Apple Security Advisory 2017-03-28-2 - This advisory provides additional information for APPLE-SA-2017-03-22-1. iTunes for Windows 12.6 addresses multiple vulnerabilities in various included software.
5e917bb7e6f9edc636297d6a5ef7728eaba569232b19fbb441916d312716221aApple Security Advisory 2017-03-28-1 - iCloud for Windows 6.2 is now available and addresses information disclosure, memory corruption, and various other vulnerabilities.
41c78bd843877663508f8fd5d2e712c16049e0e80c8f87fb341a44fd9ae1a3edUbuntu Security Notice 3244-1 - Hanno Boeck discovered that GStreamer Base Plugins did not correctly handle certain malformed media files. If a user were tricked into opening a crafted media file with a GStreamer application, an attacker could cause a denial of service via application crash.
b40cdf288bb3cb69187341104e38e859e49e3de86d008f11c28e0eac8d5f3949Ubuntu Security Notice 3247-1 - St=E9phane Graber discovered that AppArmor incorrectly unloaded some profiles when restarted or upgraded, contrary to expected behavior.
d0eae3b00dcae60fe9aa8124e2ad107cd0b3b65d59464a43c2cf8f02900a89ccDebian Linux Security Advisory 3823-1 - Ilja Van Sprundel discovered that the dmcrypt-get-device helper used to check if a given device is an encrypted device handled by devmapper, and used in eject, does not check return values from setuid() and setgid() when dropping privileges.
11ed3d35497fce0aa8208e337d18906978385a140e9058214a8d178bb172d613Ubuntu Security Notice 3245-1 - Hanno Boeck discovered that GStreamer Good Plugins did not correctly handle certain malformed media files. If a user were tricked into opening a crafted media file with a GStreamer application, an attacker could cause a denial of service via application crash.
f1e77caf8e0a58e2ce6dbed8c4b8e92814ca8f861fb84e128498c06590e8ba2aDebian Linux Security Advisory 3821-1 - Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened.
ac6dce475366bfc8982bb644156baf46b40bb24087037b4f4b84e9339e833d1aGentoo Linux Security Advisory 201703-7 - A vulnerability in Xen's bundled QEMU version might allow privilege escalation. Versions less than 4.7.1-r8 are affected.
d66376b4cac43229f126f16946ea94e52f3eb56174590d8c10f033b8b43c59caGentoo Linux Security Advisory 201703-6 - A vulnerability in Deluge might allow remote attackers to execute arbitrary code. Versions less than 1.3.14 are affected.
2b06a5ceb46b3c39e7d0275991b0275f5a8f9ca669189b8fd4770c725e11603dGentoo Linux Security Advisory 201703-5 - A vulnerability in Libtasn1 allows remote attackers to cause a Denial of Service condition. Versions less than 4.8 are affected.
96423a18f88ebc8917136e21dc92e6a32354b4955e03ff4e9699bfff0c0a954fGentoo Linux Security Advisory 201703-4 - A coding error has been found in cURL, causing the TLS Certificate Status Request extension check to always return true. Versions less than 7.53.0 are affected.
65d1387695268efc77ff50e28352c03c89f45320e5ab3ab76dddae629f504bd3Ubuntu Security Notice 3246-1 - Ilja Van Sprundel discovered that dmcrypt-get-device incorrectly checked setuid and setgid return values. A local attacker could use this issue to execute code as an administrator.
38e9d099be590b4e07920777892cc4dab780f5d5f29c49ed15af521f8533e6dc21 bytes small Linux/x86-64 execve("/bin/sh") shellcode.
2b649fc04268f3a56e68dea6ee6764232b42711822aad0cb807715bd1a143c4dVX Search Enterprise version 9.5.12 suffers from a verify email buffer overflow vulnerability.
571a76eafaa747a6756ed856dc9f0f97b2580d4f3db9b17dec9a3b7e1148619dMicrosoft Outlook suffers from an HTML email denial of service vulnerability.
df536fb9431470d67b63334422b4fe73505842670e63f7d352a00c5db691b38dIntermec PM43 industrial printer suffers from a privilege escalation vulnerability.
ae1b85cfe883429a619d40b84e5f3040ebac2c5c89f555a8ace4bd988c1afbb4Mikrotik RouterBoard version 6.38.5 suffers from a denial of service vulnerability.
55f194af2f99abcf311124e01a81b763625ad85c53e0fb1c6c687ddb10024da9
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed