Monthly Archive: December 2017

In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from...

In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x83000088. Date...

validate_form_preferences in admin/preferences.php in BlogoText through 3.7.6 allows attackers to bypass intended access restrictions via vectors related to an e-mail address field. Date published : 2017-12-20 https://github.com/BlogoText/blogotext/commit/256041d8cab2fdc50678f4d49d916fea25cdb4fd https://github.com/BlogoText/blogotext/issues/345

Information Disclosure vulnerability in creer_fichier_zip in admin/maintenance.php in BlogoText through 3.7.6 allows remote attackers to defeat a filename-randomization protection mechanism, and read backup archives on Windows servers, by providing the archiv~1.zip name (aka an...

Cross site scripting (XSS) vulnerability in the markup_clean_href function in inc/conv.php in BlogoText through 3.7.6 allows remote attackers to inject arbitrary JavaScript via a comment. Date published : 2017-12-20 https://github.com/BlogoText/blogotext/commit/7c6f74e43008b2397160775696c67acbab87911d https://github.com/BlogoText/blogotext/issues/345

The lazy_initialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernel#open, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a ‘|’ character, a different vulnerability than CVE-2017-17405. NOTE:...

In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c. Date published : 2017-12-20 http://www.securityfocus.com/bid/102898 https://www.debian.org/security/2017/dsa-4077

In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no ‘’ character after the version string. Date published : 2017-12-20 https://www.debian.org/security/2017/dsa-4077 http://www.openwall.com/lists/oss-security/2017/12/19/5

In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c. Date published : 2017-12-20 https://www.debian.org/security/2017/dsa-4077 http://www.openwall.com/lists/oss-security/2017/12/19/5

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected bits-per-pixel value for an RGBA image. Date published : 2017-12-20 http://www.securityfocus.com/bid/102765 https://www.debian.org/security/2017/dsa-4077

In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_brun function in plug-ins/file-fli/fli.c. Date published : 2017-12-20 https://www.debian.org/security/2017/dsa-4077 http://www.openwall.com/lists/oss-security/2017/12/19/5

In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in plug-ins/common/file-gbr.c in the gbr import parser, related to mishandling of UTF-8 data. Date published : 2017-12-20 http://www.securityfocus.com/bid/102899 https://www.debian.org/security/2017/dsa-4077

In GraphicsMagick 1.3.27a, there is a buffer over-read in ReadPALMImage in coders/palm.c when QuantumDepth is 8. Date published : 2017-12-20 http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a https://sourceforge.net/p/graphicsmagick/bugs/529/

In GraphicsMagick 1.3.27a, there is a heap-based buffer over-read in ReadOneJNGImage in coders/png.c, related to oFFs chunk allocation. Date published : 2017-12-20 http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=8e3d2264109c https://sourceforge.net/p/graphicsmagick/bugs/530/