CVE-2017-6888 (debian_linux, fedora, flac)

An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file.

View Full Alert

CVE-2017-13748 (debian_linux, fedora, jasper)
There are lots of memory leaks in JasPer 2.0.12, triggered in the function jas_strdup() in base/jas_string.c, that will lead to a remote denial of service attack. View Full Alert
CVE-2017-16845 (debian_linux, qemu, ubuntu_linux)
hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access. View Full Alert
CVE-2017-15873 (busybox, debian_linux, ubuntu_linux)
The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation. View Full Alert

410-897-9494
Receive RedZone Security Updates in Your InboxContact Us

CVE-2017-6888 (debian_linux, fedora, flac)

Leave a Reply Cancel reply

Related Posts

Leave a Reply Cancel reply