openSUSE 10 Security Update : gd (gd-3896)

This update fixes multiple integer overflows in the gd library. Specially crafted files could leverage them to at least crash gd based applications CVE-2007-3472, CVE-2007-3475, CVE-2007-3476, CVE-2007-3477, CVE-2007-3478. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

openSUSE 10 Security Update : xmms (xmms-3073)

Two integer overflows when processing BMP skin images potentially allows attackers to execute arbitrary code via specially crafted files CVE-2007-0653,CVE-2007-0654. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3979)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

openSUSE 10 Security Update : freetype2 (freetype2-1608)

Fixes for: CVE-2006-0747, CVE-2006-1054, CVE-2006-1861, CVE-2006-2493, CVE-2006-2661. This patch fixes a few integer overflows in freetype 2. Without this patch it is possible to create font files which make freetype 2 crash. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

openSUSE 10 Security Update : wv (wv-2279)

Two integer overflows were found in the Microsoft Word converter library 'wv', which could potentially be used to crash programs using this library or to even execute code. - A LVL Count Integer Overflow Vulnerability was fixed. - A LFO Count Integer Overflow Vulnerability was fixed. Both problem...

openSUSE 10 Security Update : imlib2-loaders (imlib2-loaders-2244)

Various security problems have been fixed in the imlib2 image loaders : CVE-2006-4809: A stack-based buffer overflow in loaderpnm.c could be used by attackers to execute code by supplying a handcrafted PNM image. CVE-2006-4808: A heap buffer overflow in loadertga.c could potentially be used by...

openSUSE 10 Security Update : qt (qt-2188)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

libFlac / WinAMP multiple integer overflows

Multiple integer overflows on FLAC sound format parsing...

CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...

CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...

CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...

CVE-2004-2731

Multiple integer overflows in Sbus PROM driver drivers/sbus/char/openprom.c for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arbitrary code by specifying 1 a small buffer size to the copyinstring function or 2 a negative buffer...

CA BrightStor Hierarchical Storage Manager multiple security vulnerabilities

Buffer overflows, integer overflows and SQL injections...

CVE-2007-5083

Multiple integer overflows in Computer Associates CA BrightStor Hierarchical Storage Manager HSM before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands that trigger a heap-based buffer overflow...

CVE-2007-4986

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted 1 .dcm, 2 .dib, 3 .xbm, 4 .xcf, or 5 .xwd image file, which triggers a heap-based buffer overflow...

CVE-2007-4986

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted 1 .dcm, 2 .dib, 3 .xbm, 4 .xcf, or 5 .xwd image file, which triggers a heap-based buffer overflow...

CVE-2007-4986

CVE-2007-4986 affects ImageMagick prior to 6.3.5-9 due to multiple integer overflows in image parsing (notably DCM, DIB, XBM, XCF, XWD) that trigger a heap-based buffer overflow. The result is context-dependent arbitrary code execution when a crafted image is opened, with impacts in line with the...

CVE-2007-4986

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted 1 .dcm, 2 .dib, 3 .xbm, 4 .xcf, or 5 .xwd image file, which triggers a heap-based buffer overflow...

CVE-2007-4986

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted 1 .dcm, 2 .dib, 3 .xbm, 4 .xcf, or 5 .xwd image file, which triggers a heap-based buffer overflow...

RHEL 4 / 5 : php (RHSA-2007:0890)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2007:0890 advisory. - gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG CVE-2007-2756 - php chunksplit integer overflow CVE-2007-2872 - p...