4554 matches found
EUVD-2011-2154
Malware in sbrugna...
EUVD-2010-2533
Malware in sbrugna...
EUVD-2009-0909
Malware in sbrugna...
EUVD-2009-0044
Malware in sbrugna...
CVE-2011-2162
Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 aka CS4.0; and Mandriva Enterprise Server 5 aka MES5 have unknown impact and attack vectors, related to issues...
SUSE CVE-2010-2529
Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service hang via a crafted echo response...
[ MDVSA-2015:186 ] phpmyadmin
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:186 http://www.mandriva.com/en/support/security/ Package : phpmyadmin Date : March 31, 2015 Affected: Business Server 1.0 Problem Description: A vulnerability has been discovered and corrected in phpmyadmin:...
Mandriva Linux Security Advisory : libtasn1 (MDVSA-2015:232)
Updated libtasn1 packages fix security vulnerability : A malformed certificate input could cause a heap overflow read in the DER decoding functions of Libtasn1. The heap overflow happens in the function asn1extractderoctet CVE-2015-3622. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
[ MDVSA-2015:232 ] libtasn1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:232 http://www.mandriva.com/en/support/security/ Package : libtasn1 Date : May 8, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated libtasn1 packages fix security...
Mandriva Linux Security Advisory : perl-XML-LibXML (MDVSA-2015:231)
Updated perl-XML-LibXML package fixes security vulnerability : Tilmann Haak from xing.com discovered that XML::LibXML did not respect the expandentities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected...
Mandriva Linux Security Advisory : nodejs (MDVSA-2015:228)
Updated nodejs package fixes security vulnerability : It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges CVE-2015-0278. The libuv library is bundled with nodejs, and a fixed version of libuv is included...
Mandriva Linux Security Advisory : net-snmp (MDVSA-2015:229)
Updated net-snmp packages fix security vulnerability : It was discovered that the snmppduparse function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could exploit this flaw to cause a crash or, potentially, execute arbitrary code...
Mandriva Linux Security Advisory : squid (MDVSA-2015:230)
Updated squid packages fix security vulnerability : Squid configured with client-first SSL-bump does not correctly validate X509 server certificate domain / hostname fields CVE-2015-3455. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
[ MDVSA-2015:209 ] php
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/support/security/ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated php packages fix security vulnerabilities:...
Mandriva Linux Security Advisory : directfb (MDVSA-2015:223)
Updated directfb packages fix security vulnerabilities : Multiple integer signedness errors in the DispatchWrite function in proxy/dispatcher/idirectfbsurfacedispatcher.c in DirectFB allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via the Voodoo...
Mandriva Linux Security Advisory : curl (MDVSA-2015:220)
Updated curl packages fix security vulnerabilities : NTLM-authenticated connections could be wrongly reused for requests without any credentials set, leading to HTTP requests being sent over the connection authenticated as a different user CVE-2015-3143. When doing HTTP requests using the Negotia...
[ MDVSA-2015:217 ] sqlite3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:217 http://www.mandriva.com/en/support/security/ Package : sqlite3 Date : April 30, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Multiple vulnerabilities has been found and...
Mandriva Linux Security Advisory : ppp (MDVSA-2015:222)
Updated ppp packages fix security vulnerability : Emanuele Rocca discovered that ppp was subject to a buffer overflow when communicating with a RADIUS server. This would allow unauthenticated users to cause a denial-of-service by crashing the daemon CVE-2015-3310. %NASLMINLEVEL 70300 C Tenable...
Mandriva Linux Security Advisory : ruby (MDVSA-2015:224)
Updated ruby packages fix security vulnerability : Ruby OpenSSL hostname matching implementation violates RFC 6125 CVE-2015-1855. The ruby packages for MBS2 has been updated to version 2.0.0-p645, which fixes this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
Mandriva Linux Security Advisory : fcgi (MDVSA-2015:226)
Updated fcgi packages fix security vulnerability : FCGI does not perform range checks for file descriptors before use of the FDSET macro. This FDSET macro could allow for more than 1024 total file descriptors to be monitored in the closing state. This may allow remote attackers to cause a denial ...