Red Hat Security Advisory 2018-1169-01 - The corosync packages provide the Corosync Cluster Engine and C APIs for Red Hat Enterprise Linux cluster software. Issues addressed include an integer overflow vulnerability.
526f77be2de1cc0a0cc6e1e9db6e4adeVX Search version 10.6.18 suffers from a local buffer overflow vulnerability.
fe4837393530996ec6165178bf770ed6PDFunite version 0.41 suffers from a local buffer overflow vulnerability.
6e660a5a52709c5d15f265b729b70887RSVG versions 2.40.13 and 2.42.2 suffer from a buffer overflow vulnerability.
da591204c4afb9e608eb34b47f482c87Easy File Sharing Web Server version 7.2 suffers from a buffer overflow vulnerability.
2606153988d6fa631cb09de63eb0e7dbZortam MP3 Media Studio version 23.45 suffers from a local buffer overflow vulnerability.
57b3fb09e515572c9eabe2f11d7ab571CloudMe Sync version 1.11.0 suffers from a local buffer overflow vulnerability.
9773e6fb4fc7d15b4c71b7b2c8bbca16Red Hat Security Advisory 2018-1104-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. The following packages have been upgraded to a later upstream version: qemu-kvm-rhev. Issues addressed include buffer overflow, denial of service, randomization, and use-after-free vulnerabilities.
cb83aadca0e0b644bf1b0357f3ac4a0bRed Hat Security Advisory 2018-1062-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow, bypass, denial of service, randomization, and use-after-free vulnerabilities.
6603183d966425b80f2cb500418638f5SysGauge Pro version 4.6.12 suffers from a local buffer overflow vulnerability.
c2dc1ca6a57d55cbee09d1887b42672eRed Hat Security Advisory 2018-0805-01 - The glibc packages provide the standard C libraries, POSIX thread libraries, standard math libraries, and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Issues addressed include buffer overflow and denial of service vulnerabilities.
0b3e035667ffebd039eca76168496fa2Red Hat Security Advisory 2018-0998-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Issues addressed include an overflow issue.
0460d02f78c5236ec33d13a700d9ec15Red Hat Security Advisory 2018-0676-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include buffer overflow, bypass, denial of service, and use-after-free vulnerabilities.
7e41c6a077e7ee63c7f9eaed29c09a21Red Hat Security Advisory 2018-0855-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow and denial of service vulnerabilities.
a74319ccd2f59c2d32b91a40e155782aRed Hat Security Advisory 2018-0654-01 - The kernel-alt packages provide the Linux kernel version 4.x. The following packages have been upgraded to a later upstream version: kernel-alt. Issues addressed include buffer overflow, bypass, and denial of service vulnerabilities.
82b374fa56da7125a045baa707e307b1DVD X Player Standard version 5.5.3.9 suffers from a buffer overflow vulnerability.
39e8d6ce4811fb1c8469f42fba592fc3GoldWave version 5.70 SEH unicode local buffer overflow exploit.
544a4441dc2643b7e93657646a616123Red Hat Security Advisory 2018-0647-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.7.0. Issues addressed include a buffer overflow vulnerability.
bdb3968215778e7a0a67038c95f8e336Debian Linux Security Advisory 4167-1 - A buffer-overflow vulnerability was discovered in Sharutils, a set of utilities handle Shell Archives. An attacker with control on the input of the unshar command, could crash the application or execute arbitrary code in the its context.
f45edf0e1ca9bff52faa495942d41a56Red Hat Security Advisory 2018-0648-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.7.0. Issues addressed include a buffer overflow vulnerability.
09f5e6958b653eba3993557fed221c1aUbuntu Security Notice 3620-1 - It was discovered that the netlink 802.11 configuration interface in the Linux kernel did not properly validate some attributes passed from userspace. A local attacker with the CAP_NET_ADMIN privilege could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that a buffer overflow existed in the ioctl handling code in the ISDN subsystem of the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.
92be1e1f7075a80057dfacd0385d5b15PMS version 0.42 suffers from a buffer overflow vulnerability.
040caf5340322857b30d22ea4686e161FreeBSD Security Advisory - Insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Characters that reference this data can be displayed on the screen, effectively disclosing kernel memory. Unprivileged users may be able to access privileged kernel data. Such memory might contain sensitive information, such as portions of the file cache or terminal buffers. This information might be directly useful, or it might be leveraged to obtain elevated privileges in some way; for example, a terminal buffer might include a user-entered password.
95dfa2586849e8c84b5f22b2340cdc03Apple Security Advisory 2018-3-29-8 - iCloud for Windows 7.4 is now available and addresses buffer overflow, code execution, and denial of service vulnerabilities.
5159368594b492a7a1fa30f912b8bb64Apple Security Advisory 2018-3-29-7 - iTunes 12.7.4 for Windows is now available and addresses buffer overflow, code execution, and denial of service vulnerabilities.
0b10f3fc739228ad2a5ae93a2ff0fa41
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed