Feed aggregator

CVE-2014-3671: DNS Reverse Lookup as a vector for the Bash vulnerability (CVE-2014-6271 et.al.)

BugTraq Latest Security Advisories - October 14, 2014 - 10:42am

Posted by Dirk-Willem van Gulik on Oct 14

Security Advisory

DNS Reverse Lookup as a vector for the Bash vulnerability (CVE-2014-6271 et.al.)

CVE-2014-3671

references:
CVE-2014-6271, CVE-2014-7169, CVE-2014-6277, CVE-2014-6278
CVE-2014-7186 and, CVE-2014-7187

* Summary:

Above CVEs detail a number of flaws in bash prior related to the parsing
of environment variables (aka BashBug, Shellshock). Several networked
vectors for...
Categories:

next-20141014: linux-next

Linux Kernel Updates - October 13, 2014 - 11:34pm
Version:next-20141014 (linux-next) Released:2014-10-14

Vuln: SuSE XScreenSaver Package Multiple Vulnerabilities

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
SuSE XScreenSaver Package Multiple Vulnerabilities
Categories:

Vuln: Mozilla Network Security Services CVE-2014-1490 Use After Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Mozilla Network Security Services CVE-2014-1490 Use After Free Memory Corruption Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1544 Use After Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1544 Use After Free Memory Corruption Vulnerability
Categories:

Vuln: Microsoft Windows CVE-2014-4114 OLE Package Manager Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Microsoft Windows CVE-2014-4114 OLE Package Manager Remote Code Execution Vulnerability
Categories:

Vuln: Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability
Categories:

Vuln: Network Security Services 'ssl_Do1stHandshake()' Function Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Network Security Services 'ssl_Do1stHandshake()' Function Information Disclosure Vulnerability
Categories:

Vuln: TrouSerS CVE-2012-0698 Denial Of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
TrouSerS CVE-2012-0698 Denial Of Service Vulnerability
Categories:

Vuln: PHP 'cdf_unpack_summary_info()' Function Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
PHP 'cdf_unpack_summary_info()' Function Denial of Service Vulnerability
Categories:

Vuln: PHP Fileinfo Component 'cdf_count_chain()' Function Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
PHP Fileinfo Component 'cdf_count_chain()' Function Remote Denial of Service Vulnerability
Categories:

Vuln: file Composite Document File Format Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
file Composite Document File Format Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-0181 Local Security Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Linux Kernel CVE-2014-0181 Local Security Vulnerability
Categories:

Vuln: Linux Kernel 'ipc_rcu_putref()' Function Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Linux Kernel 'ipc_rcu_putref()' Function Local Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel KVM 'virt/kvm/iommu.c' Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Linux Kernel KVM 'virt/kvm/iommu.c' Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-5045 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Linux Kernel CVE-2014-5045 Local Privilege Escalation Vulnerability
Categories:

Vuln: MIT Kerberos 5 CVE-2014-4341 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
MIT Kerberos 5 CVE-2014-4341 Remote Denial of Service Vulnerability
Categories:

Vuln: MIT Kerberos 5 CVE-2013-6800 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
MIT Kerberos 5 CVE-2013-6800 Remote Denial of Service Vulnerability
Categories:

Vuln: MIT Kerberos 5 CVE-2014-4343 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
MIT Kerberos 5 CVE-2014-4343 Remote Denial of Service Vulnerability
Categories:

Vuln: Drupal Custom Search Module Taxonomy Vocabulary Labels HTML Injection Vulnerability

Security Focus Latest Security Advisories - October 13, 2014 - 11:00pm
Drupal Custom Search Module Taxonomy Vocabulary Labels HTML Injection Vulnerability
Categories: