RedHat Update for libproxy RHSA-2012:1461-01

Check for the Version of libproxy OpenVAS Vulnerability Test RedHat Update for libproxy RHSA-2012:1461-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Ubuntu Update for libproxy USN-1629-1

Ubuntu Update for Linux kernel vulnerabilities USN-1629-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16291.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for libproxy USN-1629-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net Thi...

libproxy: PAC handling insufficient content length check leading to buffer overflow

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

Moderate: Red Hat Security Advisory: libproxy security update

Updated libproxy packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

libproxy security update

0.3.0-3 - Fix CVE-2012-4505...

Ubuntu 10.04 LTS / 11.10 / 12.04 LTS : libproxy vulnerabilities (USN-1629-1)

Tomas Mraz discovered that libproxy incorrectly handled certain PAC files. A remote attacker could use this issue to cause libproxy to crash, or to possibly execute arbitrary code. CVE-2012-4504, CVE-2012-4505. Note that Tenable Network Security has extracted the preceding description block...

USN-1629-1: libproxy vulnerabilities

Tomas Mraz discovered that libproxy incorrectly handled certain PAC files. A remote attacker could use this issue to cause libproxy to crash, or to possibly execute arbitrary code. CVE-2012-4504, CVE-2012-4505...

Fedora 18 : libproxy-0.4.10-1.fc18 (2012-16383)

Fix http chunk encoded PAC that was broken in previous release - Add HTTP client unit test - Fix coding style issues Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

DEBIAN-CVE-2012-4505

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4505

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4505

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4504

Stack-based buffer overflow in the url::getpac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file...

Stack overflow

Stack-based buffer overflow in the url::getpac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file...

Heap overflow

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4504

CVE-2012-4504 affects libproxy 0.4.x (up to 0.4.8); a stack-based buffer overflow in url::get_pac() when processing a proxy.pac file from a remote server can cause an unspecified impact. Remediation: upgrade to libproxy 0.4.9+ (Gentoo GLSA and related advisories reference 0.4.10 as fixed). Other ...

CVE-2012-4505

CVE-2012-4505 is a heap-based buffer overflow in libproxy’s PAC handling. The flaw resides in px_pac_reload (lib/pac.c) in libproxy 0.2.x and 0.3.x, exploitable by a crafted Content-Length in an HTTP response header for a proxy.pac request, leading to potential crash or arbitrary behavior. Public...

CVE-2012-4504

Stack-based buffer overflow in the url::getpac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file...

CVE-2012-4505

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4505

Heap-based buffer overflow in the pxpacreload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504...

CVE-2012-4504

Stack-based buffer overflow in the url::getpac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file...