283 matches found
Scientific Linux Security Update : pidgin on SL3.x, SL4.x, SL5.x i386/x86_64
An invalid pointer dereference bug was found in the way the Pidgin OSCAR protocol implementation processed lists of contacts. A remote attacker could send a specially crafted contact list to a user running Pidgin, causing Pidgin to crash. CVE-2009-3615 A NULL pointer dereference flaw was found in...
Scientific Linux Security Update : boost on SL5.x i386/x86_64 (20120221)
The boost packages provide free, peer-reviewed, portable C++ source libraries with emphasis on libraries which work well with the C++ Standard Library. Invalid pointer dereference flaws were found in the way the Boost regular expression library processed certain, invalid expressions. An attacker...
CentOS Update for kpathsea CESA-2012:0137 centos6
Check for the Version of kpathsea OpenVAS Vulnerability Test CentOS Update for kpathsea CESA-2012:0137 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
CentOS Update for t1lib CESA-2012:0062 centos6
Check for the Version of t1lib OpenVAS Vulnerability Test CentOS Update for t1lib CESA-2012:0062 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CVE-2012-4048
The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service invalid pointer dereference and application crash via a crafted packet, as demonstrated by a usbmon dump...
CVE-2012-1571
file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference...
CVE-2012-1571
file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference...
Out-of-bounds
file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference...
CVE-2012-1571
file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference...
RedHat Update for t1lib RHSA-2012:0062-01
Check for the Version of t1lib OpenVAS Vulnerability Test RedHat Update for t1lib RHSA-2012:0062-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
PT-2012-1537 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the ip expire function in the Linux kernel, which does not properly construct ICMP TIME EXCEEDED packets after a timeout. This allows remote attackers to cause a denia...
Medium: texlive
Issue Overview: TeX Live embeds a copy of t1lib. The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. The following issues affect t1lib code: Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially-crafted...
RedHat Update for boost RHSA-2012:0305-03
Check for the Version of boost OpenVAS Vulnerability Test RedHat Update for boost RHSA-2012:0305-03 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
Moderate: Red Hat Security Advisory: texlive security update
Updated texlive packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
t1lib: Off-by-one via crafted Type 1 font
Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid...
Medium: t1lib
Issue Overview: Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the...
t1lib: Invalid pointer dereference via crafted Type 1 font
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf...
[SECURITY] [DSA 2388-1] t1lib security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2388-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez January 14, 2012 http://www.debian.org/security/faq -...
CentOS Update for finch CESA-2009:1536 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Integer overflow
Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid...