CVE-2013-4921

CVE-2013-4921 is an off-by-one error in the Radiotap dissector (epan/dissectors/packet-ieee80211-radiotap.c) affecting Wireshark 1.10.x prior to 1.10.1. A crafted network packet can trigger a denial of service (application crash) in tshark/Wireshark. The connected vulnerability records confirm th...

CVE-2013-4921

Off-by-one error in the dissectradiotap function in epan/dissectors/packet-ieee80211-radiotap.c in the Radiotap dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service application crash via a crafted packet...

[SECURITY] Fedora 19 Update: nodejs-graceful-fs-2.0.0-2.fc19

Just like node.js' fs module, but it does an incremental back-off when EMFI LE is encountered. Useful in asynchronous situations where one needs to try to o pen lots and lots of files...

[SECURITY] Fedora 18 Update: nodejs-graceful-fs-2.0.0-2.fc18

Just like node.js' fs module, but it does an incremental back-off when EMFI LE is encountered. Useful in asynchronous situations where one needs to try to o pen lots and lots of files...

Oracle Linux 4 : php (ELSA-2012-0071)

From Red Hat Security Advisory 2012:0071 : Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, whi...

Oracle Linux 5 : Important: / openssl (ELSA-2007-0964)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0964 advisory. 0.9.8b-8.3.2 - more DTLS fixes 321211 0.9.8b-8.3.1 - fix CVE-2007-3108 - side channel attack on private keys 322891 - fix CVE-2007-5135 - off-by-one in...

Oracle Linux 5 : libxml2 (ELSA-2012-0017)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0017 advisory. - Fix the semantic of XPath axis for namespace/attribute nodes CVE-2010-4008 - Fix an off by one error in encoding CVE-2011-0216 - Fix some potential...

Oracle Linux 5 : Moderate: / squid (ELSA-2007-1130)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2007-1130 advisory. 2.5.STABLE3-8.3E - fix for 410181 - CVE-2007-6239 Squid DoS in cache updates 2.5.STABLE3-7 - resolves: 238103: 'forwardedfor off' in squid.conf does not work...

Oracle Linux 5 : libvirt (ELSA-2013-0127)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0127 advisory. 0.8.2-29.0.1.el5 - Replaced docs/et.png in tarball - remove virshtest from test cases to fix failure in mock build root libvirt-0.8.2-29.el5 - Coverity pointed...

Oracle Linux 5 / 6 : libxml2 (ELSA-2012-1288)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-1288 advisory. - Change the XPath code to percolate allocation error CVE-2011-1944 - Fix an off by one pointer access CVE-2011-3102 - adds randomization to hash a...

Mandriva Linux Security Advisory : libxml2 (MDVSA-2013:056)

Multiple vulnerabilities was found and corrected in libxml2 : A heap-buffer overflow was found in the way libxml2 decoded certain XML entitites. A remote attacker could provide a specially crafted XML file, which once opened in an application linked against libxml would cause that application to...

3 6 0 web site security detection score may be forgery vulnerability-vulnerability warning-the black bar safety net

Detailed description: Testing Server site when the administrator to view the log, access to the ip, the seal off can. in. Vulnerability proof: I sealed the ip section is: deny 218.30.117.0/2 4; deny 182.118.33.0/2 4; deny 123.125.160.0/2 4; ! Repair solutions: I would also like to see this produc...

Active Perl Modules Multiple Vulnerabilities (Windows)

The host is installed with Active Perl and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbactiveperlmodulesmultvulnwin.nasl 6115 2017-05-12 09:03:25Z teissa $ Active Perl Modules Multiple Vulnerabilities Windows Authors: Arun Kallavi Copyright: Copyright c 2012 Greenbone...

FreeBSD : chromium -- multiple vulnerabilities (dfd92cb2-7d48-11e2-ad48-00262d5ed8ee)

Google Chrome Releases reports : 172243 High CVE-2013-0879: Memory corruption with web audio node. Credit to Atte Kettunen of OUSPG. 171951 High CVE-2013-0880: Use-after-free in database handling. Credit to Chamal de Silva. 167069 Medium CVE-2013-0881: Bad read in Matroska handling. Credit to Att...

CVE-2013-0897

Off-by-one error in the PDF functionality in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service via a crafted document...

Zendesk security breach, "We've been hacked"

Customer service software provider Zendesk announced a security breach, that affected three major Zendesk clients i.e Tumblr, Pinterest and Twitter and allowed hackers into their systems. The hacks come just days after Apple ,Twitter and Facebook revealed that their employees computers fell victi...

Google Chrome < 25.0.1364.97 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 25.0.1364.97. It is, therefore, affected by the following vulnerabilities : - An unspecified memory corruption error exists related to 'web audio node'. CVE-2013-0879 - Use-after-free errors exist related to database...

Google Chrome < 25.0.1364.97 Multiple Vulnerabilities

Binary data 6694.pasl...

libxml: An off-by-one out-of-bounds write by XPointer part evaluation

Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via unknown vectors...

libxml2: Off-by-one error leading to heap-based buffer overflow in encoding

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and application crash via a crafted web site...