3816 matches found
YAML-LibYAML: Shell injection
Background YAML-LibYAML provides YAML Serialization using XS and libyaml for Perl. Description YAML-LibYAML uses the legacy '2-arg' open call which is susceptible to shell injection via malicious filenames. Impact Shell injection may be used to execute arbitrary code using a malicious filename...
Tracker miners: Sandbox weakness
Background The Tracker miners are a collection of data extractors for the GNOME Tracker. Description A vulnerability has been discovered in Tracker minders. Please review the CVE identifier referenced below for details. Impact Please review the referenced CVE identifier for details. Workaround...
Portage: Unverified PGP Signatures
Background Portage is the default Gentoo package management system. Description Multiple vulnerabilities have been discovered in Portage. Please review the CVE identifiers referenced below for details. Impact When using the webrsync mechanism to sync the tree the PGP signatures that protect the...
Pixman: Heap Buffer Overflow
Background Pixman is a pixel manipulation library. Description A vulnerability has been discovered in Pixman. Please review the CVE identifiers referenced below for details. Impact An out-of-bounds write aka heap-based buffer overflow in rasterizeedges8 can occur due to an integer overflow in...
Tinyproxy: Memory Disclosure
Background Tinyproxy is a light-weight HTTP/HTTPS proxy daemon for POSIX operating systems. Description Tinyproxy's request processing does not sufficiently null-initialize variables used in error pages. Impact Contents of the Tinyproxy server's memory could be disclosed via generated error pages...
ProFTPD: Denial of service
Background ProFTPD is an advanced and very configurable FTP server. Description It was found that ProFTPD did not properly handle invalid SCP commands. Impact An authenticated remote attacker could issue invalid SCP commands, possibly resulting in a Denial of Service condition. Workaround There i...
OpenSMTPD: Multiple vulnerabilities
Background OpenSMTPD is a lightweight but featured SMTP daemon from OpenBSD. Description Multiple vulnerabilities have been discovered in OpenSMTPD. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges o...
nfs-utils: Information disclosure
Background nfs-utils contains the client and daemon implementations for the NFS protocol. Description rpc.gssd in nfs-utils is vulnerable to DNS spoofing due to it depending on PTR resolution for GSSAPI authentication, allowing for data to be submitted to a malicious server without the knowledge ...
OpenTTD: Denial of service
Background OpenTTD is a clone of Transport Tycoon Deluxe. Description The vulnerability is caused due to missing out-of-bound check within the “HandleCrashedAircraft” function. Impact A remote attacker could possibly cause a Denial of Service condition. Workaround There is no known workaround at...
Links: SSL verification vulnerability
Background Links is a fast lightweight text and graphic web-browser. Description A SSL verification vulnerability and two unspecified vulnerabilities have been discovered in Links. Please review the Secunia Advisory referenced below for details. Impact An attacker might conduct man-in-the-middle...
Kazehakase: Multiple vulnerabilities
Background Kazehakase is a web browser based on the Gecko engine. Description Kazehakase includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruptions vulnerabilities GLSA 200711-30. Impact A remote attacker could entice a user to open specially crafted input e.g...
CSTeX: Multiple vulnerabilities
Background CSTeX is a TeX distribution with Czech and Slovak support. It is used for creating and manipulating LaTeX documents. Description Multiple issues were found in the teTeX 2 codebase that CSTeX builds upon GLSA 200709-17, GLSA 200711-26. CSTeX also includes vulnerable code from the GD...
Mozilla Suite: Multiple vulnerabilities
Background The Mozilla Suite is a popular all-in-one web browser that includes a mail and news reader. Description Several vulnerabilities ranging from code execution with elevated privileges to information leaks affect the Mozilla Suite. Impact A remote attacker could entice a user to browse to ...
Kaffeine: Buffer overflow
Background Kaffeine is a graphical front-end for the xine-lib multimedia library. Description Kaffeine uses an unchecked buffer when fetching remote RAM playlists via HTTP. Impact A remote attacker could entice a user to play a specially-crafted RAM playlist resulting in the execution of arbitrar...
Dnsmasq: Poisoning and Denial of Service vulnerabilities
Background Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server. Description Dnsmasq does not properly detect that DNS replies received do not correspond to any DNS query that was sent. Rob Holland of the Gentoo Linux Security Audit team also discovered two off-by-one...
LTris: Buffer overflow
Background LTris is a Tetris clone. Description LTris is vulnerable to a buffer overflow when reading the global highscores file. Impact By modifying the global highscores file a malicious user could trick another user to execute arbitrary code. Workaround There is no known workaround at this tim...
Proxytunnel: Format string vulnerability
Background Proxytunnel is a program that tunnels connections to a remote server through a standard HTTPS proxy. Description Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it...
glFTPd: Local buffer overflow vulnerability
Background glFTPd is a highly configurable FTP server with many features. Description The glFTPd server is vulnerable to a buffer overflow in the 'dupescan' program. This vulnerability is due to an unsafe strcpy call which can cause the program to crash when a large argument is passed. Impact A...
vpopmail: Multiple vulnerabilities
Background vpopmail handles virtual mail domains for qmail and Postfix. Description vpopmail is vulnerable to several unspecified SQL injection exploits. Furthermore when using Sybase as the backend database vpopmail is vulnerable to a buffer overflow and format string exploit. Impact These...
sitecopy: Multiple vulnerabilities in included libneon
Background sitecopy easily maintains remote websites. It makes it simple to keep a remote site synchronized with the local site with one command. Description Multiple format string vulnerabilities and a heap overflow vulnerability were discovered in the code of the neon library GLSA 200405-01 and...
Chromium, Google Chrome, Microsoft Edge. Opera: Multiple Vulnerabilities
Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Microsoft Edge is a browser that combines a minimal design with...
Mozilla Firefox: Multiple Vulnerabilities
Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...
PAM: Multiple Vulnerabilities
Background PAM Pluggable Authentication Modules is an architecture allowing the separation of the development of privilege granting software from the development of secure and appropriate authentication schemes. Description Multiple vulnerabilities have been discovered in PAM. Please review the C...
OpenSC: Multiple Vulnerabilities
Background OpenSC contains tools and libraries for smart cards. Description Multiple vulnerabilities have been discovered in OpenSC. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...
OpenJDK: Multiple Vulnerabilities
Background OpenJDK is an open source implementation of the Java programming language. Description Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround...
Oracle VirtualBox: Multiple Vulnerabilities
Background VirtualBox is a powerful virtualization product from Oracle. Description Multiple vulnerabilities have been discovered in Oracle VirtualBox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There...
Emacs, org-mode: Command Execution Vulnerability
Background Emacs is the extensible, customizable, self-documenting real-time display editor. org-mode is an Emacs mode for notes and project planning. Description %... link abbreviations could specify unsafe functions. Impact Opening a malicious org-mode file could result in arbitrary code...
MuPDF: Multiple Vulnerabilities
Background A lightweight PDF, XPS, and E-book viewer. Description Multiple vulnerabilities have been discovered in MuPDF. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at thi...
dpkg: Directory Traversal
Background Debian package management system. Description Please review the CVE indentifier referenced below for details. Impact Dpkg::Source::Archive in dpkg, the Debian package management system, is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and...
MediaInfo, MediaInfoLib: Multiple Vulnerabilities
Background MediaInfo supplies technical and tag information about media files. MediaInfoLib contains MediaInfo libraries. Description Multiple vulnerabilities have been discovered in MediaInfo and MediaInfoLib. Please review the CVE identifiers referenced below for details. Impact Please review t...
ImageMagick: Multiple vulnerabilities
Background Imagemagick is a collection of tools and libraries for many image formats. Description Multiple vulnerabilities have been discovered in ImageMagick including, but not limited to, various overflows and potential Denials of Service. Please visit the references and related bug reports for...
PAM S/Key: Information disclosure
Background PAM S/Key is a pluggable authentication module for the OpenBSD Single-key Password system. Description Ulrich Müller reported that a Gentoo patch to PAM S/Key does not remove credentials provided by the user from memory. Impact A local attacker with privileged access could inspect a...
DevIL: User-assisted execution of arbitrary code
Background Developer's Image Library DevIL is a cross-platform image library. Description Stefan Cornelius Secunia Research discovered two boundary errors within the iGetHdrHeader function in src-IL/src/ilhdr.c. Impact A remote attacker could entice a user to open a specially crafted Radiance RGB...
Chicken: Multiple vulnerabilities
Background Chicken is a Scheme interpreter and native Scheme to C compiler. Description Chicken includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruption vulnerabilities GLSA 200711-30. Impact An attacker could entice a user to process specially crafted regula...
Link Grammar: User-assisted execution of arbitrary code
Background The Link Grammar parser is a syntactic parser of English, based on link grammar, an original theory of English syntax. Description Alin Rad Pop from Secunia Research discovered a boundary error in the function separatesentence in file tokenize.c when processing an overly long word whic...
Mod_auth_kerb: Denial of service
Background Modauthkerb is an Apache authentication module using Kerberos. Description Modauthkerb improperly handles component byte encoding in the dergetoid function, allowing for a buffer overflow to occur if there are no components which require more than one byte for encoding. Impact An...
Opera: RSA signature forgery
Background Opera is a multi-platform web browser. Description Opera makes use of OpenSSL, which fails to correctly verify PKCS 1 v1.5 RSA signatures signed by a key with exponent 3. Some CAs in Opera's list of trusted signers are using root certificates with exponent 3. Impact An attacker could...
wv2: Integer overflow
Background wv2 is a filter library for Microsoft Word files, used in many Office suites. Description A boundary checking error was found in wv2, which could lead to an integer overflow. Impact An attacker could execute arbitrary code with the rights of the user running the program that uses the...
xine-lib: Two heap overflow vulnerabilities
Background xine-lib is a multimedia library which can be utilized to create multimedia frontends. Description Heap overflows have been found in the code handling RealMedia RTSP and Microsoft Media Services streams over TCP MMST. Impact By setting up a malicious server and enticing a user to use i...
NASM: Buffer overflow vulnerability
Background NASM is a 80x86 assembler that has been created for portability and modularity. NASM supports Pentium, P6, SSE MMX, and 3DNow extensions. It also supports a wide range of objects formats ELF, a.out, COFF, ..., and has its own disassembler. Description Jonathan Rockway discovered that...
BNC: Buffer overflow vulnerability
Background BNC BouNCe is an IRC proxy server. Description Leon Juranic discovered that BNC fails to do proper bounds checking when checking server response. Impact An attacker could exploit this to cause a Denial of Service and potentially execute arbitary code with the permissions of the user...
kdebase, kdelibs: Multiple security issues
Background KDE is a powerful Free Software graphical desktop environment for Linux and Unix-like Operating Systems. Description KDE contains three security issues: Insecure handling of temporary files when running KDE applications outside of the KDE environment DCOPServer creates temporary files ...
Konsole: Code execution
Background Konsole is KDE's terminal emulator. Description Konsole supports loading URLs from the scheme handlers such as telnet://URL. This can be executed regardless of whether the telnet binary is available. It would fallback to bash in that case and execute arbitrary code. Impact Clicking a...
eza: Arbitrary Code Execution
Background eza is a modern, maintained replacement for ls, written in rust. Description A vulnerability has been discovered in eza. Please review the CVE identifier referenced below for details. Impact A buffer overflow vulnerability in eza allows local attackers to execute arbitrary code via the...
OATH Toolkit: Privilege Escalation
Background OATH Toolkit provide components to build one-time password authentication systems. It contains shared C libraries, command line tools and a PAM module. Supported technologies include the event-based HOTP algorithm RFC 4226, the time-based TOTP algorithm RFC 6238, and Portable Symmetric...
Salt: Multiple Vulnerabilities
Background Salt is a fast, intelligent and scalable automation engine. Description Multiple vulnerabilities have been discovered in Salt. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...
Pillow: Arbitrary code execution
Background The friendly PIL fork. Description A vulnerability has been discovered in Pillow. Please review the CVE identifier referenced below for details. Impact Please review the referenced CVE identifier for details. Workaround There is no known workaround at this time. Resolution All Pillow...
Flatpak: Sandbox Escape
Background Flatpak is a Linux application sandboxing and distribution framework. Description A vulnerability has been discovered in Flatpak. Please review the CVE identifier referenced below for details. Impact A malicious or compromised Flatpak app using persistent directories could read and wri...
HashiCorp Consul: Multiple Vulnerabilities
Background HashiCorp Consul is a tool for service discovery, monitoring and configuration. Description Multiple vulnerabilities have been found in HashiCorp Consul. Please review the CVE identifiers referenced below for details. Impact Please review the CVE identifiers referenced below for detail...
Exo: Arbitrary Code Execution
Background Exo is an Xfce library targeted at application development, originally developed by os-cillation. It contains various custom widgets and APIs extending the functionality of GLib and GTK. It also has some helper applications that are used throughout the entire Xfce desktop to manage...