Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds. A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infini...

CVE-2017-1000376

libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was previously stated that this affects libffi version 3.2.1 but this appears to be incorrect. libffi...

PT-2017-19106 · Gnu +1 · Gnuplot +1

Name of the Vulnerable Software and Affected Versions: gnuplot version 5.2.rc1 Description: The issue is related to an uninitialized stack variable vulnerability in the load tic series function in set.c. This vulnerability can be exploited when a victim opens a specially crafted file, potentially...

MGASA-2016-0415 Updated kernel packages fixes security vulnerabilities

This update is based on upstream 4.4.36 and fixes at least the following security issues: The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted application that makes sendto system calls, related...

CVE-2016-8645

The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted application that makes sendto system calls, related to net/ipv4/tcpipv4.c and net/ipv6/tcpipv6.c...

SUSE-SU-2016:2638-1 Security update for Linux Kernel Live Patch 4 for SLE 12 SP1

This update for the Linux Kernel 3.12.57-6035 fixes several issues. The following security bugs were fixed: - CVE-2016-5195: A local privilege escalation using MAPPRIVATE was fixed, which is reportedly exploited in the wild bsc1004419. - CVE-2016-8666: The IP stack in the Linux kernel allowed...

SUSE-SU-2016:1581-1 Security update for php53

This update for php53 fixes the following issues: - CVE-2016-5093: A geticuvalueinternal out-of-bounds read could crash the php interpreter bsc982010 - CVE-2016-5094,CVE-2016-5095: Don't allow creating strings with lengths outside int range, avoids overflows bsc982011,bsc982012 - CVE-2016-5096: A...

[SECURITY] [DLA 482-1] libgd2 security update

Package : libgd2 Version : 2.0.36rc1dfsg-6.1+deb7u3 CVE ID : CVE-2015-8874 Debian Bug : 824627 It was discovered that there was a stack consumption vulnerability in the libgd2 graphics library which allowed remote attackers to cause a denial of service via a crafted imagefilltoborder call. For...

CVE-2015-8215

net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers to cause a denial of service packet loss via a value that is 1 smaller than the minimum compliant value or 2 larger than the MTU of a...

UBUNTU-CVE-2015-2779

Stack consumption vulnerability in the message splitting functionality in Quassel before 0.12-rc1 allows remote attackers to cause a denial of service uncontrolled recursion via a crafted massage...

CVE-2014-7250

The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service resource consumption via crafted packets...

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds. Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service application crash via vectors involving nested...

Mandrake Linux Security Advisory : gzip (MDKSA-2006:167)

NULL Dereference CVE-2006-4334 A stack modification vulnerability where a stack buffer can be modified out of bounds, but not in the traditional stack overrun sense exists in the LZH decompression support of gzip. CVE-2006-4335 A .bss buffer underflow exists in gzip's pack support, where a loop...

Golden FTP Server Pro 2.52 - Remote Buffer Overflow (2)

/ Golden FTP Server Pro remote stack BOF exploit author : c0d3r "kaveh razavi" [email protected] [email protected] risk : highly critical vender status : no patch released , all targets are vuln package : golden-ftp-server-pro 2.5.0.0 and prior advisory : http://secunia.com/advisories/15156/...

MS03-024: SMB Request Handler Buffer Overflow (817606)

The remote host is affected by a vulnerability in its SMB stack that could allow an authenticated attacker to corrupt the memory of this host. This may result in execution of arbitrary code on this host, or an attacker may disable this host remotely. C Tenable Network Security, Inc...

Cisco CBOS 2.x - Broadband Operating System TCP/IP Stack Denial of Service

source: https://www.securityfocus.com/bid/4815/info Cisco Broadband Operating System CBOS is the operating system used on Cisco 600 series routers. When the CBOS TCP/IP stack is forced to process a high number of unusually large packets, it will consume all memory. This will cause the router to...

Microsoft Windows 98 - ARP Denial of Service

source: https://www.securityfocus.com/bid/3113/info A potential denial of service vulnerability exists in some versions of the Microsoft Windows network stack. The problem occurs when a large number of extraneous ARP packets sent to a host running Windows. This can cause the system to use all...

Microsoft Windows NT 4.02000 - TCP Stack Denial of Service (1)

Microsoft Windows NT 4.02000 - TCP Stack Denial of Service 1 // source: https://www.securityfocus.com/bid/3967/info An issue exists in Windows which could cause the TCP stack to consume all available system memory. This is achieved if a user sends numerous empty TCP packets to a host on port 139...

HERT advisory: FreeBSD IP Spoofing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - --------------------------------------------------------------- HERT - Hacker Emergency Response Team [email protected] - http://hert.org Advisory: 00003 Title: FreeBSD IP Spoofing Date: 1st October 2000 Summary: IP Spoofing Sequence number predictio...

Security Advisory: FreeBSD-SA-00:23.ip-options

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:23 Security Advisory FreeBSD, Inc. Topic: Remote denial-of-service in IP stack Category: core Module: kernel Announced: 2000-06-19 Affects: FreeBSD systems prior to the...