EUVD-2017-0713

Malware in sbrugna...

OPENSUSE-SU-2024:10867-1 iucode-tool-2.3.1-1.13 on GA media

These are all security issues fixed in the iucode-tool-2.3.1-1.13 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

DEBIAN-CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

Heap overflow

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

CVE-2017-0357 iucode-tool: heap buffer overflow on -tr loader

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

CVE-2017-0357

CVE-2017-0357 is a heap-overflow flaw in the -tr loader of iucode-tool, affecting versions from v1.4 up to, but not including, v2.1.1. The vulnerability can cause SIGSEGV or heap corruption. Multiple connected records confirm the issue and point to downstream fixes: OpenSUSE OSV entry notes that ...

Ubuntu: Security Advisory (USN-3186-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS : iucode-tool vulnerability (USN-3186-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3186-1 advisory. It was discovered that iucode-tool incorrectly handled certain microcodes when using the -tr loader. If a user were tricked into processing a specially crafted...

USN-3186-1: iucode-tool vulnerability

It was discovered that iucode-tool incorrectly handled certain microcodes when using the -tr loader. If a user were tricked into processing a specially crafted microcode, a remote attacker could use this issue to cause iucode-tool to crash, resulting in a denial of service, or possibly execute...

USN-3186-1 iucode-tool vulnerability

It was discovered that iucode-tool incorrectly handled certain microcodes when using the -tr loader. If a user were tricked into processing a specially crafted microcode, a remote attacker could use this issue to cause iucode-tool to crash, resulting in a denial of service, or possibly execute...

[BSA-112] Security Update for iucode-tool

Henrique de Moraes Holschuh uploaded new packages for iucode-tool which fixed the following security problems: CVE-2017-0357 iucode-tool v1.4 to v2.1 is vulnerable to a heap buffer overflow in the -tr recovery loader. Using specially-crafted data files and a specially crafted command line, it mig...

iucode-tool buffer overflow vulnerability

iucode-tool is a set of microcode tools for operating Intel-registered i686 and X86-64 system processors. A heap buffer overflow vulnerability exists in iucode-tool versions 1.4 through 2.1, which originates when the program fails to properly perform bounds detection on user-submitted data,...

CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...

UBUNTU-CVE-2017-0357

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption...