723 matches found
GLSA-201701-76 : HarfBuzz: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-76 HarfBuzz: Multiple vulnerabilities Multiple vulnerabilities have been discovered in HarfBuzz. Please review the CVE identifiers referenced below for details. Impact : Remote attackers, through the use of crafted data,...
OracleVM 3.3 / 3.4 : mysql (OVMSA-2017-0035)
The remote OracleVM system is missing necessary patches to address critical security updates : - fix date in the test - Fix CVE-2016-6662, CVE-2016-6663 Resolves: 1397309 - Fixed reloadaclandcache Resolves: 1281370 - Add support for TLSv1.1 and TLSv1.2 - Fixed test events1 end date in past...
GLSA-201701-60 : LibRaw: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-60 LibRaw: Multiple vulnerabilities Multiple vulnerabilities have been discovered in LibRaw. Please review the CVE identifiers referenced below for details. Impact : An attacker could execute arbitrary code, cause a Denial ...
GLSA-201701-56 : zlib: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-56 zlib: Multiple vulnerabilities Multiple vulnerabilities have been discovered in zlib. Please review the CVE identifiers referenced below for details. Impact : An attacker could cause a Denial of Service condition...
OracleVM 3.2 : bind (OVMSA-2017-0034)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted fro...
OracleVM 3.3 / 3.4 : bind (OVMSA-2017-0033)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted fro...
MiniUPnPc: Buffer overflow
Background UPnP client library and a simple UPnP client. Description An out-of-bounds read was discovered in the getHTTPResponse function in miniwget.c in MiniUPnPc. Impact Remote attackers, through specially crafted headers, could cause a Denial of Service condition. Workaround There is no known...
CVE-2016-10082
include/functionsinstaller.inc.php in Serendipity through 2.0.5 is vulnerable to File Inclusion and a possible Code Execution attack during a first-time installation because it fails to sanitize the dbType POST parameter before adding it to an include call in the...
SUSE SLES11 Security Update : xorg-x11-libs (SUSE-SU-2016:3189-1)
This update for xorg-x11-libs fixes the following issues : - insufficient validation of data from the X server can cause a one byte buffer read underrun bsc1003023, CVE-2016-7953 - insufficient validation of data from the X server can cause out of boundary memory access or endless loops Denial of...
SUSE-SU-2016:3189-1 Security update for xorg-x11-libs
This update for xorg-x11-libs fixes the following issues: - insufficient validation of data from the X server can cause a one byte buffer read underrun bsc1003023, CVE-2016-7953 - insufficient validation of data from the X server can cause out of boundary memory access or endless loops Denial of...
GLSA-201612-41 : WebKitGTK+: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201612-41 WebKitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE identifiers referenced below for details. Impact : A remote attacker can use multiple vectors to...
GLSA-201612-38 : Botan: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201612-38 Botan: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Botan. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possibly execute arbitrary code wit...
elfutils: Heap-based buffer overflow
Background Elfutils provides a library and utilities to access, modify and analyse ELF objects. Description An integer overflow, in the checksection function of dwarfbeginelf.c, in the libdw library can lead to a heap-based buffer overflow. Impact A remote attacker could entice a user to open a...
Node.js: Multiple vulnerabilities
Background Node.js is a JavaScript runtime built on Chrome’s V8 JavaScript engine. Description Multiple vulnerabilities have been discovered in Node.js. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly cause a Denial of Service condition, or...
Fedora Update for kdepim-apps-libs FEDORA-2016-1b042a79bd
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
krb5 security, bug fix, and enhancement update
1.14.1-26 - Use responder in non-preauth AS reqs - Resolves: 1363690 1.14.1-25 - Fix bad debuglog call in selinux handling - Resolves: 1292153 1.14.1-24 - Fix KKDCPP with TLS SNI by always presenting 'Host:' header - Resolves: 1364993 1.14.1-23 - Add dependency on libkadm5 to krb5-devel - Resolve...
OracleVM 3.3 / 3.4 : bind (OVMSA-2016-0152)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-8864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2016-0152. include'deprecatednasllevel.inc...
OracleVM 3.2 : bind (OVMSA-2016-0153)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-8864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2016-0153. include'deprecatednasllevel.inc...
OracleVM 3.3 / 3.4 : bind (OVMSA-2016-0145)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-2848 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2016-0145. include'deprecatednasllevel.inc...
OracleVM 3.2 : bind (OVMSA-2016-0146)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2016-2848 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2016-0146. include'deprecatednasllevel.inc...