101 matches found
SUSE-SU-2022:4259-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2022-3597: Fixed out-of-bounds write in TIFFmemcpy in libtiff/tifunix.c bnc1204641. - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c bnc1204643. - CVE-2022-3626: Fixed out-of-bounds write in TIFFmemset in...
SUSE-SU-2022:4248-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2022-3597: Fixed out-of-bounds write in TIFFmemcpy in libtiff/tifunix.c bnc1204641. - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c bnc1204643. - CVE-2022-3626: Fixed out-of-bounds write in TIFFmemset in...
NewStart CGSL MAIN 6.02 : binutils Multiple Vulnerabilities (NS-SA-2022-0087)
The remote NewStart CGSL host, running version MAIN 6.02, has binutils packages installed that are affected by multiple vulnerabilities: - An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control...
Fix of CVE: CVE-2018-18605, CVE-2019-12972, CVE-2016-4490, CVE-2018-6543, CVE-2018-19931, CVE-2018-10535, CVE-2019-17450, CVE-2018-7643, CVE-2016-4487, CVE-2016-4492, CVE-2018-20002, CVE-2018-1000876, CVE-2019-9073, CVE-2019-9075, CVE-2018-20671, CVE-2016-4488, CVE-2018-7568, CVE-2018-7642, CVE-2018-10373, CVE-2018-6323, CVE-2016-2226, CVE-2016-4493, CVE-2018-19932, CVE-2018-6759, CVE-2019-9077, CVE-2018-18607, CVE-2018-8945, CVE-2018-7208, CVE-2016-6131, CVE-2018-13033, CVE-2018-20623, CVE-2019-14444, CVE-2018-18309, CVE-2018-18606, CVE-2018-7569, CVE-2016-4489
CVE-2018-6323: Fix unsigned integer overflow - CVE-2018-19931: Fix heap-based buffer overflow in bfdelf32swapphdrin - CVE-2018-6543: Fix integer overflow - CVE-2018-20671: Fix integer overflow vulnerability - CVE-2018-6759: Fix segmentation fault - CVE-2018-7208: Fix segmentation fault -...
SUSE: Security Advisory (SUSE-SU-2018:4127-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-6323
The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...
EulerOS 2.0 SP5 : binutils (EulerOS-SA-2019-1799)
According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a 'member access within null pointer'...
SUSE-SU-2018:4208-1 Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP3)
This update for the Linux Kernel 4.4.103-638 fixes one issue. The following security issue was fixed: - CVE-2018-5848: Fixed an unsigned integer overflow in wmisetie. This could lead to a buffer overflow bsc1097356...
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:4157-1)
This update for the Linux Kernel 3.12.74-606493 fixes several issues. The following security issues were fixed : CVE-2018-9568: Prevent possible memory corruption due to type confusion in skclonelock. This could lead to local privilege escalation bsc1118319. CVE-2018-5848: Fixed an unsigned integ...
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:4153-1)
This update for the Linux Kernel 3.12.74-606488 fixes several issues. The following security issues were fixed : CVE-2018-9568: Prevent possible memory corruption due to type confusion in skclonelock. This could lead to local privilege escalation bsc1118319. CVE-2018-5848: Fixed an unsigned integ...
SUSE-SU-2018:4127-1 Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2)
This update for the Linux Kernel 4.4.114-9264 fixes one issue. The following security issue was fixed: - CVE-2018-5848: Fixed an unsigned integer overflow in wmisetie. This could lead to a buffer overflow bsc1097356...
kernel: buffer overflow in drivers/net/wireless/ath/wil6210/wmi.c:wmi_set_ie() may lead to memory corruption
In the function wmisetie in the Linux kernel the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the ‘ielen’ argument can cause a buffer overflow and thus a memory corruption leading to a system crash or other or unspecified impact. Due to...
openSUSE Security Update : the Linux Kernel (openSUSE-2018-762) (Spectre)
The openSUSE Leap 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-13406: An integer overflow in the uvesafbsetcmap function could have result in local attackers being able to crash the kernel or potentially elevate privileges...
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1761-1)
The SUSE Linux Enterprise 12 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-3665: Prevent disclosure of FPU registers including XMM and AVX registers between processes. These registers might contain encryption keys when...
CVE-2018-5848
In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause a buffer overflow in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...
CVE-2018-5848
In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause a buffer overflow in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...
CVE-2018-6323
The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...
CVE-2018-6323
The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...
CVE-2018-6323
CVE-2018-6323 : In GNU Binutils’ libbfd, the elf_object_p function in elfcode.h contains an unsigned integer overflow due to missing use of bfd_size_type in multiplication. A crafted ELF file can remotely crash the application (DoS) or have unspecified other impact. This CVE is referenced in IBM ...
CVE-2016-5844
Undefined behavior signed integer overflow was discovered in libarchive, in the ISO parser. A crafted file could potentially cause denial of service...