[Full-disclosure] [ MDKSA-2006:113 ] - Updated tetex packages fix embedded GD vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:113 http://www.mandriva.com/security/ Package : tetex Date : June 27, 2006 Affected: 10.2, 2006.0 Problem Description: Integer overflows were reported in the GD Graphics Library libgd 2.0.28, and possibly...

[SECURITY] [DSA 1095-1] New freetype packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1095-1 [email protected] http://www.debian.org/security/ Martin Schulze June 10th, 2006 http://www.debian.org/security/faq -...

DSA-1095-1 freetype - integer overflows

Bulletin has no description...

GLSA-200605-17 : libTIFF: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200605-17 libTIFF: Multiple vulnerabilities Multiple vulnerabilities, ranging from integer overflows and NULL pointer dereferences to double frees, were reported in libTIFF. Impact : An attacker could exploit these vulnerabilities...

Multiple tor distributed anonymizing service security vulnerabilities

Log entries spoofing, integer overflows, DoS...

DEBIAN-CVE-2006-1861

Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...

CVE-2006-1861

Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...

CVE-2006-1861

Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...

FreeBSD : mplayer -- Multiple integer overflows (c7526a14-c4dc-11da-9699-00123ffe8333)

Secunia reports : The vulnerabilities are caused due to integer overflow errors in 'libmpdemux/asfheader.c' within the handling of an ASF file, and in 'libmpdemux/aviheader.c' when parsing the 'indx' chunk in an AVI file. This can be exploited to cause heap-based buffer overflows via a malicious...

CVE-2006-1462

Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 M4V video format file...

CVE-2006-1462

Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 M4V video format file...

CVE-2006-2327

Multiple integer overflows in the DPRPC library DPRPCNLM.NLM NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3, SP4, and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which...

CVE-2006-2327

Multiple integer overflows in the DPRPC library DPRPCNLM.NLM NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3, SP4, and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which...

Integer overflow

Multiple integer overflows in the DPRPC library DPRPCW32.DLL in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndpsxdrarray function...

CVE-2006-2304

Multiple integer overflows in the DPRPC library DPRPCW32.DLL in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndpsxdrarray function...

Multiple Firefox / Netscape / SeaMonkey vulnerabilities

Crossite scripting, memory corruptions, buffer overflows, array overflows, integer overflows. Can be exploited to silently install malware code...

CVE-2006-1502

Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via 1 a certain ASF file handled by asfheader.c that causes the asfdescrambling function to be passed a negative integer after the conversion from a char t...

[Full-disclosure] [xfocus-SD-060329]MPlayer: Multiple integer overflows

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xfocus-SD-060329MPlayer: Multiple integer overflows MPlayer is a media player capable of handling multiple multimedia file formats. XFOCUS team http://www.xfocus.org/ had discovered Multiple integer overflows .Those can lead to a heap-based buffer...

Sendmail 8.13.6 release notes

8.13.6/8.13.6 2006/03/22 SECURITY: Replace unsafe use of setjmp3/longjmp3 in the server and client side of sendmail with timeouts in the libsm I/O layer and fix problems in that code. Also fix handling of a buffer in smsyslog which could have been used as an attack vector to exploit the unsafe...

GLSA-200603-03 : MPlayer: Multiple integer overflows

The remote host is affected by the vulnerability described in GLSA-200603-03 MPlayer: Multiple integer overflows MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodecdefaultgetbuffer function discovered by Simon Kilvington see GLSA 200601-06. Furthermore,...