SUSE-SU-2026:21572-1 Security update for iproute2

This update for iproute2 fixes the following issues: Security issues fixed: - CVE-2024-58251: terminal lock up via ANSI terminal escape sequence set in argv0 bsc1254324. Other updates and bugfixes: - Fix package for immutable mode jscPED-14787. - Add netshaper support bsc1253044. - Add follow-up...

EulerOS 2.0 SP3 : gstreamer-plugins-bad-free (EulerOS-SA-2022-1727)

According to the versions of the gstreamer-plugins-bad-free package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an...

CVE-2021-3185

A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution...

Security update for minidlna (moderate)

openSUSE Security Update: Security update for minidlna Announcement ID: openSUSE-SU-2020:2226-1 Rating: moderate References: 1179447 Cross-References: CVE-2020-12695 CVE-2020-28926 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...

Security update for minidlna (moderate)

openSUSE Security Update: Security update for minidlna Announcement ID: openSUSE-SU-2020:2204-1 Rating: moderate References: 1179447 Cross-References: CVE-2020-12695 CVE-2020-28926 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes two vulnerabilities is now available...

OPENSUSE-SU-2020:2194-1 Security update for minidlna

This update for minidlna fixes the following issues: minidlna was updated to version 1.3.0 boo1179447 - Fixed some build warnings when building with musl. - Use $USER instead of $LOGNAME for the default friendly name. - Fixed build with GCC 10 - Fixed some warnings from newer compilers - Disallow...

Security update for minidlna (moderate)

openSUSE Security Update: Security update for minidlna Announcement ID: openSUSE-SU-2020:2194-1 Rating: moderate References: 1179447 Cross-References: CVE-2020-12695 CVE-2020-28926 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This...

Security update for minidlna (moderate)

openSUSE Security Update: Security update for minidlna Announcement ID: openSUSE-SU-2020:2160-1 Rating: moderate References: 1179447 Cross-References: CVE-2020-12695 CVE-2020-28926 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description: This...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1182)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sony PlayStation Vita (PS Vita) - Trinity: PSP Emulator Escape

Trinity is a fully chained exploit for the PS Vita™ consisting of six unique vulnerabilities. It is based on a decade of knowledge and research. The source code of Trinity can be found here. Table of Contents - Table of Contents - Introduction - MIPS Kernel Exploit Type Confusion Double-fetch Rac...

FreeBSD : dovecot -- Buffer overflow reading extension header (7862213c-5152-11e9-8b26-a4badb296695)

Aki Tuomi reports : Vulnerability Details : When reading FTS or POP3-UIDL header from dovecot index, the input buffer size is not bound, and data is copied to target structure causing stack overflow. Risk : This can be used for local root privilege escalation or executing arbitrary code in doveco...

QEMU - NBD Server Long Export Name Stack Buffer Overflow

Exploit for linux platform in category dos / poc Introduced in commit f37708f6b8 2.10. The NBD spec says a client can request export names up to 4096 bytes in length, even though they should not expect success on names longer than 256. However, qemu hard-codes the limit of 256, and fails to filte...

QEMU - NBD Server Long Export Name Stack Buffer Overflow

Introduced in commit f37708f6b8 2.10. The NBD spec says a client can request export names up to 4096 bytes in length, even though they should not expect success on names longer than 256. However, qemu hard-codes the limit of 256, and fails to filter out a client that probes for a longer name; the...

Internet Bug Bounty: CVE-2017-13089 wget stack smash

The http.c:skipshortbody function is called in some circumstances, such as when processing redirects. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol to read each chunk's length, but doesn't check that the chunk length is a non-negative number. The code then...

Putty 0.60 Crash PoC

No description provided by source. print \n print ---------------------------------------------------------------- print | putty 0.60 Null Ptr | print | Level Smash the Stack | print ---------------------------------------------------------------- print \n import sys, socket, binascii HOST =...

IBM Informix Client SDK 3.0 - .nfx File Integer Overflow

IBM Informix Client SDK 3.0 - .nfx File Integer Overflow ?php / IBM Informix Client SDK 3.0 SetNet32 File .nfx Hostsize integer overflow exploit 2k3 sp0 by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ vulnerable packages: IBM Informix Client SDK 3.0, IBM Informix Connect...

IBM Informix Client SDK 3.0 nfx file integer overflow exploit

No description provided by source. ?php / IBM Informix Client SDK 3.0 SetNet32 File .nfx Hostsize integer overflow exploit 2k3 sp0 by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ vulnerable packages: IBM Informix Client SDK 3.0, IBM Informix Connect Runtime 3.x, possibly...

ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerability

ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-041 July 10, 2008 -- Affected Vendors: Novell -- Affected Products: Novell eDirectory -- TippingPointTM IPS Customer Protection: TippingPoint IPS customers have bee...

Novell eDirectory dhost Integer Overflow Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, bound by default to TCP port 524. Flawed arithmetic applied to a...

local exploit for linux's Koules1.4 package

/ Coolz.cpp - yep a C Plus Plus exploit, I like that Strings STL : This problem has been known since April this year, but I have not seen any exploit so far. First of all I wasn't planning to go and release another ordinary stack smash, but I found the setuid game on some wargame/hackme I played...