This bulletin summary lists two bulletins that have undergone a major revision increment.
b5cbd28894d5f322d447a52bccb3bc3d45d56b66bf0aa0b50c5fcacfa5e68f9dThis bulletin summary lists two CVEs that have undergone a major revision increment.
614443fe34c0fc3ea3dfbdff90f8cd573a6e15ec397b3a55af6abf5608d0841fThis bulletin summary lists 81 critical security updates for Microsoft Windows in June, 2017.
4fd54b85da1a13d5cb656235acd77f54703df39c512fcef9a37db05c9f651580Easy MOV Converter version 1.4.24 suffers from an enter user name buffer overflow vulnerability.
694bcbb6063093631c63503ca7e999d83a6189144c37196c22e9bc0c6f09e334Disk Pulse version 9.7.26 suffers from an add directory local buffer overflow vulnerability.
422fd6fd405bf96a6edca78c73a7390c18f4b15750cafaab2d0ffb62a593cae7WordPress Event List versions 0.7.8 and below suffer from a remote SQL injection vulnerability.
9aec120e281353f16521e0d4f4687d77949116edcf583fd9e442d14820c4db4eWhitepaper called Exploit Shellcode Development. Written in Turkish.
a6b56cfed6d55a15b543922305ae7bbbcfc042004e2f477548039457f78b5086LG has a memcpy in ASFParser::ParseHeaderExtensionObjects that does not check that the size of the copy is smaller than the size of the source buffer, resulting in an out-of-bounds heap read.
f690404919f0a56a0dd98b93cd9b75a9a17ac070cdca41f9c04a645106020710LG suffers from an out-of-bounds read in CAVIFileParser::Destroy resulting in an invalid free.
e54d8c51552352c69f73028dd3cbee2a68b6c2a64636ec156800c503f8ab68c3LG suffers from missing bounds-checking in AVI stream parsing.
ec3fc745f417d2de9b9dce5c94d09646f9d3ceda294aaff7c9b7c300791ac34dAtlassian Confluence versions 4.3.0 through 6.1.1 suffers from an access restriction bypass vulnerability.
4dabd17e0386e88f135cea2a27fb3c57e3c86da303813116e6f89462e7a9db50Red Hat Security Advisory 2017-1431-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Security Fix: An out-of-bounds access issue was found in QEMU's Cirrus CLGD 54xx VGA Emulator support. The vulnerability could occur while copying VGA data using bitblt functions. A privileged user inside a guest could use this flaw to crash the QEMU process, resulting in denial of service.
929ce65d4b0f5d7e304b55344d092f6059ead134932603c82d068bb4c225a5dbRed Hat Security Advisory 2017-1430-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm package provides the user-space component for running virtual machines that use KVM. Security Fix: An out-of-bounds r/w access issue was found in QEMU's Cirrus CLGD 54xx VGA Emulator support. The vulnerability could occur while copying VGA data via various bitblt functions. A privileged user inside a guest could use this flaw to crash the QEMU process or, potentially, execute arbitrary code on the host with privileges of the QEMU process.
d3c6b38c052faf81758299b8bdd59167b91ec5ba65303a095104ff38d31e94f1MyBB versions 1.8.12 and prior is vulnerable to a cross site scripting bug which can allow a moderator to take over an administrator's account and upload a webshell, or perform file enumeration in the instances where it is not possible to spawn a shell.
2eada83ea6a14a8c674c26d4d10c26e8ddd172236c1efa264305899384620164GStreamer suffers from a null pointer dereference vulnerability in the gst-plugins-bad plugin.
3468810ab7e2ea28debe4af3d9f8a21108429b03b6accf08511c15139b700b06
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed