3037 matches found
CVE-2016-5752
The SAML2 implementation in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 was handling unsigned SAML requests incorrectly, leaking results to a potentially malicious "Assertion Consumer Service URL" instead of the original requester...
rpm-ostree-client: fails to check gpg package signatures when layering
It was discovered that rpm-ostree and rpm-ostree-client fail to properly check GPG signatures on packages when doing layering. Packages with unsigned or badly signed content could fail to be rejected as expected. This issue is partially mitigated on RHEL Atomic Host, where certificate pinning is...
libtsm: Bad-cast to const std::__1::__less<unsigned long, unsigned long> *_start
Project: git://people.freedesktop.org/dvdhrm/libtsm Detailed report: https://oss-fuzz.com/testcase?key=4858886169296896 Project: libtsm Fuzzer: libFuzzerlibtsmfuzzer Fuzz target binary: libtsmfuzzer Job Type: libfuzzerubsanlibtsm Platform Id: linux Crash Type: Bad-cast Crash Address: 0x7ffe13981c...
How to Create Custom Android KeyStore for MDX App Wrapping
This article will guide the Citrix Endpoint Management admin in creating a custom keystore which will be used to sign the unsigned android apps using MDX toolkit and/or using MDX as a service...
Fedora 25 : gd (2017-bab5698540)
Version 2.2.4 - 2017-01-18 Security - gdImageCreate doesn't check for oversized images and as such is prone to DoS vulnerabilities. CVE-2016-9317 - double-free in gdImageWebPtr CVE-2016-6912 - potential unsigned underflow in gdinterpolation.c - DOS vulnerability in gdImageCreateFromGd2Ctx Fixed -...
Debian: Security Advisory (DSA-3746-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
unsorted bin attack analysis-vulnerability warning-the black bar safety net
One, Foreword This is before that article overflow using the FILE structure of the follow-up article, mentioned earlier is for the Shanghai network security contest pwn450 of technology to write articles, a total of two techniques, one is the overflow using the FILE structure of the body, one is...
Android GPS Component Denial of Service Vulnerability (CNVD-2016-12023)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, with GPS as one of the global positioning components. A denial-of-service vulnerability exists in the GPS component in versions of Android prior to 2016-12-05, which stems from th...
glob parser write/read out of bounds
The curl tool's "globbing" feature allows a user to specify a numerical range through which curl iterates. It is typically specified as 1-5, specifying the first and the last numbers in the range. Or with a-z, using letters. 1. The curl code for parsing the second unsigned number did not check fo...
CURL-CVE-2016-8620 glob parser write/read out of bounds
The curl tool's "globbing" feature allows a user to specify a numerical range through which curl iterates. It is typically specified as 1-5, specifying the first and the last numbers in the range. Or with a-z, using letters. 1. The curl code for parsing the second unsigned number did not check fo...
Debian DLA-651-1 : graphicsmagick security update
Various security issues were found and fixed in graphicsmagick in Debian wheezy LTS. CVE-2016-7446 Heap buffer overflow issue in MVG/SVG rendering. CVE-2016-7447 Heap overflow of the EscapeParenthesis function CVE-2016-7449 TIFF related problems due to use of strlcpy use. CVE-2016-7800 Fix unsign...
[SECURITY] [DLA 651-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.16-1.1+deb7u4 CVE ID : CVE-2016-7446 CVE-2016-7447 CVE-2016-7449 CVE-2016-7800 Debian Bug : Various security issues were found and fixed in graphicsmagick in Debian wheezy LTS. CVE-2016-7446 Heap buffer overflow issue in MVG/SVG rendering. CVE-2016-7447 Heap...
DLA-651-1 graphicsmagick - security update
Bulletin has no description...
MGASA-2016-0337 The updated packages fix a security vulnerability
Unsigned underflow leading to heap overflow when parsing 8BIM chunk CVE-2016-7800. Two issues in the WPG reader CVE-2016-7996, CVE-2016-7997...
PHP Denial of Service Vulnerability (CNVD-2016-07712)
PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...
ALPINE-CVE-2016-7412
ext/mysqlnd/mysqlndwireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNEDFLAG flag, which allows remote MySQL servers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted field metadata...
UBUNTU-CVE-2016-7412
ext/mysqlnd/mysqlndwireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNEDFLAG flag, which allows remote MySQL servers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted field metadata...
Sony Playstation 4 (PS4) 3.15 3.55 - WebKit Code Execution (PoC)
Sony Playstation 4 PS4 3.15 3.55 - WebKit Code Execution PoC PS4 3.55 Unsigned Code Execution ============== This GitHub Repository contains all the necessary tools for getting PoC Unsigned Code Execution on a Sony PS4 System with firmwares 3.15, 3.50 and 3.55. This Exploit, is based-off Henkaku'...
Sony Playstation 4 (PS4) 3.15 < 3.55 - WebKit Code Execution (PoC)
PS4 3.55 Unsigned Code Execution ============== This GitHub Repository contains all the necessary tools for getting PoC Unsigned Code Execution on a Sony PS4 System with firmwares 3.15, 3.50 and 3.55. This Exploit, is based-off Henkaku's WebKit Vulnerability for the Sony's PSVita. It includes bas...
Wireshark Multiple Denial of Service Vulnerabilities-04 (Aug 2016) - Mac OS X
Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...