Getsocial, S.A. Security Vulnerabilities

Mandriva Linux Security Advisory : libpng (MDVSA-2014:035)

Updated libpng and libpng12 packages fix security vulnerability : The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PLTE chunk of zero bytes or a NULL palette, related to pngrtran.c.....

Mandriva Linux Security Advisory : kernel (MDVSA-2014:038)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.....

Mandriva Linux Security Advisory : varnish (MDVSA-2014:036)

Updated varnish packages fix security vulnerabilities : Varnish before 3.0.5 allows remote attackers to cause a denial of service (child-process crash and temporary caching outage) via a GET request with trailing whitespace characters and no URI (CVE-2013-4484). Also, the services have been...

Mandriva Linux Security Advisory : ffmpeg (MDVSA-2014:037)

Updated ffmpeg packages fix security vulnerabilities : This updates provides ffmpeg version 0.5.13 and 0.10.11, which fixes several unspecified security vulnerabilities and other bugs which were corrected...

Mandriva Linux Security Advisory : socat (MDVSA-2014:033)

A vulnerability has been discovered and corrected in socat : Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line...

Mandriva Linux Security Advisory : yaml (MDVSA-2014:034)

A vulnerability has been discovered and corrected in yaml : The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted tags in.....

Mandriva Linux Security Advisory : flite (MDVSA-2014:032)

Multiple vulnerabilities has been discovered and corrected in flite : The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...

Mandriva Linux Security Advisory : drupal (MDVSA-2014:031)

Multiple security issues was identified and fixed in drupal : The OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to authenticate as other users via unspecified vectors (CVE-2014-1475). The Taxonomy module in Drupal 7.x before 7.26, when upgraded from an...

Mandriva Linux Security Advisory : mariadb (MDVSA-2014:028)

Multiple vulnerabilities has been discovered and corrected in mariadb : Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string...

Mandriva Linux Security Advisory : openldap (MDVSA-2014:026)

A vulnerability has been discovered and corrected in openldap : The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service (slapd crash) by unbinding immediately after a search request, which triggers...

Mandriva Linux Security Advisory : php (MDVSA-2014:027)

A vulnerability has been discovered and corrected in php : Fixed bug #66356 (Heap Overflow Vulnerability in imagecrop()) (CVE-2013-7226). The updated php packages have been upgraded to the 5.5.9 version which is not vulnerable to this issue. Additionally, the PECL packages which requires so...

Titan FTP Server 10.32 Build 1816 - Directory Traversal

...

Titan FTP Server 10.32 Build 1816 Directory Traversals

...

Titan FTP Server 10.32 Build 1816 - Directory Traversal

Titan FTP Server 10.32 Build 1816 - Directory...

Core FTP Server 1.2 DoS / Traversal / Disclosure

...

Mandriva Linux Security Advisory : graphviz (MDVSA-2014:024)

Updated graphviz packages fix security vulnerabilities : Multiple buffer overflow vulnerabilities in graphviz due to an error within the yyerror() function (lib/cgraph/scan.l) which can be exploited to cause a stack-based buffer overflow via a specially crafted file (CVE-2014-0978) and the...

Mandriva Linux Security Advisory : perl-Proc-Daemon (MDVSA-2014:021)

Updated perl-Proc-Daemon package fixes security vulnerability : It was reported that perl-Proc-Daemon, when instructed to write a pid file, does that with a umask set to 0, so the pid file ends up with mode 666, allowing any user on the system to overwrite it...

Mandriva Linux Security Advisory : hplip (MDVSA-2014:023)

Updated hplip packages fix security vulnerabilities : It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files (CVE-2013-6402). It was discovered that HPLIP contained an upgrade tool that would...

Mandriva Linux Security Advisory : x11-server (MDVSA-2014:020)

Updated x11-server package fixes security vulnerability : Bryan Quigley discovered an integer underflow in the Xorg X server which could lead to denial of service or the execution of arbitrary code...

Mandriva Linux Security Advisory : augeas (MDVSA-2014:022)

Updated augeas packages fix security vulnerabilities : Multiple flaws were found in the way Augeas handled configuration files when updating them. An application using Augeas to update configuration files in a directory that is writable to by a different user (for example, an application running...

Mandriva Linux Security Advisory : elinks (MDVSA-2014:019)

Updated elinks package fixes security vulnerability : When verifying SSL certificates, elinks fails to warn the user if the hostname of the certificate does not match the hostname of the website. The elinks package has been updated to version 0.12-pre6 and patched to fix this...

Mandriva Linux Security Advisory : spice (MDVSA-2014:016)

Updated spice packages fix security vulnerability : A stack-based buffer overflow flaw was found in the way the reds_handle_ticket() function in the spice-server library handled decryption of ticket data provided by the client. A remote user able to initiate a SPICE connection to an application...

Mandriva Linux Security Advisory : cups (MDVSA-2014:015)

Updated cups packages fix security vulnerability : Jann Horn discovered that the CUPS lppasswd tool incorrectly read a user configuration file in certain configurations. A local attacker could use this to read sensitive information from certain files, bypassing access restrictions...

Mandriva Linux Security Advisory : net-snmp (MDVSA-2014:017)

Updated net-snmp packages fix security vulnerability : Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to.....

Mandriva Linux Security Advisory : php (MDVSA-2014:014)

Multiple vulnerabilities has been discovered and corrected in php : The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509...

Mandriva Linux Security Advisory : libxfont (MDVSA-2014:013)

A vulnerability has been discovered and corrected in libxfont : Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in....

Mandriva Linux Security Advisory : nss (MDVSA-2014:012)

A vulnerability has been discovered and corrected in Mozilla NSS : The ssl_Do1stHandshake function in sslsecur.c in libssl in Mozilla Network Security Services (NSS) before 3.15.4, when the TLS False Start feature is enabled, allows man-in-the-middle attackers to spoof SSL servers by using an...

Mandriva Linux Security Advisory : java-1.7.0-openjdk (MDVSA-2014:011)

Multiple vulnerabilities has been discovered and corrected in java-1.7.0-openjdk : An input validation flaw was discovered in the font layout engine in the 2D component. A specially crafted font file could trigger Java Virtual Machine memory corruption when processed. An untrusted Java application....

Mandriva Linux Security Advisory : bind (MDVSA-2014:002)

A vulnerability has been discovered and corrected in ISC BIND : The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion...

Mandriva Linux Security Advisory : librsvg (MDVSA-2014:009)

Updated librsvg and gtk+3.0 packages fix security vulnerability : librsvg before version 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference (CVE-2013-1881). For Business Server 1 gtk+3.0 has...

Mandriva Linux Security Advisory : openjpeg (MDVSA-2014:008)

Updated openjpeg package fixes security vulnerabilities : Multiple heap-based buffer overflow flaws were found in OpenJPEG. An attacker could create a specially crafted OpenJPEG image that, when opened, could cause an application using openjpeg to crash or, possibly, execute arbitrary code with...

Mandriva Linux Security Advisory : memcached (MDVSA-2014:010)

Multiple vulnerabilities has been discovered and corrected in memcached : The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to...

Mandriva Linux Security Advisory : openssl (MDVSA-2014:007)

A vulnerability has been discovered and corrected in openssl : The DTLS retransmission implementation in OpenSSL through 0.9.8y and 1.x through 1.0.1e does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of.....

Mandriva Linux Security Advisory : nagios (MDVSA-2014:004)

Multiple vulnerabilities has been discovered and corrected in nagios : Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or...

Mandriva Linux Security Advisory : ejabberd (MDVSA-2014:005)

A vulnerability has been discovered and corrected in ejabberd : The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack (CVE-2013-6169). The updated packages have been.....

Mandriva Linux Security Advisory : kernel (MDVSA-2014:001)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service (system crash) via a VAPIC synchronization operation involving a page-end address (CVE-2013-6368). The....

Mandriva Linux Security Advisory : asterisk (MDVSA-2013:300)

A vulnerability has been discovered and corrected in asterisk : Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones before 10.12.4-digiumphones; and...

Mandriva Linux Security Advisory : pixman (MDVSA-2013:302)

Updated pixman package fixes security vulnerability : Bryan Quigley discovered an integer underflow in pixman. If a user were tricked into opening a specially crafted file, an attacker could cause a denial of service via application crash...

Mandriva Linux Security Advisory : wireshark (MDVSA-2013:296)

Multiple vulnerabilities was found and corrected in Wireshark : The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote attackers to cause a denial of service.....

Mandriva Linux Security Advisory : nss (MDVSA-2013:301)

A vulnerability has been discovered and corrected in mozilla NSS : Google notified Mozilla that an intermediate certificate, which chains up to a root included in Mozillas root store, was loaded into a man-in-the-middle (MITM) traffic management device. This certificate was issued by Agence...

Mandriva Linux Security Advisory : munin (MDVSA-2013:297)

Updated munin packages fix security vulnerabilities : The Munin::Master::Node module of munin does not properly validate certain data a node sends. A malicious node might exploit this to drive the munin-html process into an infinite loop with memory exhaustion on the munin master (CVE-2013-6048)......

Mandriva Linux Security Advisory : samba (MDVSA-2013:299)

Multiple vulnerabilities has been discovered and corrected in samba : The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated...

Mandriva Linux Security Advisory : gnupg (MDVSA-2013:295)

A vulnerability has been discovered and corrected in gnupg : Genkin, Shamir and Tromer discovered that RSA key material could be extracted by using the sound generated by the computer during the decryption of some chosen ciphertexts (CVE-2013-4576). The updated packages have been patched to...

Mandriva Linux Security Advisory : subversion (MDVSA-2013:288)

Updated subversion package fixes security vulnerabilities : mod_dontdothat allows you to block update REPORT requests against certain paths in the repository. It expects the paths in the REPORT request to be absolute URLs. Serf based clients send relative URLs instead of absolute URLs in many...

Mandriva Linux Security Advisory : mediawiki (MDVSA-2013:290)

Updated mediawiki packages fix security vulnerabilities : Kevin Israel (Wikipedia user PleaseStand) identified and reported two vectors for injecting JavaScript in CSS that bypassed MediaWiki's blacklist (CVE-2013-4567, CVE-2013-4568). Internal review while debugging a site issue discovered that...

Mandriva Linux Security Advisory : kernel (MDVSA-2013:291)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted...

Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)

Updated gimp package fixes security vulnerabilities : An integer overflow flaw and a heap-based buffer overflow were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the....

Mandriva Linux Security Advisory : owncloud (MDVSA-2013:289)

Updated owncloud package fixes security vulnerability : Possible security bypass on admin page under certain circumstances and MariaDB (CVE-2013-6403). The owncloud package has been updated to version 5.0.13, fixing this and many other...

Tftpd32 Client Side Format String

...

Mandriva Linux Security Advisory : bugzilla (MDVSA-2013:285)

Multiple vulnerabilities was found and corrected in bugzilla : Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a...