180 matches found
CVE-2013-2195
The Elf parser libelf in Xen 4.2.x and earlier allow local guest administrators with certain permissions to have an unspecified impact via a crafted kernel, related to "pointer dereferences" involving unexpected calculations...
Updated xlockmore package fixes security vulnerability
xlockmore before 5.43 contains a security flaw related to potential NULL pointer dereferences when authenticating via glibc 2.17+'s crypt function. Under certain conditions the NULL pointers can trigger a crash in xlockmore effectively bypassing the screen lock CVE-2013-4143...
Multiple vulnerabilities in libelf PV kernel handling
ISSUE DESCRIPTION The ELF parser used by the Xen tools to read domains' kernels and construct domains has multiple integer overflows, pointer dereferences based on calculations from unchecked input values, and other problems. This corresponds to the following CVEs: CVE-2013-2194 XEN XSA-55 intege...
Fedora 18 : krb5-1.10.3-14.fc18 (2013-3147)
This update incorporates the upstream fix for possible NULL pointer dereferences which could occur if a client sent a malformed PKINIT request to a KDC CVE-2013-1415, or if a client sent a draft9 PKINIT request to a KDC CVE-2012-1016. Note that Tenable Network Security has extracted the preceding...
Corel Quattro Pro DoS
NULL pointer dereferences on QPW parsing...
Debian Security Advisory DSA 2570-1 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA 2570-1. OpenVAS Vulnerability Test $Id: deb25701.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2570-1 openoffice.org Authors: Thomas Reinke Copyright: Copyright c 2012 E-Sof...
ESA-2012-019: EMC Documentum Information Rights Management Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-019: EMC Documentum Information Rights Management Multiple Vulnerabilities. EMC Identifier: ESA-2012-019 CVE Identifiers: CVE-2012-2276, CVE-2012-2277 Severity Rating: CVSS v2 Base Score: 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Affected products: EMC...
Fedora 15 : krb5-1.9.2-4.fc15 (2011-16284)
This update rebases Fedora 15 and 16 from version 1.9.1 to version 1.9.2, incorporating a recent security update and some of the fixes we were previously backporting, among others. It also incorporates fixes for NULL pointer dereferences which the KDC could make while processing TGS requests...
Fedora 16 : krb5-1.9.2-4.fc16 (2011-16296)
This update rebases Fedora 15 and 16 from version 1.9.1 to version 1.9.2, incorporating a recent security update, and some of the fixes we were previously backporting, among others. It also incorporates fixes for NULL pointer dereferences which the KDC could make while processing TGS requests...
DSA-2066-1 wireshark - several vulnerabilities
Bulletin has no description...
Fedora 10 : krb5-1.6.3-18.fc10 (2009-2852)
This update incorporates patches to fix potential read overflow and NULL pointer dereferences in the implementation of the SPNEGO GSSAPI mechanism CVE-2009-0844, CVE-2009-0845, attempts to free an uninitialized pointer during protocol parsing CVE-2009-0846, and a bug in length validation during...
CentOS Update for kernel CESA-2008:0973 centos3 x86_64
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2008:0973 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Debian: Security Advisory (DSA-1049-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 536-1 (libpng)
The remote host is missing an update to libpng announced via advisory DSA 536-1. OpenVAS Vulnerability Test $Id: deb5361.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 536-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 1049-1 (ethereal)
The remote host is missing an update to ethereal announced via advisory DSA 1049-1. Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-1932 The OID printing...
Debian DSA-1049-1 : ethereal - several vulnerabilities
Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1932 The OID printing routine is susceptible to an off-by-one error. - CVE-2006-1933 The UMA and BER...
Design/Logic Flaw
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service crash via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but...
CVE-2006-1992
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service crash via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but...
Debian DSA-853-1 : ethereal - several vulnerabilities
Several security problems have been discovered in ethereal, a commonly used network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-2360 Memory allocation errors in the LDAP dissector can cause a denial of service. - CAN-2005-2361...
DSA-536 libpng - several vulnerabilities
Bulletin has no description...