[SECURITY] [DSA 3538-1] libebml security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3538-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 31, 2016 https://www.debian.org/security/faq -...

MGASA-2016-0048 Updated java-1.8.0-openjdk/copy-jdk-configs/lua-lunit/lua-posix packages fix security vulnerability

An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox...

SUSE-SU-2016:0164-1 Security update for samba

This update for Samba fixes the following security issues: - CVE-2015-5330: Remote read memory exploit in LDB bnc958586 - CVE-2015-5252: Insufficient symlink verification file access outside the share bnc958582 - CVE-2015-5296: No man in the middle protection when forcing smb encryption on the...

Internet Bug Bounty: Arbitary Memory Read via gdImageRotateInterpolated Array Index Out of Bounds

1Bug report at: https://bugs.php.net/bug.php?id=70976&edit=2 2 Patch submitted: https://www.dropbox.com/s/rr5xti66cpt17mn/gdinterpolation.patch?dl=0 3 Issue has been fixed in PHP 5.5.31, 5.6.17, 7.0.2 ---Vuln Description-- This is the function prototype for ImageRotate: resource imagerotate...

openSUSE Security Update : ldb / samba / talloc / etc (openSUSE-2015-943)

"This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs : The Samba LDB was updated to version 1.1.24 : - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata...

Security update for ldb, samba, talloc, tdb, tevent (important)

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs: The Samba LDB was updated to version 1.1.24: - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata int...

SUSE-SU-2015:2304-1 Security update for ldb, samba, talloc, tdb, tevent

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues: - ldb was updated to version 1.1.24. + Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 + Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for...

SUSE-SU-2015:1821-1 Security update for postgresql93

The PostreSQL database postgresql93 was updated to the bugfix release 9.3.10: Security issues fixed: - CVE-2015-5289, bsc949670: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. - CVE-2015-5288, bsc949669: The crypt...

PostgreSQL -- minor security problems.

PostgreSQL project reports: Two security issues have been fixed in this release which affect users of specific PostgreSQL features. CVE-2015-5289 json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. CVE-2015-5288: The cryp...

Apple Mac OSX 10.10 - IOKit IntelAccelerator Null Pointer Dereference

Apple Mac OSX 10.10 - IOKit IntelAccelerator Null Pointer Dereference include include include include include int main kernreturnt err; CFMutableDictionaryRef matching = IOServiceMatching"IntelAccelerator"; if!matching printf"unable to create service matching dictionary\n"; return 0; ioiteratort...

Apple Quicktime for Java 7 - Memory Access

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Secunia Research: RealPlayer "cook" Uninitialised Memory Vulnerability

====================================================================== Secunia Research 10/12/2010 - RealPlayer "cook" Uninitialised Memory Vulnerability - ====================================================================== Table of Contents Affected...

Kojoney 0.0.4.1 Denial Of Service

= Affected software : Name : Kojoney Description : Low interaction SSH honeypot Version : returned value is "HelloWorld" data:text;base64,WDVPIVAlQEFQWzRcUFpYNTQoUF4pN0NDKTd9JEVJQ0FSLVNUQU5EQVJELUFOVElWSVJVUy1URVNULUZJTEUhJEgrSCo=://a = returned value is the EICAR test string And yes, these strin...

Intel Core 2 Duo T5750, Intel Atom N270 CPU cache controller bug exploit

Exploit for hardware platform in category dos / poc /---------------------------------------------------------------------------- CPU cache controller bug exploit ================================ allows you to change content of arbitrary memory cells,including the kernel memory from the user leve...

Linux-HA Heartbeat Insecure Default Permissions on Shared Memory Vulnerability

No description provided by source. / Intruders Tiger Team Security http://www.intruders.org.br/ Heartbeat 2.0.6 Insecure Shared Memory - Local Denial of Service. Credits: Yan Rong Ge, see link below: http://secunia.com/advisories/21162/ Tested on Heartbeat 2.0.5. Thanks for Wendel Guglielmetti,...

Adobe Acrobat / Acrobat Reader 6.0 - '.ETD' File Parser Format String

source: https://www.securityfocus.com/bid/11934/info Adobe Acrobat/Acrobat Reader is reported prone to a remote format string vulnerability. The vulnerability is present in the ETD file parser when processing tag values. Reports indicate that the values supplied for certain tags are used as the...

Mandrake Linux Security Advisory : apache (MDKSA-2002:068)

A number of vulnerabilities were discovered in Apache versions prior to 1.3.27. The first is regarding the use of shared memory SHM in Apache. An attacker that is able to execute code as the UID of the webserver typically 'apache' is able to send arbitrary processes a USR1 signal as root. Using...

Mandrake Linux Security Advisory : fetchmail (MDKSA-2001:072)

A vulnerability was found by Salvatore Sanfilippo in both the IMAP and POP3 code of fetchmail where the input is not verified and no bounds checking is done. This can be exploited by a remote attacker to write arbitrary data into memory. The attacker must have control of the mail server the clien...

AIX 4.3.3/5.x - Getlvcb Command Line Argument Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/9905/info getlvcb has been reported to be prone to a buffer overflow vulnerability. When an argument is passed to the getlvcb utility, the string is copied into a reserved buffer in memory. Data that exceeds the size of the reserved buffer will overflo...

CVE-2003-0854

ls in the fileutils or coreutils packages allows local users to consume a large amount of memory via a large -w value, which can be remotely exploited via applications that use ls, such as wu-ftpd...