Gentoo Linux Security Advisory 201203-2 - Multiple vulnerabilities have been found in cURL, the worst of which might allow remote execution of arbitrary code. Versions less than 7.24.0 are affected.
7b5ecdbb388e0858c11630abfa52e210bfeb14d1165e559b732b7e058d03afaeGentoo Linux Security Advisory 201203-1 - A buffer overflow in spamdyke might allow remote attackers to execute arbitrary code. Versions less than 4.3.0 are affected.
8493959f7b9b6eb1b8eecd40808b0cd53facf847fb99c382c5f2c8014cecbb7dUbuntu Security Notice 1390-1 - Dan Rosenberg reported errors in the OSS (Open Sound System) MIDI interface. A local attacker on non-x86 systems might be able to cause a denial of service. Dan Rosenberg reported errors in the kernel's OSS (Open Sound System) driver for Yamaha FM synthesizer chips. A local user can exploit this to cause memory corruption, causing a denial of service or privilege escalation. Various other issues were also addressed.
321e7b808110b9ee28d564cfc84f87faca8f0b2f114b33ca7257e47dd0b69337Debian Linux Security Advisory 2427-1 - Two security vulnerabilities related to EXIF processing were discovered in ImageMagick, a suite of programs to manipulate images.
c305684477a383d74fa7e715692634c1bb41c63a394c41c6f920e4364c62f41dUbuntu Security Notice 1389-1 - Paolo Bonzini discovered a flaw in Linux's handling of the SG_IO ioctl command. A local user, or user in a VM could exploit this flaw to bypass restrictions and gain read/write access to all data on the affected block device. Sasha Levin discovered a flaw in the permission checking for device assignments requested via the kvm ioctl in the Linux kernel. A local user could use this flaw to crash the system causing a denial of service. Various other issues were also addressed.
7d7009f9984a3c1066f9fbdae728ca6f232f4e960984205099433cf15e0c787b
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed