Security Advisory - Seven vulnerabilities in Google Dnsmasq

Dnsmasq is a widely used piece of open-source softwarea designed to provide DNS, DHCP, Dnsmasq 2.77 and before version contains 7 security vulnerabilities. There is a heap buffer overflow vulnerability in dnsmasq in the code responsible when building DNS replies. An attacker could send crafted DN...

RHEL 7 : liblouis (RHSA-2017:3111)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3111 advisory. Liblouis is an open source braille translator and back-translator named in honor of Louis Braille. It features support for computer and...

Jnes 1.0.2 - Stack Buffer Overflow

!/usr/bin/env python coding: utf-8 Exploit Title: Jnes Version 1.0.2 Stack Buffer Overflow Date: 3-11-2017 Exploit Author: crashmanucoot Contact: twitter.com/crashmanucoot Vendor Homepage: http://www.jabosoft.com/home Software Link: http://www.jabosoft.com/categories/3 Version: v1.0.2.15 Tested o...

liblouis: Stack-buffer overflow in the function includeFile()

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function includeFile in compileTranslationTable.c, that will lead to a remote denial of service attack...

Chain of 11 Bugs Takes Down Galaxy S8 at Mobile Pwn2Own

The mobile version of the annual Pwn2Own contest wrapped up today in Tokyo with an unprecedented attack chain leveling the Samsung Galaxy S8. Researchers from MWR Labs used 11 vulnerabilities across six different mobile applications to execute code on Samsung’s flagship device and exfiltrate data...

chakra: Stack-buffer-overflow in Output::PrintBuffer

Project: https://github.com/Microsoft/ChakraCore.git Detailed report: https://oss-fuzz.com/testcase?key=5319633180557312 Project: chakra Fuzzer: jsfuzzer Job Type: asanchakra Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7efd1fdab820 Crash State: Output::PrintBuffer...

Flexense DiskPulse Client Import Stack Buffer Overflow

A stack buffer overflow vulnerability exists in the client component of Disk Pulse Enterprise Server. The vulnerability is due to improper parsing of an XML file when performing import command or import profile action. A remote, unauthenticated attacker could exploit this vulnerability by enticin...

chakra: Dynamic-stack-buffer-overflow in js_memcpy_s

Project: https://github.com/Microsoft/ChakraCore.git Detailed report: https://oss-fuzz.com/testcase?key=6280172954189824 Project: chakra Fuzzer: jsfuzzer Job Type: asanchakra Platform Id: linux Crash Type: Dynamic-stack-buffer-overflow READ 16 Crash Address: 0x7ffec5b38060 Crash State: jsmemcpys...

gstreamer/gst-discoverer: Stack-buffer-overflow in vorbis_handle_identification_packet

Project: https://anongit.freedesktop.org/git/gstreamer/gstreamer Detailed report: https://oss-fuzz.com/testcase?key=6419900319924224 Project: gstreamer Fuzzer: libFuzzergstreamergst-discoverer Fuzz target binary: gst-discoverer Job Type: libfuzzerasangstreamer Platform Id: linux Crash Type:...

Google Patches ‘High Severity’ Browser Bug

UPDATE Google is urging users to update their Chrome desktop browsers to avoid security issues related to a high-severity stack-based buffer overflow vulnerability. Google issued the alert Thursday and said an update for most browsers has been released. “The stable channel has been updated to...

CVE-2017-15396

A stack buffer overflow in NumberingSystem in International Components for Unicode ICU for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Amazon Linux AMI : kernel (ALAS-2017-914) (BlueBorne)

stack buffer overflow in the native Bluetooth stack A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the kernel...

Virtuozzo 7 : readykernel-patch (VZA-2017-098)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - Linux kernel built with the KVM virtualisation support CONFIGKVM, with nested virtualisation nVMX feature enabled...

MGASA-2017-0372 Updated openvpn packages fix security vulnerability

The bounds check in readkey was performed after using the value, instead of before. If 'key-method 1' is used, this allowed an attacker to send a malformed packet to trigger a stack buffer overflow. Note that 'key-method 1' has been replaced by 'key method 2' as the default in OpenVPN 2.0...

Updated openvpn packages fix security vulnerability

The bounds check in readkey was performed after using the value, instead of before. If 'key-method 1' is used, this allowed an attacker to send a malformed packet to trigger a stack buffer overflow. Note that 'key-method 1' has been replaced by 'key method 2' as the default in OpenVPN 2.0...

EulerOS 2.0 SP1 : dnsmasq (EulerOS-SA-2017-1239)

According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to...

EulerOS 2.0 SP2 : dnsmasq (EulerOS-SA-2017-1240)

According to the versions of the dnsmasq packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to...

CVE-2017-12188

The Linux kernel built with the KVM visualization support CONFIGKVM, with nested visualizationnVMX feature enabled nested=1, was vulnerable to a stack buffer overflow issue. The vulnerability could occur while traversing guest page table entries to resolve guest virtual addressgva. An L1 guest...

HPE Intelligent Management Center dbman Stack Buffer Overflow (CVE-2017-8956)

A stack-based buffer overflow exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to lack of proper validation of the length of user-supplied data prior to copying it to a fixedlength stack-based buffer. A remote, unauthenticated attacker can exploit this...

GE CIMPLICITY Stack Buffer Overflow Vulnerability

GE CIMPLICITY is an HMI software. GE CIMPLICITY suffers from a stack buffer overflow vulnerability that could be exploited by a remote attacker to submit a special request to crash the application or execute arbitrary code...