Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2020-2347)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.2 : glusterfs (EulerOS-SA-2020-2187)

According to the versions of the glusterfs packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in RPC request using gfs3lookupreq in glusterfs server. An authenticated attacker could use this flaw to leak...

CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

CVE-2014-3484

Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...

openSUSE Security Update : cups (openSUSE-2019-2573)

This update for cups fixes the following issues : - CVE-2019-8675: Fixed a stack-based buffer overflow in libcups's asn1gettype functionbsc1146358. - CVE-2019-8696: Fixed a stack-based buffer overflow in libcups's asn1getpacked function bsc1146359. This update was imported from the...

SUSE SLED15 / SLES15 Security Update : cups (SUSE-SU-2019:3030-1)

This update for cups fixes the following issues : CVE-2019-8675: Fixed a stack-based buffer overflow in libcups's asn1gettype functionbsc1146358. CVE-2019-8696: Fixed a stack-based buffer overflow in libcups's asn1getpacked function bsc1146359. Note that Tenable Network Security has extracted the...

FreeBSD-SA-19:12.telnet

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-19:12.telnet Security Advisory The FreeBSD Project Topic: telnet1 client multiple vulnerabilities Category: contrib Module: contrib/telnet Announced: 2019-07-24...

CVE-2019-0053

Insufficient validation of environment variables in the telnet client supplied in Junos OS can lead to stack-based buffer overflows, which can be exploited to bypass veriexec restrictions on Junos OS. A stack-based overflow is present in the handling of environment variables when connecting via t...

CVE-2019-0053

Insufficient validation of environment variables in the telnet client supplied in Junos OS can lead to stack-based buffer overflows, which can be exploited to bypass veriexec restrictions on Junos OS. A stack-based overflow is present in the handling of environment variables when connecting via t...

CVE-2019-13279

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple stack-based buffer overflows when processing user input for the setup wizard, allowing an unauthenticated user to execute arbitrary code. The vulnerability can be exercised on the local intranet or remotely if remote...

7-Technologies IGSS Vulnerabilities

Overview This advisory is a follow-up to ICS-ALERT-11-080-03 7-Technologies IGSS Vulnerabilities, published on the ICS-CERT Web site on March 20, 2011. An independent researcher has identified eight vulnerabilities in 7-Technologies 7T IGSS SCADA human-machine interface HMI application. Each of t...

UBUNTU-CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

CVE-2018-11218

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows...

ICSA-18-093-01 Siemens Building Technologies Products (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Siemens Equipment : Building Technologies Products Vulnerabilities : Stack-based Buffer Overflows, Security Features, Improper Restriction of Operations within the Bounds of a Memory Buffer, NUL...

SUSE SLED12 / SLES12 Security Update : wget (SUSE-SU-2017:2871-2)

This update for wget fixes the following security issues : - CVE-2017-13089,CVE-2017-13090: Missing checks for negative remainingchunksize in skipshortbody and fdreadbody could cause stack-based buffer overflows, which could have been exploited by malicious servers. bsc1064715,bsc1064716 Note tha...

Stack overflow

Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the 1 pingaddr parameter to PingIframeRpm.htm or 2 dnsserver2 parameter to WanStaticIpV6CfgRpm.htm...

openSUSE Security Update : libsndfile (openSUSE-2017-625)

This update for libsndfile fixes the following issues : - CVE-2017-8361: Global buffer overflow in flacbuffercopy. bsc1036946 - CVE-2017-8362: Invalid memory read in flacbuffercopy. bsc1036943 - CVE-2017-8363: Heap-based buffer overflow in flacbuffercopy. bsc1036945 - CVE-2017-7585, CVE-2017-7741...