EulerOS 2.0 SP1 : poppler (EulerOS-SA-2017-1229)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications tha...

EulerOS 2.0 SP2 : libtasn1 (EulerOS-SA-2017-1172)

According to the versions of the libtasn1 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encode...

EulerOS 2.0 SP1 : libtasn1 (EulerOS-SA-2017-1171)

According to the versions of the libtasn1 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encode...

CVE-2017-13740

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars in compileTranslationTable.c, that will lead to denial of service or possibly unspecified other impact...

Debian DSA-3965-1 : file - security update

Thomas Jarosch discovered a stack-based buffer overflow flaw in file, a file type classification tool, which may result in denial of service if an ELF binary with a specially crafted .notes section is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 3965-1] file security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3965-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 05, 2017 https://www.debian.org/security/faq -...

Ubuntu 14.04 LTS : FontForge vulnerabilities (USN-3409-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3409-1 advisory. It was discovered that FontForge was vulnerable to a heap-based buffer over-read. A remote attacker could use a crafted file to DoS or execute arbitrary...

Ubuntu 14.04 LTS / 16.04 LTS : Liblouis vulnerabilities (USN-3408-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3408-1 advisory. It was discovered that an illegal address access can be made in Liblouis. A remote attacker can take advantange of this to access sensitive...

Debian: Security Advisory (DSA-3965-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

poppler security update

CentOS Errata and Security Advisory CESA-2017:2551 An update for poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CVE-2017-14041

A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

CVE-2017-14041

A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

CVE-2017-14041

A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted response query string passed to the "name" variable...

CVE-2017-12865

The CVE-2017-12865 entry describes a stack-based buffer overflow in ConnMan's dnsproxy.c (affecting ConnMan 1.34 and earlier). A crafted DNS response can crash the service or allow remote code execution, via the name variable. Public disclosures across multiple sources (GNUs/Gentoo GLSA, Debian D...

CVE-2017-13742

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function includeFile in compileTranslationTable.c, that will lead to a remote denial of service attack...

CVE-2017-13742

Liblouis 3.2.0 is affected by a stack-based buffer overflow in compileTranslationTable.c:includeFile(), leading to remote denial of service. This CVE (CVE-2017-13742) is mentioned across Nessus/OpenVAS feeds tied to Liblouis translations table processing. The connected documents confirm the impac...

CVE-2017-13740

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars in compileTranslationTable.c, that will lead to denial of service or possibly unspecified other impact...

CVE-2015-0114

CVE-2015-0114 is a stack-based buffer overflow vulnerability affecting IBM V5R4 and IBM i Access for Windows 6.1 and 7.1. The root cause is a failure to perform proper bounds checking on user input, allowing a local attacker to exploit the overflow and execute arbitrary code within the affected a...

Lexmark LibISYSpdf Image Rendering DCTStream::getBlock() Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the image rendering functionality of Lexmark Perceptive Document Filters 11.3.0.2400. A specifically crafted PDF can cause a function call on a corrupted DCTStream to occur, resulting in user controlled data being written to the stack....