kernel: vhost-net: insufficiency in handling of big packets in handle_rx()

drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service memory corruption and host OS crash or possibly gain privileges on the host OS via crafted packets,...

CVE-2012-5876

Multiple off-by-one errors in NMMediaServerService.dll in Nero MediaHome 4.5.8.0 and earlier allow remote attackers to cause a denial of service crash via a long string in the 1 request line or 2 HTTP Referer header to TCP port 54444, which triggers a heap-based buffer overflow...

CVE-2012-5876

Multiple off-by-one errors in NMMediaServerService.dll in Nero MediaHome 4.5.8.0 and earlier allow remote attackers to cause a denial of service crash via a long string in the 1 request line or 2 HTTP Referer header to TCP port 54444, which triggers a heap-based buffer overflow...

kernel: pty layer race condition leading to memory corruption

The nttywrite function in drivers/tty/ntty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service memory corruption and system crash or gain privileges by triggering a race condition...

Debian DSA-2932-1 : qemu - security update

Several vulnerabilities were discovered in qemu, a fast processor emulator. - CVE-2013-4344 Buffer overflow in the SCSI implementation in QEMU, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command. -...

[SECURITY] [DSA 2933-1] qemu-kvm security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2933-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano May 19, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2932-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2932-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano May 19, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2932-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2932-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano May 19, 2014 http://www.debian.org/security/faq -...

DSA-2932-1 qemu - security update

Bulletin has no description...

Debian Security Advisory DSA 2933-1 (qemu-kvm - security update)

Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware. CVE-2013-4344 Buffer overflow in the SCSI implementation in QEMU, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a...

Debian Security Advisory DSA 2932-1 (qemu - security update)

Several vulnerabilities were discovered in qemu, a fast processor emulator. CVE-2013-4344 Buffer overflow in the SCSI implementation in QEMU, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command...

Debian: Security Advisory (DSA-2933-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2010-5109

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...

UBUNTU-CVE-2010-5109

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...

Deutsche Telekom CERT Advisory [DTC-A-20140324-004] nagios vulnerability

Deutsche Telekom CERT Advisory DTC-A-20140324-004 Summary: An Off-by-one memory access was found in the web gui of nagios. A patch was applied to the core master branch of nagios http://sourceforge.net/p/nagios/nagioscore/ci/d97e03f32741a7d851826b03ed73ff4c9612a866/. This resolution is announced ...

Deutsche Telekom CERT Advisory [DTC-A-20140324-003] vulnerabilities in icinga

Deutsche Telekom CERT Advisory DTC-A-20140324-003 Summary: Two vulnerabilities were found in icinga version 1.9.1. These vulnerabilities are: 1 several buffer overflows 2 Off-by-one memory access Recommendations: Updates available and need to be installed: - Icinga 1.10.2 Bug Fix Release - Icinga...

PT-2014-4948 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.1.8 Description: The issue is caused by an off-by-one error in the bpf jit compile function. This error can lead to a denial of service, resulting in a system crash, or potentially allow local users to gain...

CVE-2014-2889

CVE-2014-2889 describes an off-by-one error in the Linux kernel's x86 BPF JIT path. Specifically, in arch/x86/net/bpf_jit_comp.c (function bpf_jit_compile) for kernel versions prior to 3.1.8, if BPF JIT is enabled an off-by-one condition can allow a local user to trigger a denial of service (syst...

CVE-2014-2889

Off-by-one error in the bpfjitcompile function in arch/x86/net/bpfjitcomp.c in the Linux kernel before 3.1.8, when BPF JIT is enabled, allows local users to cause a denial of service system crash or possibly gain privileges via a long jump after a conditional jump...

DEBIAN-CVE-2014-2894

Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...