Ubuntu Security Notice 3282-1 - It was discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code.
c20e6157da255e5691fafdbd29651840fab9fa9b06cfa6230726306226742d1aUbuntu Security Notice 3281-1 - Pierre Ernst discovered that Apache Fop incorrectly handled XML external entities. A remote attacker could possibly use this issue to obtain sensitive files from the filesystem, or cause a denial of service.
96534975d89ea16447ab1b43e9819d07d885dc2eda79326467583591d02797afUbuntu Security Notice 3280-1 - Lars Krapf and Pierre Ernst discovered that Apache Batik incorrectly handled XML external entities. A remote attacker could possibly use this issue to obtain sensitive files from the filesystem, or cause a denial of service.
e1e1e8865f980dc06df57b6325f1c29578143f1f4a46dd0d2421e9ca30d67d13Ubuntu Security Notice 3279-1 - It was discovered that the Apache mod_session_crypto module was encrypting data and cookies using either CBC or ECB modes. A remote attacker could possibly use this issue to perform padding oracle attacks. Maksim Malyutin discovered that the Apache mod_auth_digest module incorrectly handled malicious input. A remote attacker could possibly use this issue to cause Apache to crash, resulting in a denial of service. Various other issues were also addressed.
bbdfa79eba72bc753893522747a5eb3bf4a031465d01c2e221814594c43835baI, Librarian PDF Manager versions 4.6 and below along with version 4.7 suffer from command injection, server-side request forgery, cross site scripting, and directory enumeration vulnerabilities.
7c325bdc1f88a6aa340e376d6463a768c9678e77c7cc0d563169c21c0f5a558fVeritas Netbackup version 8.0 suffers from remote command execution, file write, and DNS bypass vulnerabilities.
9441d41af1473797296fc43ddefaf261661c75dd930e41a49cd61d55438c61b7Google Nexus 9 SensorHub firmware suffers from a downgrade vulnerability.
2e333ae95fe2406ff357ae559841fa415ab16be941f0e11c2c726abab2919d30Debian Linux Security Advisory 3846-1 - Several issues were discovered in libytnef, a library used to decode application/ms-tnef e-mail attachments. Multiple heap overflows, out-of-bound writes and reads, NULL pointer dereferences and infinite loops could be exploited by tricking a user into opening a maliciously crafted winmail.dat file.
577b9b3ad2543c0f2b7f98bfb730def0edccd26ed743626f08539aa256ff2d93Debian Linux Security Advisory 3845-1 - Guido Vranken discovered that incorrect memory management in libtirpc, a transport-independent RPC library used by rpcbind and other programs may result in denial of service via memory exhaustion (depending on memory management settings).
7a8b8ee3c3a5ef9eae5d5ea439c099ab96484001aea09ca6539efce6324e98a8Red Hat Security Advisory 2017-1204-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges. It was found that the JAXP component of OpenJDK failed to correctly enforce parse tree size limits when parsing XML document. An attacker able to make a Java application parse a specially crafted XML document could use this flaw to make it consume an excessive amount of CPU and memory.
026a2f73a4a83285e782b73be66c71ff69818cef1c112b02e27f65761d6b2f98This bulletin summary lists the security update for Microsoft Malware Protection Engine to address a recently discovered zero day vulnerability from May of 2017.
11cdda08fce58e898bf956bec66db76fb7fa50ea4531e08200a7b627470148e8WordPress Clean Login plugin versions prior to 1.8 suffer from a cross site request forgery vulnerability.
6d8f8eb3f120167733389394fe39eff5500ef278c7bbafa598e88a0410e386dcLG suffers from a failure to initialize pointer in the mkvparser::Tracks constructor.
dc1f3e39b2a0f4669be5404225183524e54f78ef582455769f350076b5800172LG suffers from multiple heap buffer overflow vulnerabilities in mkvparser::Block::Block.
702a3130b0cc9fea19b21e7a228efefb25a5c5f5d437d3d4311fb47fdbfe04b2During EBML node parsing the EBML element_size is used unvalidated to allocate a stack buffer to store the element contents. Since calls to alloca simply compile to a subtraction from the current stack pointer, for large sizes this can result in memory corruption and potential remote-code-execution in the mediaserver process. Tested on an LG-G4 with firmware MRA58K.
fead583452cca3b0aff0b1e5d1c60e83a1131d969e79b214c620dd57f7a19180
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed