Monthly Archive: June 2017

IBM Informix Dynamic Server 12.1 could allow an authenticated user to cause a buffer overflow that would write large assertion fail files to the server. Done enough times, this could use large parts of...

In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack. Date published : 2017-06-29 http://www.securityfocus.com/bid/99359 http://www.debian.org/security/2017/dsa-3903

In LibSass 3.4.5, there is a heap-based buffer over-read in the function json_mkstream() in sass_context.cpp. A crafted input will lead to a remote denial of service attack. Date published : 2017-06-29 https://bugzilla.redhat.com/show_bug.cgi?id=1466411

In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by...

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack. Date published : 2017-06-29 https://security.gentoo.org/glsa/201804-13 https://bugzilla.redhat.com/show_bug.cgi?id=1464692

In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack. Date published : 2017-06-29 https://security.gentoo.org/glsa/201804-13 https://bugzilla.redhat.com/show_bug.cgi?id=1464687

In mpg123 1.25.0, there is a heap-based buffer over-read in the convert_latin1 function in libmpg123/id3.c. A crafted input will lead to a remote denial of service attack. Date published : 2017-06-29 https://bugzilla.redhat.com/show_bug.cgi?id=1465819

SQL injection vulnerability in the administrative backend in Piwigo through 2.9.1 allows remote users to execute arbitrary SQL commands via the cat_false or cat_true parameter in the comments or status page to cat_options.php. Date...

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to unlock albums via a crafted request. Date published : 2017-06-29 http://www.securityfocus.com/bid/99362 https://github.com/Piwigo/Piwigo/commit/03a8329b89c0d196ecdb54227a8113f24555ffc0

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to change a private album to public via a crafted request. Date published :...

Piwigo through 2.9.1 allows remote attackers to obtain sensitive information about the descriptive name of a permalink by examining the redirect URL that is returned in a request for the permalink ID number of...

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to delete permalinks via a crafted request. Date published : 2017-06-29 http://www.securityfocus.com/bid/99383 https://github.com/Piwigo/Piwigo/commit/03a8329b89c0d196ecdb54227a8113f24555ffc0

admin/profile.php in GetSimple CMS 3.x has XSS in a name field. Date published : 2017-06-29 https://github.com/GetSimpleCMS/GetSimpleCMS/issues/1234

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call. Date published : 2017-06-29 https://www.debian.org/security/2017/dsa-4042 https://rt.cpan.org/Public/Bug/Display.html?id=122246