59 matches found
[SECURITY] Fedora 17 Update: tcl-snack-2.2.10-17.fc17
The Snack Sound Toolkit is designed to be used with a scripting language su ch as Tcl/Tk or Python. Using Snack you can create powerful multi-platform aud io applications with just a few lines of code. Snack has commands for basic so und handling, such as playback, recording, file and socket I/O...
[SECURITY] Fedora 18 Update: tcl-snack-2.2.10-17.fc18
The Snack Sound Toolkit is designed to be used with a scripting language su ch as Tcl/Tk or Python. Using Snack you can create powerful multi-platform aud io applications with just a few lines of code. Snack has commands for basic so und handling, such as playback, recording, file and socket I/O...
[SECURITY] Fedora 17 Update: insight-7.4.50-4.20120403cvs.fc17
Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for GDB version 6.x...
[SECURITY] Fedora 16 Update: insight-7.4.50-4.20120403cvs.fc16
Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for GDB version 6.x...
[SECURITY] Fedora 18 Update: insight-7.4.50-4.20120403cvs.fc18
Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for GDB version 6.x...
RedHat Update for tcltk RHSA-2008:0134-01
Check for the Version of tcltk OpenVAS Vulnerability Test RedHat Update for tcltk RHSA-2008:0134-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
TCL/TK Tk工具包ReadImage()函数GIF文件解析栈溢出漏洞
BUGTRAQ ID: 27655 CVECAN ID: CVE-2008-0553 Tcl是一种简明,高效,可移植的编程语言。 在Tcl的Tk工具包中,tkImgGIF.c文件的ReadImage函数没有正确地验证从GIF图形中所读取的initialCodeSize值。如果用户受骗打开了恶意的GIF图形文件的话,就可能触发栈溢出,导致执行任意指令。 John Ousterhout Tcl 8.5.1 厂商补丁: Debian ------ Debian已经为此发布了一个安全公告(DSA-1491-1)以及相应补丁: DSA-1491-1:New tk8.4 packages fix...
CVE-2008-0553
Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk Tcl/Tk before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...
CVE-2008-0553
The CVE-2008-0553 issue is a stack-based buffer overflow in Tk’s GIF image handling (ReadImage in tkImgGIF.c) in Tcl/Tk prior to 8.5.1, which could allow remote code execution via a crafted GIF. Impact is partial confidentiality/integrity/availability; exploitation could be remote over the networ...
Fedora 7 : tk-8.4.13-6.fc7 (2007-2564)
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl Tcl/Tk before 8.4.16 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. Note that Tenable Network Security has extracted the preceding...
FreeBSD : tcl/tk -- buffer overflow in ReadImage function (a058d6fa-7325-11dc-ae10-0016179b2dd5)
A Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl/Tk, allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...
CVE-2007-5137
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl Tcl/Tk 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for...
CVE-2007-5137
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl Tcl/Tk 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for...
CVE-2007-5137
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl Tcl/Tk 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for...
tcl/tk -- buffer overflow in ReadImage function
A Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl/Tk, allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first...
Buffer overflow
Buffer overflow in tcl/win/tclWinReg.c in Tcl Tcl/Tk before 8.5a6 allows local users to gain privileges via long registry key paths...
PT-2007-4179 · Tcl +1 · Tcltk +1
Name of the Vulnerable Software and Affected Versions: Tcl/Tk versions prior to 8.5a6 Description: A buffer overflow issue exists, allowing local users to gain privileges through long registry key paths. Recommendations: For versions prior to 8.5a6, update to version 8.5a6 or later to resolve the...
Mandrake Linux Security Advisory : tcltk (MDKSA-2002:060)
Some problems were discovered with the Tcl/Tk development environment. The expect application would search for its libraries in /var/tmp prior to searching in other directories, which could allow a local user to gain root privilege by writing a trojan library and waiting for the root user to run...
CVE-2001-1375
CVE-2001-1375 affects tcl/tk (tcltk) 8.3.1, where libraries may be searched in the current working directory before others. This could allow a local user to execute arbitrary code by placing a Trojan library in a user-controlled directory. The Mandrake advisory notes a related issue and indicates...