRDP through 1.0.2 allows remote RDP servers to have an unspecified impact through unspecified vectors CVE-2014-0250. Integer overflow in the licensereadscopelist...

KLA10515 Multiple vulnerabilities in PHP and extensions

Multiple serious vulnerabilities have been found in PHP and extensions. Malicious users can exploit these vulnerabilities to cause denial of service or inject code. Below is a complete list of vulnerabilities 1. Multiple integer overflows can be exploited remotely via a specially designed year...

CVE-2013-7437

Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow...

jasper: multiple integer overflows in jas_alloc calls

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation...

SUSE-SU-2015:1014-1 Security update for vorbis-tools

Vorbis tools was updated to fix division by zero and integer overflows by crafted WAV files CVE-2014-9638, CVE-2014-9639, bnc914439, bnc914441, that would allow attackers to crash the vorbis tools processes...

KLA10518 Denial of service vulnerabilities in Wireshark

Integer overflows and other unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Original advisories Wireshark advisories Related...

CVE-2015-1474

Multiple integer overflows in the GraphicBuffer::unflatten function in platform/frameworks/native/libs/ui/GraphicBuffer.cpp in Android through 5.0 allow attackers to gain privileges or cause a denial of service memory corruption via vectors that trigger a large number of 1 file descriptors or 2...