4768 matches found
CVE-2014-9679
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow...
CVE-2014-9679
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow...
UBUNTU-CVE-2014-9679
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow...
[SECURITY] [DSA 3150-1] vlc security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3150-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 02, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3156-1] liblivemedia security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3156-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 07, 2015 http://www.debian.org/security/faq -...
tcpdump: Multiple vulnerabilities
Background tcpdump is a tool for capturing and inspecting network traffic. Description Multiple vulnerabilities have been discovered in tcpdump: The olsrprint function function contains an integer underflow error CVE-2014-8767 The geonetprint function function contains multiple integer underflow...
Debian DSA-3150-1 : vlc - security update
Fabian Yamaguchi discovered multiple vulnerabilities in VLC, a multimedia player and streamer : - CVE-2014-9626 The MP4 demuxer, when parsing string boxes, did not properly check the length of the box, leading to a possible integer underflow when using this length value in a call to memcpy. This...
MGASA-2015-0012 Updated ettercap packages fix security vulnerabilities
Updated ettercap package fixes security vulnerabilities: Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c in Ettercap before 8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value...
Updated ettercap packages fix security vulnerabilities
Updated ettercap package fixes security vulnerabilities: Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c in Ettercap before 8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value...
VLC Media Player 'real_get_rdt_chunk' BOF Vulnerability-02 (Jan 2015) - Linux
VLC media player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
VLC Media Player 'real_get_rdt_chunk' BOF Vulnerability-02 (Jan 2015) - Windows
VLC media player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
RealNetworks RealPlayer MPG Width Integer Underflow Memory Corruption - Ver2 (CVE-2011-4259)
A memory corruption vulnerability has been reported in RealNetworks RealPlayer. The vulnerability is due to an integer underflow condition caused while handling MPEG-2 files with a specially crafted width parameter. An attacker could exploit this vulnerability by enticing a target user to open a...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
DEBIAN-CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2011-1795
Integer underflow in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted HTML document...
Integer overflow
Integer underflow in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted HTML document...