CVE-2014-8092

Summary (CVE-2014-8092) : The X.Org X Server (X.Org X Window System) before version 1.16.3 is affected. The issue arises from multiple integer overflows and out-of-bounds memory access during handling of X11 core requests (notably in ProcPutImage, GetHosts, RegionSizeof, and various other functio...

CVE-2014-8093

Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System aka X11 or X X11R6.7, and X.Org Server aka xserver and xorg-server before 1.16.3 allow remote authenticated users to cause a denial of service crash or possibly execute arbitrary code via a crafted request to th...

CVE-2014-8092

Multiple integer overflows in X.Org X Window System aka X11 or X X11R1 and X.Org Server aka xserver and xorg-server before 1.16.3 allow remote authenticated users to cause a denial of service crash or possibly execute arbitrary code via a crafted request to the 1 ProcPutImage, 2 GetHosts, 3...

OracleVM 3.3 : glibc (OVMSA-2014-0017)

The remote OracleVM system is missing necessary patches to address critical security updates : - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, - Don't use alloca in addgetnetgrentX 1087789. - Adjust...

OracleVM 2.2 : xen (OVMSA-2011-0007)

The remote OracleVM system is missing necessary patches to address critical security updates : - Integer overflows and lack of checking of length fields CVE-2011-1583 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security...

DEBIAN-CVE-2014-8711

Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service application crash via a crafted amqp010 PDU in a packet...

CVE-2014-8711

Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service application crash via a crafted amqp010 PDU in a packet...

CVE-2014-7908

Multiple integer overflows in the CheckMov function in media/base/containernames.cc in Google Chrome before 39.0.2171.65 allow remote attackers to cause a denial of service or possibly have unspecified other impact via a large atom in 1 MPEG-4 or 2 QuickTime .mov data...

CVE-2014-7908

Removed by vendor...

CVE-2014-7908

CVE-2014-7908 affects Google Chrome prior to 39.0.2171.65. The vulnerability is due to multiple integer overflows in the CheckMov function (media/base/container_names.cc) triggered by processing large atoms in MPEG-4 or QuickTime .mov data, enabling a remote attacker to cause a denial of service ...

CVE-2014-7908

Multiple integer overflows in the CheckMov function in media/base/containernames.cc in Google Chrome before 39.0.2171.65 allow remote attackers to cause a denial of service or possibly have unspecified other impact via a large atom in 1 MPEG-4 or 2 QuickTime .mov data...

CVE-2014-7908

Multiple integer overflows in the CheckMov function in media/base/containernames.cc in Google Chrome before 39.0.2171.65 allow remote attackers to cause a denial of service or possibly have unspecified other impact via a large atom in 1 MPEG-4 or 2 QuickTime .mov data...

CVE-2014-0250

Multiple integer overflows in client/X11/xfgraphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the 1 xfPointerNew or 2 xfBitmapDecompress function, which causes an incorrect amount of memory to be allocated...

CVE-2014-0250

Multiple integer overflows in client/X11/xfgraphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the 1 xfPointerNew or 2 xfBitmapDecompress function, which causes an incorrect amount of memory to be allocated...

CVE-2014-0250

Removed by vendor...

CVE-2014-0250

Multiple integer overflows in client/X11/xfgraphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the 1 xfPointerNew or 2 xfBitmapDecompress function, which causes an incorrect amount of memory to be allocated...

Updated qemu packages fix multiple security vulnerabilities

Updated qemu packages fix security vulnerabilities: Michael S. Tsirkin discovered that QEMU incorrectly handled vmxnet3 devices. A local guest could possibly use this issue to cause a denial of service, or possibly execute arbitrary code on the host CVE-2013-4544. Multiple integer overflow, input...

[SECURITY] [DLA 72-1] rsylog security update

Package : rsylog Version : 4.6.4-2+deb6u1 CVE ID : CVE-2014-3634 CVE-2014-3683 CVE-2014-3634 Fix remote syslog vulnerability due to improper handling of invalid PRI values. CVE-2014-3683 Followup fix for CVE-2014-3634. The initial patch was incomplete. It did not cover cases where PRI values MAXI...

DLA-72-1 rsyslog - security update

Bulletin has no description...

openchrome: Multiple integer overflows leading to heap-based bufer overflows

Multiple integer overflows in X.org libchromeXvMC and libchromeXvMCPro in openChrome 0.3.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the 1 uniDRIOpenConnection and 2 uniDRIGetClientDriverName functions...