Security update for memcached (moderate)

openSUSE Security Update: Security update for memcached Announcement ID: openSUSE-SU-2020:0721-1 Rating: moderate References: 1133817 1149110 Cross-References: CVE-2019-11596 CVE-2019-15026 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...

Arbitrary Code Execution

wavpack is vulnerable to arbitrary code execution. A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c allows a remote attacker to execute arbitrary code on the system via a malicious RF64 file...

Huawei EulerOS: Security Advisory for libgxps (EulerOS-SA-2020-1401)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : memcached (SUSE-SU-2020:0843-1)

This update for memcached fixes the following issues : Security issue fixed : CVE-2019-11596: Fixed a NULL pointer dereference in processlrucommand bsc1133817. CVE-2019-15026: Fixed a stack-based buffer over-read bsc1149110. Note that Tenable Network Security has extracted the preceding descripti...

CVE-2019-8904

dobidnote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintf and filevprintf...

Huawei EulerOS: Security Advisory for tcpdump (EulerOS-SA-2019-2233)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL CORE 5.05 / MAIN 5.05 : tcpdump Vulnerability (NS-SA-2020-0008)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has tcpdump packages installed that are affected by a vulnerability: - In tcpdump 4.9.2, a stack-based buffer over-read exists in the printprefix function of print-hncp.c via crafted packet data because of missing initializatio...

CVE-2019-20020

A stack-based buffer over-read was discovered in ReadNextStructField in mat5.c in matio 1.5.17...

CVE-2019-20017

A stack-based buffer over-read was discovered in MatVarReadNextInfo5 in mat5.c in matio 1.5.17...

Stack overflow

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlmbuildtype2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read...

CentOS Update for tcpdump CESA-2019:3976 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2019:3034-1 Security update for aspell

This update for aspell fixes the following issues: - CVE-2019-17544: Fixed a stack-based buffer over-read in acommon:unescape in common/getdata.cpp via an isolated backslash bsc1153892...

MGASA-2019-0311 Updated aspell packages fix security vulnerability

Updated aspell packages fix security vulnerability: libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character CVE-2019-17544...

[SECURITY] [DLA 1966-1] aspell security update

Package : aspell Version : 0.60.720110707-1.3+deb8u1 CVE ID : CVE-2019-17544 It was discovered that Aspell, the GNU spell checker, incorrectly handled certain inputs which leads to a stack-based buffer over-read. An attacker could potentially access sensitive information. For Debian 8 "Jessie",...

CVE-2019-17544

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character...

CVE-2019-17455

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...

CVE-2019-17455

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...

Debian: Security Advisory (DLA-1939-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated tcpflow packages fix security vulnerability

Updated tcpflow package fixes security vulnerability: A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call CVE-2018-18409...

Debian DLA-1913-1 : memcached security update

It was discovered that there was a stack-based buffer over-read in memcached, the in-memory object caching system. For Debian 8 'Jessie', this issue has been fixed in memcached version 1.4.21-1.1+deb8u3. We recommend that you upgrade your memcached packages. NOTE: Tenable Network Security has...