Lucene search
K
MageiaRecent

6012 matches found

Mageia
Mageia
•added 2017/11/02 9:47 p.m.•43 views

Updated sdl2 packages fix security vulnerability

Yves Younan of Cisco Talos discovered an exploitable integer overflow vulnerability when creating a new RGB Surface in SDL 2.0.x before version 2.0.7. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and...

8.8CVSS4.2AI score0.03072EPSS
Exploits2References4
Mageia
Mageia
•added 2017/11/02 9:47 p.m.•66 views

Updated tomcat packages fix security vulnerability

When running with HTTP PUTs enabled e.g. via setting the readonly initialization parameter of the Default servlet to false it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server...

8.1CVSS1.6AI score0.99988EPSS
Exploits23References3
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•53 views

Updated rpm package fixes security vulnerabilities

It was found that rpm did not properly handle RPM installations when a destination path was a symbolic link to a directory, possibly changing ownership and permissions of an arbitrary directory, and RPM files being placed in an arbitrary destination. An attacker, with write access to a directory ...

7.8CVSS1AI score0.00415EPSS
Exploits0References4
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•76 views

Updated exiv2 packages fix security vulnerabilities & bugs

Opening an image created on certain pentax cameras with gwenview, which uses the exiv2 library, causes gwenview to segfault. Exiv2 upstream created a patch to resolve this problem bugfix - applies only to mga6. The following security issues were also fixed: Heap overflow in...

8.8CVSS2.1AI score0.03098EPSS
Exploits8References3
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•44 views

Updated wget packages fix security vulnerabilities

The http.c:skipshortbody function is called in some circumstances, such as when processing redirects. When the response is sent chunked, the chunk parser uses strtol to read each chunk's length, but doesn't check that the chunk length is a non-negative number. The code then tries to skip the chun...

9.3CVSS1.3AI score0.79855EPSS
Exploits3References2
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•15 views

Updated procmail packages fix security vulnerability

A flaw was found in the loadbuf function in formisc.c. When the buffer is too small, the function tries to resize it, but only by Bsize =128 bytes. This is not necessarily enough and could cause denial of service...

2.5AI score
Exploits0References3
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•44 views

Updated opensc_etc packages fix security vulnerability

A vulnerability, dubbed ROCA, was identified in an implementation of RSA key generation due to a fault in a code library developed by Infineon Technologies. The affected encryption keys are used to secure many forms of technology, such as hardware chips, authentication tokens, software packages,...

5.9CVSS1.3AI score0.09825EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/30 7:23 p.m.•41 views

Updated irssi packages fix security vulnerabilities

While waiting for the channel synchronization, Irssi may incorrectly fail to remove destroyed channels from the query list, resulting in use after free conditions when updating the state later on CVE-2017-15227. When installing themes with unterminated color formatting sequences, Irssi may access...

7.5CVSS2.1AI score0.02371EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/27 7:16 a.m.•88 views

Updated virtualbox packages fix security vulnerabilities

This update provides the virtualbox 5.1.30 maintenance release, fixing security and other issues: In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a...

7.5CVSS2.4AI score0.57595EPSS
Exploits1References2
Mageia
Mageia
•added 2017/10/27 7:16 a.m.•29 views

Updated upx package fixes security vulnerability

plxelf.cpp in UPX 3.94 mishandles ELF headers, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by an Invalid Pointer Read in PackLinuxElf64::unpack CVE-2017-15056...

7.8CVSS7.2AI score0.00958EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/24 8:9 p.m.•261 views

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...

7.1CVSS0.9AI score0.01155EPSS
Exploits4References5
Mageia
Mageia
•added 2017/10/24 8:9 p.m.•74 views

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a...

7.1CVSS0.9AI score0.01155EPSS
Exploits4References5
Mageia
Mageia
•added 2017/10/24 8:9 p.m.•61 views

Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netli...

7.1CVSS0.9AI score0.01155EPSS
Exploits4References5
Mageia
Mageia
•added 2017/10/24 5:50 a.m.•41 views

Updated mysql-connector-java packages fix security vulnerabilities

Thijs Alkemade discovered that unexpected automatic deserialisation of Java objects in the MySQL Connector/J JDBC driver may result in the execution of arbitary code CVE-2017-3523. Two vulnerabilities have been found in the MySQL Connector/J JDBC driver CVE-2017-3586, CVE-2017-3589...

8.5CVSS3.4AI score0.02877EPSS
Exploits0References5
Mageia
Mageia
•added 2017/10/24 5:50 a.m.•17 views

Updated recode packages fix security vulnerability

A buffer overflow vulnerability was found in recode. Parsing a maliciously crafted file could cause the application to crash rhbz1422545...

4.1AI score
Exploits0References2
Mageia
Mageia
•added 2017/10/24 5:50 a.m.•65 views

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 4.9.56 and fixes at least the following security issues: A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest...

7.8CVSS1AI score0.03763EPSS
Exploits8References7
Mageia
Mageia
•added 2017/10/24 5:50 a.m.•58 views

Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on upstream 4.9.56 and fixes at least the following security issues: A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest...

7.8CVSS1AI score0.03763EPSS
Exploits8References7
Mageia
Mageia
•added 2017/10/19 10:5 p.m.•38 views

Updated db48 and db53 packages fix security vulnerability

It was found that Berkeley DB reads the DBCONFIG configuration file from the current working directory by default. This happens when calling dbcreate with dbenv=NULL; or using the dbmopen function CVE-2017-10140...

7.8CVSS1.7AI score0.00567EPSS
Exploits1References3
Mageia
Mageia
•added 2017/10/19 10:5 p.m.•51 views

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.9.56 and fixes at least the following security issues: A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack...

7.8CVSS1AI score0.03763EPSS
Exploits8References7
Mageia
Mageia
•added 2017/10/19 6:14 p.m.•82 views

Updated wpa_supplicant and hostapd packages fix security vulnerabilities

Mathy Vanhoef discovered that wpasupplicant and hostapd incorrectly handled WPA2. A remote attacker could use this issue with key reinstallation attacks to obtain sensitive information. CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086,...

8.1CVSS1.7AI score0.04575EPSS
Exploits1References2
Mageia
Mageia
•added 2017/10/19 6:14 p.m.•43 views

Updated poppler packages fix security vulnerabilities

In Poppler 0.59.0, a floating point exception exists in the isImageInterpolationRequired function in Splash.cc via a crafted PDF document. CVE-2017-14518 In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling...

7.8CVSS1.6AI score0.0246EPSS
Exploits3References2
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•38 views

Updated libxfont packages fix security vulnerabilities

In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information disclosure or a crash denial of service. This occurs because '\0'...

7.1CVSS2.5AI score0.00442EPSS
Exploits0References3
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•16 views

Updated webmin packages fix security vulnerability

The webmin package has been updated to version 1.840, which fixes a cross-site scripting XSS issue, an issue due to improper escaping in the download module, and has other bug fixes and enhancements. See the upstream release announcements and change log for details...

3.4AI score
Exploits0References3
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•42 views

Updated ruby packages fix security vulnerabilities

If a malicious format string which contains a precious specifier is passed and a huge minus value is also passed to the specifier, buffer underrun may be caused. In such situation, the result may contains heap, or the Ruby interpreter may crash CVE-2017-0898. If a malicious string is passed to th...

9.8CVSS0.5AI score0.16412EPSS
Exploits2References8
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•41 views

Updated openvpn packages fix security vulnerability

The bounds check in readkey was performed after using the value, instead of before. If 'key-method 1' is used, this allowed an attacker to send a malformed packet to trigger a stack buffer overflow. Note that 'key-method 1' has been replaced by 'key method 2' as the default in OpenVPN 2.0...

9.8CVSS3.3AI score0.03629EPSS
Exploits0References4
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•44 views

Updated wireshark packages fix security vulnerability

DMP dissector crash CVE-2017-15191...

7.5CVSS1.6AI score0.02697EPSS
Exploits0References5
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•47 views

Updated wireshark packages fix security vulnerability

DMP dissector crash CVE-2017-15191. BT ATT dissector crash CVE-2017-15192. MBIM dissector crash CVE-2017-15193...

7.8CVSS1.3AI score0.02697EPSS
Exploits0References6
Mageia
Mageia
•added 2017/10/18 8:19 p.m.•38 views

Updated flash-player-plugin packages fix security vulnerability

Adobe Flash Player 27.0.0.170 addresses a critical type confusion vulnerability that could lead to code execution CVE-2017-11292. Adobe is aware of a report that an exploit for CVE-2017-11292 exists in the wild, and is being used in limited, targeted attacks against users running Windows...

8.8CVSS4.1AI score0.12104EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/13 7:33 p.m.•33 views

Updated weechat packages fix security vulnerability

It was discovered that logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized CVE-2017-14727...

7.5CVSS4.6AI score0.02836EPSS
Exploits0References4
Mageia
Mageia
•added 2017/10/13 7:33 p.m.•33 views

Updated pjproject packages fix security vulnerabilities

Two vulnerabilities were found in the PJSIP/PJProject communication library, which may result in denial of service CVE-2017-9359, CVE-2017-9372...

7.5CVSS3.1AI score0.03989EPSS
Exploits0References4
Mageia
Mageia
•added 2017/10/13 7:33 p.m.•13 views

Updated thunderbird packages fix security vulnerability

The updated packages fix several bugs and likely many of the same security issues as Firefox 52.4. Moreover, enigmail has been updated to 1.9.8.3...

2.1AI score
Exploits0References2
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•27 views

Updated flightgear packages fix security vulnerability

In FlightGear before version 2017.3.1, Main/logger.cxx in the FGLogger subsystem allows one to overwrite any file via a resource that affects the contents of the global Property Tree. Mageia provides 2017.3.1 version as a security and bugfix update, allowing to connect to latest multiplayer serve...

7.5CVSS4AI score0.01058EPSS
Exploits1References4
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•34 views

Updated libidn packages fix security vulnerability

Integer overflow in the decodedigit function in punydecode.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact. CVE-2017-14062...

9.8CVSS7.5AI score0.03965EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•44 views

Updated dnsmasq packages fix security vulnerabilities

CVE-2017-13704: Dnsmasq could be made to crash on a large DNS query. A DNS query received by UDP which exceeds 512 bytes or the EDNS0 packet size, if different. is enough to cause SIGSEGV. CVE-2017-14491: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies...

9.8CVSS2AI score0.93307EPSS
Exploits32References5
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•47 views

Updated dnsmasq packages fix security vulnerabilities

An audit by mozilla security found several vulnerability and potential vulnerability in dnsmasq: - Uninitialized buffer leads to memory leakage - Allocated memory is not cleared - Unchecked return value can lead to NULL pointer dereference - Hardcoded values in fscanf format strings with...

9.8CVSS2.3AI score0.93307EPSS
Exploits32References8
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•16 views

Updated clamav packages fix security vulnerability

A malformed xar file can cause an out of bounds heap read in clamav...

1AI score
Exploits0References2
Mageia
Mageia
•added 2017/10/09 9:51 a.m.•44 views

Updated x11-server packages fix security vulnerabilities

In Xext/shm, the shmseg resource id can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client CVE-2017-13721. Generating strings for XKB data used a single shared static buffer, which offered several...

7.8CVSS2AI score0.00443EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/05 8:37 p.m.•52 views

Updated rawtherapee packages fix security vulnerabilities

It was discovered that rawtherapee had a floating point exception in the kodakradcloadraw function in dcraw.cc CVE-2017-13735. It was discovered that rawtherapee had a Heap-based 1 byte buffer overflow in the processCanonCameraInfo function in dcraw.c CVE-2017-14348. It was discovered that...

9.8CVSS4.1AI score0.04336EPSS
Exploits0References7
Mageia
Mageia
•added 2017/10/05 8:37 p.m.•41 views

Updated poppler packages fix security vulnerabilities

In Poppler 0.59.0, a NULL Pointer Dereference exists in the XRef::parseEntry function in XRef.cc via a crafted PDF document. CVE-2017-14517 In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp,...

7.8CVSS2.3AI score0.01542EPSS
Exploits3References3
Mageia
Mageia
•added 2017/10/05 8:37 p.m.•58 views

Updated firefox packages fix security vulnerabilities

A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the...

10CVSS3.4AI score0.03641EPSS
Exploits3References5
Mageia
Mageia
•added 2017/10/05 8:8 p.m.•38 views

Updated open-vm-tools packages fix security vulnerability

It was discovered that open-vm-tools has multiple /tmp race conditions in the libDeployPkg component, allowing an unprivileged local user in a guest to cause a denial of service through file system manipulation, or, possibly, increase privileges CVE-2015-5191...

6.7CVSS6.7AI score0.00331EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/05 8:8 p.m.•26 views

Updated libgd packages fix security vulnerability

Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors. CVE-2017-6362...

7.5CVSS5.1AI score0.05102EPSS
Exploits0References4
Mageia
Mageia
•added 2017/10/05 8:8 p.m.•42 views

Updated libraw packages fix security vulnerabilities

There is a floating point exception in the kodakradcloadraw function in dcrawcommon.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. CVE-2017-13735 A Stack-based Buffer Overflow was discovered in xtransinterpolate in internal/dcrawcommon.cpp in LibRaw before 0.18.3. It cou...

9.8CVSS4.1AI score0.04336EPSS
Exploits0References7
Mageia
Mageia
•added 2017/10/05 8:8 p.m.•25 views

Updated libwpd packages fix security vulnerability

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

7.5CVSS5.5AI score0.02481EPSS
Exploits0References2
Mageia
Mageia
•added 2017/10/05 8:8 p.m.•44 views

Updated ghostscript packages fix security vulnerabilities

The InsMIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted document. CVE-2017-9611 The InsIP function in base/ttinterp.c...

7.8CVSS6.5AI score0.0275EPSS
Exploits5References2
Mageia
Mageia
•added 2017/09/21 1:43 p.m.•15 views

Updated ffmpeg packages fix security vulnerability

This update provides ffmpeg version 3.3.4, which fixes several security vulnerabilities and other bugs which were corrected upstream...

4AI score
Exploits0References4
Mageia
Mageia
•added 2017/09/21 1:43 p.m.•31 views

Updated libwmf packages fix security vulnerability

Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors. CVE-2017-6362...

7.5CVSS5.2AI score0.05102EPSS
Exploits0References3
Mageia
Mageia
•added 2017/09/21 1:43 p.m.•37 views

Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities

A crafted AAC audio file could have caused an invalid read and thus corruption or denial of service CVE-2016-10198. A crafted mp4 file could have caused an invalid read and thus corruption or denial of service CVE-2016-10199. A crafted AVI file could have caused an invalid read and thus corruptio...

7.5CVSS2.4AI score0.04717EPSS
Exploits0References4
Mageia
Mageia
•added 2017/09/21 1:43 p.m.•63 views

Updated tomcat packages fix security vulnerability

The CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances CVE-2017-7674. When using a VirtualDirContext it was possible to bypass security constraints and/or view the source...

7.5CVSS1.1AI score0.708EPSS
Exploits4References6
Mageia
Mageia
•added 2017/09/21 1:43 p.m.•35 views

Updated tor packages fix security vulnerability

Due to the code that reports an error during the construction of an introduction point circuit, it is possible that some hidden services will sometimes write sensitive information into their logs if the SafeLogging option is disabled. Note that SafeLogging is enabled by default CVE-2017-0380...

5.9CVSS1.2AI score0.01541EPSS
Exploits0References3
Total number of security vulnerabilities6012