Debian DSA-4118-1 : tomcat-native - security update

Jonas Klempel reported that tomcat-native, a library giving Tomcat access to the Apache Portable Runtime APR library's network connection socket implementation and random-number generator, does not properly handle fields longer than 127 bytes when parsing the AIA-Extension field of a client...

CVE-2011-4530

Siemens Automation License Manager ALM 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service exception and daemon crash via long fields, as demonstrated by fields to the 1 opensession-workstation-NAME or 2...