Feed aggregator

Vuln: Oracle WebLogic Server CVE-2016-3586 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Oracle WebLogic Server CVE-2016-3586 Remote Code Execution Vulnerability
Categories:

Vuln: Objective Systems ASN1C CVE-2016-5080 Heap Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Objective Systems ASN1C CVE-2016-5080 Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: uclibc-ng and uclibc 'memset.S' Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
uclibc-ng and uclibc 'memset.S' Remote Code Execution Vulnerability
Categories:

Vuln: Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability
Categories:

Vuln: Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability
Categories:

Vuln: Apache Struts CVE-2016-3081 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Apache Struts CVE-2016-3081 Remote Code Execution Vulnerability
Categories:

Vuln: Apache HTTP Server CVE-2015-3183 Security Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Apache HTTP Server CVE-2015-3183 Security Vulnerability
Categories:

Vuln: Apple Mac OS X APPLE-SA-2016-07-18-1 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Apple Mac OS X APPLE-SA-2016-07-18-1 Multiple Security Vulnerabilities
Categories:

Vuln: Schneider Electric SoMachine HVAC-Application ActiveX Control Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
Schneider Electric SoMachine HVAC-Application ActiveX Control Remote Code Execution Vulnerability
Categories:

Vuln: libxml2 CVE-2015-8710 Out-of-bounds Memory Access Vulnerability

Security Focus Latest Security Advisories - July 21, 2016 - 11:00pm
libxml2 CVE-2015-8710 Out-of-bounds Memory Access Vulnerability
Categories:

CVE-2016-5399: php: out-of-bounds write in bzread()

BugTraq Latest Security Advisories - July 21, 2016 - 1:29am

Posted by Hans Jerry Illikainen on Jul 20

PHP 7.0.8, 5.6.23 and 5.5.37 does not perform adequate error handling in
its `bzread()' function:

php-7.0.8/ext/bz2/bz2.c
,----
| 364 static PHP_FUNCTION(bzread)
| 365 {
| ...
| 382 ZSTR_LEN(data) = php_stream_read(stream, ZSTR_VAL(data), ZSTR_LEN(data));
| 383 ZSTR_VAL(data)[ZSTR_LEN(data)] = '\0';
| 384
| 385 RETURN_NEW_STR(data);
| 386 }
`----

php-7.0.8/ext/bz2/bz2.c
,----
| 210 php_stream_ops php_stream_bz2io_ops...
Categories: