json: Heap-buffer-overflow in std::__1::char_traits<char>::copy

Project: https://github.com/nlohmann/json.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5472665292767232 Project: json Fuzzer: libFuzzerjsonfuzzer-parsecbor Fuzz target binary: fuzzer-parsecbor Job Type: libfuzzerasanjson Platform Id: linux Crash Type:...

libarchive: Heap-buffer-overflow in lzx_decode_blocks

Project: https://github.com/libarchive/libarchive.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5879290751090688 Project: libarchive Fuzzer: libFuzzerlibarchivefuzzer Fuzz target binary: libarchivefuzzer Job Type: libfuzzerasanlibarchive Platform Id: linux Crash Type:...

CVE-2016-3715

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image...

php54 security and bug fix update

php54 2.0-1 - fix incorrect selinux contexts 1194332 php54-php 5.4.40-1 - rebase to PHP 5.4.40 for various security fix 1209887 5.4.37-1 - rebase to PHP 5.4.37 5.4.36-1 - rebase to PHP 5.4.36 1168193 - fix package name in description - php-fpm own session dir php54-php-pecl-zendopcache 7.0.4-3 -...

Debian DLA-137-1 : libevent security update

The libevent library was vulnerable to a potential heap overflow in the buffer/bufferevent APIs. This update was prepared by Nguyen Cong who used the upstream-provided patch. Thanks to them! NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA securit...

Oracle Linux 7 : GNOME / Shell (ELSA-2015-0535)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-0535 advisory. clutter 1.14.4-12 - Include upstream patch to prevent a crash when hitting hardware limits Resolves: rhbz1115162 1.14.4-11 - Fix a typo in the Requires 1.14.4-1...

GNOME Shell security, bug fix, and enhancement update

clutter 1.14.4-12 - Include upstream patch to prevent a crash when hitting hardware limits Resolves: rhbz1115162 1.14.4-11 - Fix a typo in the Requires 1.14.4-10 - Add patch for quadbuffer stereo suppport Resolves: rhbz1108891 cogl 1.14.1-6 - Add patches for quadbuffer stereo suppport Resolves:...

openSUSE Security Update : bash (openSUSE-SU-2014:1310-1) (Shellshock)

Replace patches bash-4.2-heredoc-eof-delim.patch and bash-4.2-parse-exportfunc.patch with the official upstream patch levels bash42-052 and bash42-053 - Replace patch bash-4.2-CVE-2014-7187.patch with upstream patch level bash42-051 - Add patches bash-4.2-heredoc-eof-delim.patch for bsc898812,...

openSUSE Security Update : strongswan (openSUSE-SU-2013:0775-1)

Applied upstream patch for security vulnerability discovered by Kevin Wojtysiak in ECDSA signature verification of the strongswan openssl plugin bnc815236, CVE-2013-2944 0003-Check-return-value-of-ECDSAVerify-correctly.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : puppet regression (USN-2077-2)

USN-2077-1 fixed a vulnerability in Puppet. The upstream patch introduced a regression resulting in the default file mode being incorrect. This update fixes the problem. We apologize for the inconvenience. It was discovered that Puppet incorrectly handled temporary files. A local attacker could...

Oracle Linux 6 : krb5 (ELSA-2013-0656)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0656 advisory. - incorporate upstream patch to fix a NULL pointer dereference when the client supplies an otherwise-normal-looking PKINIT request CVE-2013-1415, 91790...

gnutls security update

2.8.5-10.2 - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch 966754...

Mandriva Linux Security Advisory : dnsmasq (MDVSA-2013:072)

Updated dnsmasq packages fix security vulnerabilities : When dnsmasq before 2.63 is used in conjunctions with certain configurations of libvirtd, network packets from prohibited networks e.g. packets that should not be passed in may be sent to the dnsmasq application and processed. This can resul...

Scientific Linux Security Update : squid on SL6.x i386/x86_64 (20130221)

A denial of service flaw was found in the way the Squid Cache Manager processed certain requests. A remote attacker who is able to access the Cache Manager CGI could use this flaw to cause Squid to consume an excessive amount of memory. CVE-2012-5643 This update also fixes the following bugs : -...

XEN: security and bugfix update (important)

This security update of XEN fixes various bugs and security issues. - Upstream patch 26088-xend-xml-filesize-check.patch - bnc787163 - CVE-2012-4544: xen: Domain builder Out-of- memory due to malicious kernel/ramdisk XSA 25 CVE-2012-4544-xsa25.patch - bnc779212 - CVE-2012-4411: XEN / qemu: guest...

Scientific Linux Security Update : util-linux on SL5.x i386/x86_64 (20120221)

The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, util-linux contains the fdisk configuration tool and the login program. Multiple flaws were found in the way the mount and umount commands performed mtab...

Moderate: Red Hat Bug Fix Advisory: Red Hat Enterprise MRG Realtime 2.1 kernel bug fix update

Updated kernel-rt packages that fix several bugs are now available for Red Hat Enterprise MRG 2.1. The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update provides a build of the kernel-rt package for MRG 2.1, which is layered on Red Hat Enterprise Lin...

Low: Red Hat Security Advisory: xorg-x11-server security and bug fix update

Updated xorg-x11-server packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Fedora 15 : qt-4.7.4-10.fc15 (2011-17565)

This build addresses a security issue : - CVE-2011-3922 qt: Stack-based buffer overflow in embedded harfbuzz code as well as includes an upstream patch to address : - 'closed windows stay in the taskbar sometimes, taskbar doesn't react on clicks', http://bugs.kde.org/275469 Note that Tenable...

CVE-2011-3602

Directory traversal vulnerability in device-linux.c in the router advertisement daemon radvd before 1.8.2 allows local users to overwrite arbitrary files, and remote attackers to overwrite certain files, via a .. dot dot in an interface name. NOTE: this can be leveraged with a symlink to overwrit...