[SECURITY] [DSA 2479-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2479-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 23, 2012 http://www.debian.org/security/faq -...

DSA-2479-1 libxml2 - off-by-one

Bulletin has no description...

Fedora Update for pidgin-otr FEDORA-2012-8063

Check for the Version of pidgin-otr OpenVAS Vulnerability Test Fedora Update for pidgin-otr FEDORA-2012-8063 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Ubuntu Update for libxml2 USN-1447-1

Ubuntu Update for Linux kernel vulnerabilities USN-1447-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14471.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for libxml2 USN-1447-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

FreeBSD : libxml2 -- An off-by-one out-of-bounds write by XPointer (b8ae4659-a0da-11e1-a294-bcaec565249c)

Google chrome team reports : An off-by-one out-of-bounds write flaw was found in the way libxml, a library for providing XML and HTML support, evaluated certain XPointer parts XPointer is used by libxml to include only the part from the returned XML document, that can be accessed using the XPath...

DSA-2476-1 pidgin-otr - format string vulnerability

Bulletin has no description...

CVE-2011-3102

Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via unknown vectors...

CVE-2011-3102

Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via unknown vectors...

libxml2 -- An off-by-one out-of-bounds write by XPointer

Google chrome team reports: An off-by-one out-of-bounds write flaw was found in the way libxml, a library for providing XML and HTML support, evaluated certain XPointer parts XPointer is used by libxml to include only the part from the returned XML document, that can be accessed using the XPath...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : thunderbird vulnerabilities (USN-1430-3)

USN-1430-1 fixed vulnerabilities in Firefox. This update provides the corresponding fixes for Thunderbird. Bob Clary, Christian Holler, Brian Hackett, Bobby Holley, Gary Kwong, Hilary Hall, Honza Bambas, Jesse Ruderman, Julian Seward, and Olli Pettay discovered memory safety issues affecting...

FreeBSD Ports: firefox

The remote host is missing an update to the system as announced in the referenced advisory. VID 380e8c56-8e32-11e1-9580-4061862b8c22 OpenVAS Vulnerability Test $ Description: Auto generated from VID 380e8c56-8e32-11e1-9580-4061862b8c22 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Mozilla Thunderbird 10.0.x < 10.0.4 Multiple Vulnerabilities

The installed version of Thunderbird 10.0.x is potentially affected by the following security issues : - An off-by-one error exists in the 'OpenType Sanitizer' that could lead to out-bounds-reads and possible code execution. CVE-2011-3062 - Memory safety issues exist that could lead to arbitrary...

Firefox 10.0.x < 10.0.4 Multiple Vulnerabilities

The installed version of Firefox 10.0.x is potentially affected by the following security issues : - An off-by-one error exists in the 'OpenType Sanitizer' which can lead to out-bounds-reads and possible code execution. CVE-2011-3062 - Memory safety issues exist that could lead to arbitrary code...

Mozilla: Off-by-one error in OpenType Sanitizer (MFSA 2012-31)

Off-by-one error in the OpenType Sanitizer in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted OpenType file...

Mozilla: Off-by-one error in OpenType Sanitizer (MFSA 2012-31)

Off-by-one error in the OpenType Sanitizer in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted OpenType file...

OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors...

Off-by-one error in OpenType Sanitizer — Mozilla

Mateusz Jurczyk of the Google Security Team discovered an off-by-one error in the OpenType Sanitizer using the Address Sanitizer tool. This can lead to an out-of-bounds read and execution of an uninitialized function pointer during parsing and possible remote code execution...

OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors...

wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector

Off-by-one error in the elemcellidaux function in epan/dissectors/packet-ansia.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service infinite loop via an invalid packet...

OCIPasswordChange API leaks information of password hash &#40;CVE-2012-0511&#41;

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory OCIPasswordChange API leaks information of password hash. Risk Level: High Affected versions: Oracle Database Server version 10gR1, 10gR2 10.2.0.4 and previous patchsets and 11gR1 11.1.0.7 and previous patchset...