glibc: Unbounded stack allocation in nan* functions

A stack overflow vulnerability was found in nan functions that could cause applications, which process long strings with the nan function, to crash or, potentially, execute arbitrary code...

openjpeg: incorrect fix for CVE-2013-6045

A vulnerability was found in the patch for CVE-2013-6045 for OpenJPEG. A specially crafted JPEG2000 image, when read by an application using OpenJPEG, could cause heap-based buffer overflows leading to a crash or possible code execution...

FreeBSD : irssi -- use-after-free potential code execution (06f931c0-0be0-11e7-b4bf-5404a68ad561)

The irssi project reports : Use after free while producing list of netjoins CWE-416. This issue was found and reported to us by APic. This issue usually leads to segmentation faults. Targeted code execution should be difficult. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

UBUNTU-CVE-2017-5668

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...

irssi -- use-after-free potential code execution

The irssi project reports: Use after free while producing list of netjoins CWE-416. This issue was found and reported to us by APic. This issue usually leads to segmentation faults. Targeted code execution should be difficult...

Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20170302)

Security Fixes : - Quick emulator QEMU built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process...

CVE-2016-9400

The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code via vectors involving snap handling...

MGASA-2016-0278 Updated firefox packages fix security vulnerability

Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox CVE-2016-2836, CVE-2016-5258, CVE-2016-5259, CVE-2016-5252,...

FreeBSD : git -- potential code execution (93ee802e-ebde-11e5-92ce-002590263bf5)

Debian reports : 'int' is the wrong data type for ... nlen assignment. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and contributors Redistribution a...

SUSE SLED12 Security Update : Xerces-C (SUSE-SU-2015:0597-1)

The Xerces-C XML parsing library was updated to fix mishandling certain kinds of malformed input documents, that could have resulted in a segmentation faults during a parse operation, leading to denial of service or potential code execution. bnc920810,CVE-2015-0252 Note that Tenable Network...

USN-2605-1: ICU vulnerabilities

Pedro Ribeiro discovered that ICU incorrectly handled certain memory operations when processing data. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program...

openSUSE Security Update : wpa_supplicant (openSUSE-2015-341)

The wireless network encryption and authentication daemon wpasupplicant was updated to fix a security issue. The following vulnerability was fixed : - CVE-2015-1863: A buffer overflow in handling SSIDs in P2P management frames allowed attackers in radio range to crash, expose memory content or...

SUSE-SU-2015:0597-1 Security update for Xerces-C

The Xerces-C XML parsing library was updated to fix mishandling certain kinds of malformed input documents, that could have resulted in a segmentation faults during a parse operation, leading to denial of service or potential code execution. bnc920810,CVE-2015-0252...

[RT-SA-2014-008] Python CGIHTTPServer File Disclosure and Potential Code Execution

Advisory: Python CGIHTTPServer File Disclosure and Potential Code Execution The CGIHTTPServer Python module does not properly handle URL-encoded path separators in URLs. This may enable attackers to disclose a CGI script's source code or execute arbitrary CGI scripts in the server's document root...

Remotesoft .NET Explorer 2.0.1 - Local Stack Overflow PoC

No description provided by source. /usr/bin/ python print -------------------------------------------------------------- print Remotesoft .NET Explorer 2.0.1 Stack Overflow print url: http://www.remotesoft.com/ print author: shinnai print mail: shinnaiatautisticidotorg print site:...

Debian Security Advisory DSA 2456-1 (dropbear - use after free)

Danny Fullerton discovered a use-after-free in the Dropbear SSH daemon, resulting in potential execution of arbitrary code. Exploitation is limited to users, who have been authenticated through public key authentication and for which command restrictions are in place. OpenVAS Vulnerability Test...

Oracle Linux 4 : kernel (ELSA-2007-0014)

From Red Hat Security Advisory 2007:0014 : Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles...

CentOS Update for xorg-x11-server-sdk CESA-2011:1359 centos5 x86_64

Check for the Version of xorg-x11-server-sdk OpenVAS Vulnerability Test CentOS Update for xorg-x11-server-sdk CESA-2011:1359 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

glibc: __tzfile_read integer overflow to buffer overflow

Integer overflow in the tzfileread function in glibc before 2.15 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted timezone TZ file, as demonstrated using vsftpd...

CentOS Update for seamonkey CESA-2009:1134 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...