Lucene search
K
AmazonRecent

8850 matches found

Amazon
Amazon
added 2013/02/03 12:0 a.m.45 views

Important: java-1.7.0-openjdk

Issue Overview: Two improper permission check issues were discovered in the reflection API in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. Affected Packages: java-1.7.0-openjdk Issue Correction: Run yum update java-1.7.0-openjdk or yu...

10CVSS9.9AI score0.04577EPSS
Exploits1References1
Amazon
Amazon
added 2013/02/03 12:0 a.m.43 views

Medium: mysql51

Issue Overview: This update fixes several vulnerabilities in the MySQL database server. Affected Packages: mysql51 Issue Correction: Run yum update mysql51 or yum update --advisory ALAS-2013-152 to update your system. New Packages: i686: mysql51-5.1.67-1.60.amzn1.i686 ...

4CVSS5.7AI score0.02628EPSS
Exploits1References1
Amazon
Amazon
added 2013/01/14 12:0 a.m.46 views

Medium: kernel, nvidia

Issue Overview: A malicious Network File System version 4 NFSv4 server could return a crafted reply to a GETACL request, causing a denial of service on the client. CVE-2012-2375, Moderate A divide-by-zero flaw was found in the TCP Illinois congestion control algorithm implementation in the Linux...

7.1CVSS6.8AI score0.03614EPSS
Exploits8References1
Amazon
Amazon
added 2012/12/20 12:0 a.m.41 views

Medium: libtiff

Issue Overview: A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially-crafted TIFF file that, when opened, could cause an application using libtiff to crash or, possibly, execute...

6.8CVSS9.6AI score0.13521EPSS
Exploits1References1
Amazon
Amazon
added 2012/12/07 12:0 a.m.47 views

Important: bind

Issue Overview: A flaw was found in the DNS64 implementation in BIND. If a remote attacker sent a specially-crafted query to a named server, named could exit unexpectedly with an assertion failure. Note that DNS64 support is not enabled by default. CVE-2012-5688 Affected Packages: bind Issue...

7.8CVSS7.5AI score0.10896EPSS
Exploits1References1
Amazon
Amazon
added 2012/12/06 12:0 a.m.41 views

Important: libxml2

Issue Overview: A heap-based buffer underflow flaw was found in the way libxml2 decoded certain entities. A remote attacker could provide a specially-crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrar...

6.8CVSS9.9AI score0.04382EPSS
Exploits1References1
Amazon
Amazon
added 2012/12/06 12:0 a.m.30 views

Important: mysql55

Issue Overview: A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. CVE-2012-561...

6.5CVSS8.8AI score0.24564EPSS
Exploits2References1
Amazon
Amazon
added 2012/12/06 12:0 a.m.42 views

Important: mysql51

Issue Overview: A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. CVE-2012-561...

6.5CVSS8.8AI score0.24564EPSS
Exploits2References1
Amazon
Amazon
added 2012/11/20 12:0 a.m.25 views

Medium: libproxy

Issue Overview: A buffer overflow flaw was found in the way libproxy handled the downloading of proxy auto-configuration PAC files. A malicious server hosting a PAC file or a man-in-the-middle attacker could use this flaw to cause an application using libproxy to crash or, possibly, execute...

10CVSS7.3AI score0.03218EPSS
Exploits0References1
Amazon
Amazon
added 2012/11/20 12:0 a.m.52 views

Important: mysql51

Issue Overview: This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed below. 1. April 2012: http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.htmlAppendixMSQL...

4CVSS6.7AI score0.03518EPSS
Exploits0References1
Amazon
Amazon
added 2012/11/20 12:0 a.m.59 views

Medium: kernel

Issue Overview: A use-after-free flaw was found in the Linux kernel's memory management subsystem in the way quota handling for huge pages was performed. A local, unprivileged user could use this flaw to cause a denial of service or, potentially, escalate their privileges. CVE-2012-2133, Moderate...

7.6CVSS7.1AI score0.08738EPSS
Exploits6References1
Amazon
Amazon
added 2012/10/23 12:0 a.m.59 views

Important: java-1.6.0-openjdk

Issue Overview: Multiple improper permission check issues were discovered in the Beans, Swing, and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. CVE-2012-5086, CVE-2012-5084, CVE-2012-5089 Multiple improper permission...

10CVSS9.2AI score0.45113EPSS
Exploits1References1
Amazon
Amazon
added 2012/10/23 12:0 a.m.57 views

Important: java-1.7.0-openjdk

Issue Overview: Multiple improper permission check issues were discovered in the Beans, Swing, and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. CVE-2012-5086, CVE-2012-5084, CVE-2012-5089 Multiple improper permission...

10CVSS9.2AI score0.45113EPSS
Exploits1References1
Amazon
Amazon
added 2012/10/23 12:0 a.m.45 views

Medium: ruby

Issue Overview: Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the nameerrmesgtostr API function, which marks the string as tainted, a different...

5CVSS8.5AI score0.02772EPSS
Exploits2
Amazon
Amazon
added 2012/10/23 12:0 a.m.36 views

Important: bind

Issue Overview: A flaw was found in the way BIND handled certain combinations of resource records. A remote attacker could use this flaw to cause a recursive resolver, or an authoritative server in certain configurations, to lockup. CVE-2012-5166 Affected Packages: bind Issue Correction: Run yum...

7.8CVSS7.1AI score0.34196EPSS
Exploits0References1
Amazon
Amazon
added 2012/10/15 12:0 a.m.42 views

Low: puppet

Issue Overview: Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a...

4.3CVSS6AI score0.02453EPSS
Exploits4
Amazon
Amazon
added 2012/10/15 12:0 a.m.71 views

Medium: libxml2

Issue Overview: Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way libxml2 handled documents that enable entity expansion. A remote attacker could provide a large, specially-crafted XML file that, when opened in an application linked against libxml2,...

6.8CVSS9.7AI score0.0266EPSS
Exploits0References1
Amazon
Amazon
added 2012/10/08 12:0 a.m.38 views

Medium: munin

Issue Overview: Munin before 2.0.6 stores plugin state files that run as root in the same group-writable directory as non-root plugins, which allows local users to execute arbitrary code by replacing a state file, as demonstrated using the smart plugin. Affected Packages: munin Issue Correction:...

7.2CVSS7.4AI score0.0059EPSS
Exploits1
Amazon
Amazon
added 2012/10/08 12:0 a.m.32 views

Low: fetchmail

Issue Overview: Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to 1 cause a denial of service crash and delayed delivery of inbound mail via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or 2 obtain...

5.8CVSS9.1AI score0.01874EPSS
Exploits0
Amazon
Amazon
added 2012/10/08 12:0 a.m.43 views

Medium: freeradius

Issue Overview: A buffer overflow flaw was discovered in the way radiusd handled the expiration date field in X.509 client certificates. A remote attacker could possibly use this flaw to crash radiusd if it were configured to use the certificate or TLS tunnelled authentication methods such as...

6.8CVSS7.5AI score0.0565EPSS
Exploits0References1
Amazon
Amazon
added 2012/10/08 12:0 a.m.81 views

Medium: kernel

Issue Overview: An integer overflow flaw was found in the i915gemdoexecbuffer function in the Intel i915 driver in the Linux kernel. A local, unprivileged user could use this flaw to cause a denial of service. This issue only affected 32-bit systems. CVE-2012-2384, Moderate A memory leak flaw was...

7.1CVSS6.9AI score0.0285EPSS
Exploits4References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.39 views

Medium: ghostscript

Issue Overview: An integer overflow flaw, leading to a heap-based buffer overflow, was found in Ghostscript's International Color Consortium Format library icclib. An attacker could create a specially-crafted PostScript or PDF file with embedded images that would cause Ghostscript to crash or,...

6.8CVSS7.9AI score0.07486EPSS
Exploits0References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.36 views

Medium: dbus

Issue Overview: It was discovered that the D-Bus library honored environment settings even when running with elevated privileges. A local attacker could possibly use this flaw to escalate their privileges, by setting specific environment variables before running a setuid or setgid application...

6.9CVSS7.2AI score0.04514EPSS
Exploits4References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.50 views

Important: openjpeg

Issue Overview: It was found that OpenJPEG failed to sanity-check an image header field before using it. A remote attacker could provide a specially-crafted image file that could cause an application linked against OpenJPEG to crash or, possibly, execute arbitrary code. CVE-2012-3535 Affected...

6.8CVSS9.1AI score0.0615EPSS
Exploits1References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.39 views

Medium: libexif

Issue Overview: Multiple flaws were found in the way libexif processed Exif tags. An attacker could create a specially-crafted image file that, when opened in an application linked against libexif, could cause the application to crash or, potentially, execute arbitrary code with the privileges of...

7.5CVSS7.6AI score0.07557EPSS
Exploits0References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.76 views

Important: libxslt

Issue Overview: A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces. An attacker could use this flaw to create a malicious XSL file that, when used by an application linked against libxslt to perform an XSL transformation, could...

6.8CVSS10AI score0.02467EPSS
Exploits1References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.43 views

Medium: postgresql8

Issue Overview: It was found that the optional PostgreSQL xml2 contrib module allowed local files and remote URLs to be read and written to with the privileges of the database server when parsing Extensible Stylesheet Language Transformations XSLT. An unprivileged database user could use this fla...

6.5CVSS7.7AI score0.03297EPSS
Exploits2References1
Amazon
Amazon
added 2012/09/22 12:0 a.m.36 views

Important: bind

Issue Overview: A flaw was found in the way BIND handled resource records with a large RDATA value. A malicious owner of a DNS domain could use this flaw to create specially-crafted DNS resource records, that would cause a recursive resolver or secondary server to exit unexpectedly with an...

7.8CVSS7AI score0.36798EPSS
Exploits0References1
Amazon
Amazon
added 2012/09/10 12:0 a.m.57 views

Medium: kernel

Issue Overview: The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCMCREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to 1 Avahi or 2 NetworkManager. Affected...

1.9CVSS7.6AI score0.00429EPSS
Exploits2
Amazon
Amazon
added 2012/09/04 12:0 a.m.51 views

Important: java-1.6.0-openjdk

Issue Overview: It was discovered that the Beans component in OpenJDK did not perform permission checks properly. An untrusted Java application or applet could use this flaw to use classes from restricted packages, allowing it to bypass Java sandbox restrictions. CVE-2012-1682 A hardening fix was...

10CVSS9.7AI score0.12471EPSS
Exploits1References1
Amazon
Amazon
added 2012/09/04 12:0 a.m.70 views

Medium: glibc

Issue Overview: Multiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation strtod, strtof, and strtold. If an application used such a function on attacker controlled input, it could cause the...

4.6CVSS7.2AI score0.00993EPSS
Exploits0References1
Amazon
Amazon
added 2012/09/04 12:0 a.m.42 views

Medium: postgresql9

Issue Overview: The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger...

4.9CVSS7.8AI score0.03297EPSS
Exploits1
Amazon
Amazon
added 2012/08/21 12:0 a.m.53 views

Medium: kernel

Issue Overview: The rdsrecvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a 1 recvfrom or 2 recvmsg system call on an RDS socket...

2.1CVSS6.2AI score0.00952EPSS
Exploits2
Amazon
Amazon
added 2012/08/18 12:0 a.m.43 views

Low: openldap

Issue Overview: It was found that the OpenLDAP server daemon ignored olcTLSCipherSuite settings. This resulted in the default cipher suite always being used, which could lead to weaker than expected ciphers being accepted during Transport Layer Security TLS negotiation with OpenLDAP clients...

4.3CVSS5.6AI score0.04114EPSS
Exploits0References1
Amazon
Amazon
added 2012/08/05 12:0 a.m.39 views

Low: php

Issue Overview: Unspecified vulnerability in the phpstreamscandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow." Affected Packages: php Issue Correction: Run yum update php or yum update...

10CVSS9.7AI score0.10467EPSS
Exploits1
Amazon
Amazon
added 2012/08/03 12:0 a.m.63 views

Important: krb5

Issue Overview: An uninitialized pointer use flaw was found in the way the MIT Kerberos KDC handled initial authentication requests AS-REQ. A remote, unauthenticated attacker could use this flaw to crash the KDC via a specially-crafted AS-REQ request. CVE-2012-1015 A NULL pointer dereference flaw...

9.3CVSS8.2AI score0.04814EPSS
Exploits1References1
Amazon
Amazon
added 2012/08/03 12:0 a.m.50 views

Medium: dhcp

Issue Overview: A denial of service flaw was found in the way the dhcpd daemon handled zero-length client identifiers. A remote attacker could use this flaw to send a specially-crafted request to dhcpd, possibly causing it to enter an infinite loop and consume an excessive amount of CPU time...

6.1CVSS6.7AI score0.12985EPSS
Exploits1References1
Amazon
Amazon
added 2012/08/03 12:0 a.m.26 views

Medium: perl-DBD-Pg

Issue Overview: Two format string flaws were found in perl-DBD-Pg. A specially-crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. CVE-2012-11...

5CVSS7.6AI score0.02744EPSS
Exploits0References1
Amazon
Amazon
added 2012/08/03 12:0 a.m.29 views

Important: bind

Issue Overview: An uninitialized data structure use flaw was found in BIND when DNSSEC validation was enabled. A remote attacker able to send a large number of queries to a DNSSEC validating BIND resolver could use this flaw to cause it to exit unexpectedly with an assertion failure. CVE-2012-381...

7.8CVSS7AI score0.27383EPSS
Exploits1References1
Amazon
Amazon
added 2012/07/30 12:0 a.m.43 views

Important: openjpeg

Issue Overview: An input validation flaw, leading to a heap-based buffer overflow, was found in the way OpenJPEG handled the tile number and size in an image tile header. A remote attacker could provide a specially-crafted image file that, when decoded using an application linked against OpenJPEG...

10CVSS9.3AI score0.07695EPSS
Exploits0References1
Amazon
Amazon
added 2012/07/25 12:0 a.m.47 views

Medium: glibc

Issue Overview: Multiple errors in glibc's formatted printing functionality could allow an attacker to bypass FORTIFYSOURCE protections and execute arbitrary code using a format string flaw in an application, even though these protections are expected to limit the impact of such flaws to an...

6.8CVSS7.5AI score0.03163EPSS
Exploits1References1
Amazon
Amazon
added 2012/07/25 12:0 a.m.37 views

Medium: nss

Issue Overview: A flaw was found in the way the ASN.1 Abstract Syntax Notation One decoder in NSS handled zero length items. This flaw could cause the decoder to incorrectly skip or replace certain items with a default value, or could cause an application to crash if, for example, it received a...

5CVSS9.5AI score0.02945EPSS
Exploits0References1
Amazon
Amazon
added 2012/07/25 12:0 a.m.41 views

Medium: sudo

Issue Overview: A flaw was found in the way the network matching code in sudo handled multiple IP networks listed in user specification configuration directives. A user, who is authorized to run commands with sudo on specific hosts, could use this flaw to bypass intended restrictions and run thos...

7.2CVSS8AI score0.00399EPSS
Exploits0References1
Amazon
Amazon
added 2012/07/09 12:0 a.m.41 views

Medium: lighttpd

Issue Overview: Integer signedness error in the base64decode function in the HTTP authentication functionality httpauth.c in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service segmentation fault via crafted base64 input that triggers a...

5CVSS6.7AI score0.16246EPSS
Exploits8
Amazon
Amazon
added 2012/07/06 12:0 a.m.40 views

Important: libtiff

Issue Overview: libtiff did not properly convert between signed and unsigned integer values, leading to a buffer overflow. An attacker could use this flaw to create a specially-crafted TIFF file that, when opened, would cause an application linked against libtiff to crash or, possibly, execute...

7.5CVSS9.9AI score0.06459EPSS
Exploits0References1
Amazon
Amazon
added 2012/07/06 12:0 a.m.33 views

Medium: rsyslog

Issue Overview: A numeric truncation error, leading to a heap-based buffer overflow, was found in the way the rsyslog imfile module processed text files containing long lines. An attacker could use this flaw to crash the rsyslogd daemon or, possibly, execute arbitrary code with the privileges of...

2.1CVSS7.6AI score0.0042EPSS
Exploits0References1
Amazon
Amazon
added 2012/07/05 12:0 a.m.36 views

Low: xorg-x11-server

Issue Overview: A flaw was found in the way the X.Org server handled lock files. A local user with access to the system console could use this flaw to determine the existence of a file in a directory not accessible to the user, via a symbolic link attack. CVE-2011-4028 A race condition was found ...

1.9CVSS6.1AI score0.00605EPSS
Exploits5References1
Amazon
Amazon
added 2012/07/05 12:0 a.m.41 views

Important: mysql55

Issue Overview: sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp...

5.1CVSS9.4AI score0.96188EPSS
Exploits9
Amazon
Amazon
added 2012/07/05 12:0 a.m.32 views

Medium: openssh

Issue Overview: A denial of service flaw was found in the OpenSSH GSSAPI authentication implementation. A remote, authenticated user could use this flaw to make the OpenSSH server daemon sshd use an excessive amount of memory, leading to a denial of service. GSSAPI authentication is enabled by...

3.5CVSS6.9AI score0.02595EPSS
Exploits1References1
Amazon
Amazon
added 2012/07/05 12:0 a.m.13 views

Medium: nss

Issue Overview: It was found that a Certificate Authority CA issued a subordinate CA certificate to its customer, that could be used to issue certificates for any name. This update renders the subordinate CA certificate as untrusted. Affected Packages: nss Issue Correction: Run yum update nss or...

7AI score
Exploits0References1
Total number of security vulnerabilities8850