4 matches found
EUVD-2017-16808
Malware in sbrugna...
squid: Out-of-bounds write error may lead to Denial of Service
A flaw was found in Squid. An out-of-bounds write can be triggered when an Edge Side Includes ESI variable is assigned to a value not in the standard ASCII range, for example, multi-byte characters. This flaw allows a trusted server to crash Squid while processing an ESI response content, resulti...
[slackware-security] infozip
New infozip packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/infozip-6.0-i586-4slack14.2.txz: Rebuilt. Added some patches that should fix extracting archives with non-latin characte...
CVE-2017-7833
Some Arabic and Indic vowel marker characters can be combined with Latin characters in a domain name to eclipse the non-Latin character with some font sets on the addressbar. The non-Latin character will not be visible to most viewers. This allows for domain spoofing attacks because these combine...