Ubuntu Security Notice 4099-1 - Jonathan Looney discovered that nginx incorrectly handled the HTTP/2 implementation. A remote attacker could possibly use this issue to consume resources, leading to a denial of service.
865f978ed5a19c9067c988ea171367de190ac9dfa56f46fe0cb52abb57a87e0cGentoo Linux Security Advisory 201908-19 - A vulnerability in GNU Wget might allow an attacker to execute arbitrary code. Versions less than 1.20.3 are affected.
b6bb7f96458ff0cd02453fa75c46fe271d564d04e2bbc81f7efba271e6165af9Adobe Acrobat Reader DC for Windows suffers from a double-free vulnerability due to a malformed JP2 stream.
9a967f14a6f1e3f92d0430b0da8175a9443a1f6bb06f95f6c893f913cb1083e2Red Hat Security Advisory 2019-2512-01 - Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Issues addressed include denial of service and null pointer vulnerabilities.
66dae45601e513407670b55d147f32bc4a27d324e456ec6577c9c02a26bd067bAdobe Acrobat Reader DC for Windows could trigger a free() of an uninitialized pointer due to malformed JBIG2Globals streams.
ae0772b359ffab02768fae4abf48d5cc1c91b6eaad1a3383adae69d9a008fa93Adobe Acrobat Reader DC for Windows suffers from a heap-based buffer overflow vulnerability due to a malformed JP2 stream.
ca5fb967b8533f425833f828810de3fff47fe2a53fe196cfbc6b090a8340c57aGentoo Linux Security Advisory 201908-18 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 76.0.3809.100 are affected.
da8e1314a4e0c19fa47172f5343d2ff1557790e11fe3a51ba0326a1c6f1fdd3fRed Hat Security Advisory 2019-2508-01 - Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log. Issues addressed include a buffer overflow vulnerability.
b3afc2fde596990a85bb498006b8212697f6d4f1394dd5194724f2a0c957c745Adobe Acrobat Reader DC for Windows suffers from a heap-based memory corruption vulnerability due to a malformed TTF font.
9a012aeffb26f11bea24c9661104007ea7239842aca21792a85c6ed2375496d5Adobe Acrobat Reader DC for Windows suffers from a heap-based buffer overflow vulnerability in CoolType.dll.
1b5b76abcb554728288137255ffb9b4f6af6fedf3c7573608eff03d000a1022dAdobe Acrobat Reader DC for Windows suffers from a heap-based buffer overflow vulnerability due to a malformed font stream.
6acf568071e768c56b5ef148f7730bf5687a9a244c119d138bde930bfbc158e0Adobe Acrobat Reader DC for Windows suffers from a static buffer overflow vulnerability due to a malformed font stream.
2e39d5bbec11ffe0caf3a162ae9107ba4e4d4ce4abe910138a4af9194b54b5f8Gentoo Linux Security Advisory 201908-17 - A vulnerability in ZeroMQ might allow an attacker to execute arbitrary code. Versions less than 4.3.2 are affected.
ff983506ac67f3d0b68ac47fa12ff3bafe6b65afd22f1ce1e2948c6a1218c409Red Hat Security Advisory 2019-2511-01 - MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. As usual, Oracle refuses to give details on the vulnerabilities.
15615b025aee3b3c40e30da0364fc280f16d9d8a31e8b6f7ca78d5896913e1e4Adobe Acrobat Reader DC for Windows suffers from a heap-based buffer overflow vulnerability while processing malformed PDF files.
5dcc1781a46dd55c628882e3e2dc0892c7f58e556bf2c98bea7baaf35d1a37e0Adobe Acrobat Reader DC for Windows suffers from a use-after-free vulnerability due to a malformed JP2 stream.
3e642425819544e34c74b778375e090c2da2cda91337ec3e0f6dff0d85bfc4e0Gentoo Linux Security Advisory 201908-16 - A vulnerability in ProFTPD could result in the arbitrary execution of code. Versions less than 1.3.6-r5 are affected.
0705eaa787d0511740f81c91ca5ee888e400029e41311c4dac2324cc6f6feeb1Red Hat Security Advisory 2019-2507-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a buffer overflow vulnerability.
ba65daf762bcd7d41c3f00008538b5b88f7b944151b1616f3b39604af20d47feAdobe Acrobat Reader DC for Windows suffers from a heap-based out-of-bounds read vulnerability due to a malformed JP2 stream.
6f5435eefbd900498a34036b49b7467c6ab111b70ac6182868e91c8cc4ccce20Gentoo Linux Security Advisory 201908-15 - A vulnerability in ZNC allows users to escalate privileges. Versions less than 1.7.4_rc1 are affected.
b8bd2b67303beb9f310a100e58c4fd04f651e997fe20ebf33c665ae5d1b72dccMicrosoft Font Subsetting DLL suffers from a heap-based out-of-bounds read vulnerability in FixSbitSubTableFormat1.
227cc5ff3a07c88a3b14f3890b2bb30fa613cfb16d0ecb9e4e0ffa9023c914aeGentoo Linux Security Advisory 201908-14 - Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation. Versions less than 0.115-r2 are affected.
72057a572ca36c14f97562a44eb2096c759400201674f862cc97946ccd12b61bRed Hat Security Advisory 2019-2506-01 - Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log. Issues addressed include a buffer overflow vulnerability.
7f4d6a292c65865bbd24165451fd9643644fcfd9f80d77fcf316e2784021601eMicrosoft Font Subsetting DLL suffers from a heap corruption vulnerability in MakeFormat12MergedGlyphList.
9ad072537e464902161bb1d614b4ef7d91d6dfd438e7a9b6bda50e71f2ad8176Microsoft Font Subsetting DLL suffers from a heap-based out-of-bounds read vulnerability in WriteTableFromStructure.
b204042a95fcd480c897cdcace659b0082a8aacc0c60176198f2f1268aeb6155
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed