Debian DSA-1684-1 : lcms - multiple vulnerabilities

Two vulnerabilities have been found in lcms, a library and set of commandline utilities for image color management. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-5316 Inadequate enforcement of fixed-length buffer limits allows an attacker to...

findutils -- GNU locate heap buffer overrun

James Youngman reports: When GNU locate reads filenames from an old-format locate database, they are read into a fixed-length buffer allocated on the heap. Filenames longer than the 1026-byte buffer can cause a buffer overrun. The overrunning data can be chosen by any person able to control the...

Microsoft Word Macro Buffer Overflow

Topic: Buffer overflow on Macro structure processing Vulnerable: Microsoft Office 97, Microsoft Office 2000 any service pack Not Vulnerable: Microsoft Office XP Description: During processing of document with embedded macros Microsoft Office family products are vulnerable to buffer overflow...

PT-2003-1622 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.12 and earlier Description: The tvb get nstringz0 function does not properly handle a zero-length buffer size, which may have unknown consequences. Recommendations: For Ethereal versions 0.9.12 and earlier, at the moment...

Linux Kernel 2.2.x/2.3/2.4.x - 'd_path()' Path Truncation

/ source: https://www.securityfocus.com/bid/4367/info The Linux kernel dpath function converts a dentry structure into an ASCII path name. The full path to the specified dentry is returned in a fixed length buffer of size PAGESIZE bytes. Reportedly, if a dentry structure is passed with a path whi...