3 matches found
Mandrake Linux Security Advisory : kernel (MDKSA-2002:041)
A problem was discovered in the CIPE VPN tunnel implementation in the Linux kernel where a malformed packet could cause a crash. Andrew Griffiths discovered a vulnerability that allows remote machines to read random memory by utilizing a bug in the ICMP implementation of Linux kernels. This only...
FreeBSD-SA-02:18.zlib
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:18 Security Advisory FreeBSD, Inc. Topic: zlib double-free Category: core, ports Module: zlib Announced: 2002-03-18 Revised: 2002-04-22 Credits: Matthias Clasen Owen...
zlib: Double free in inflateEnd
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once a "double free", which may allow local and remote attackers to execute arbitrary code via a block of malformed compression data...