Download
| Alert*
oval:org.secpod.oval:def:700364
It was discovered that KDE-Libs did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. This issue onl ... oval:org.secpod.oval:def:700474 It was discovered that WebKit did not properly handle certain SVGPathList data structures. If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. Several flaws were discovered in the Web ... oval:org.secpod.oval:def:17286 The host is installed with Apple Safari before 3.2.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle SVGList objects. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:700377 It was discovered that KDE-Graphics did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. oval:org.secpod.oval:def:600359 Two security issues have been discovered in kdegraphics, the graphics apps from the official KDE release. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0945 It was discovered that the KSVG animation element implementation suffers from a null pointer der ... oval:org.secpod.oval:def:102464 Libraries for the K Desktop Environment 4. oval:org.secpod.oval:def:102171 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.mitre.oval:def:7247 Several vulnerabilities have been discovered in WebKit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute arbitrary code via a docum ... oval:org.secpod.oval:def:600411 Several vulnerabilities have been discovered in webkit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute arbitrary co ... oval:org.secpod.oval:def:202174 The kdegraphics packages contain applications for the K Desktop Environment . Scalable Vector Graphics is an XML-based language to describe vector images. KSVG is a framework aimed at implementing the latest W3C SVG specifications. A use-after-free flaw was found in the KDE KSVG animation element i ... oval:org.secpod.oval:def:202009 The kdegraphics packages contain applications for the K Desktop Environment . Scalable Vector Graphics is an XML-based language to describe vector images. KSVG is a framework aimed at implementing the latest W3C SVG specifications. A use-after-free flaw was found in the KDE KSVG animation element i ... oval:org.secpod.oval:def:17287 The host is missing a security update according to Apple advisory, APPLE-SA-2009-05-12. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:36787 The host is installed with Google Chrome before 1.0.154.65 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a document with a SVGPathList data structure containing a negative index in the SVGTransformList, SVGStringList, SVGNumber ... oval:org.secpod.oval:def:36786 The host is installed with Google Chrome before 1.0.154.65 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a document with a SVGPathList data structure containing a negative index in the SVGTransformList, SVGStringList, SVGNumber ... oval:org.secpod.oval:def:36785 The host is missing a high severity security update according to Google advisory. The update is required to fix an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a document with a SVGPathList data structure containing a negative index in the SVGTr ... oval:org.secpod.oval:def:36784 The host is missing a high severity security update according to Google advisory. The update is required to fix an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a document with a SVGPathList data structure containing a negative index in the SVGTr ... oval:org.secpod.oval:def:500596 The kdegraphics packages contain applications for the K Desktop Environment . Scalable Vector Graphics is an XML-based language to describe vector images. KSVG is a framework aimed at implementing the latest W3C SVG specifications. A use-after-free flaw was found in the KDE KSVG animation element i ... oval:org.mitre.oval:def:8135 Two security issues have been discovered in kdegraphics, the graphics apps from the official KDE release. The Common Vulnerabilities and Exposures project identifies the following problems: It was discovered that the KSVG animation element implementation suffers from a null pointer dereference flaw, ... oval:org.secpod.oval:def:101555 Libraries for the K Desktop Environment 4. oval:org.secpod.oval:def:300005 Multiple vulnerabilities was discovered and corrected in kdelibs4: KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \"\0\" character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL se ... oval:org.mitre.oval:def:6923 Several vulnerabilities have been discovered in qt4-x11, a cross-platform C++ application framework. The Common Vulnerabilities and Exposures project identifies the following problems: Array index error in the insertItemBefore method in WebKit, as used in qt4-x11, allows remote attackers to execute ... oval:org.secpod.oval:def:700437 It was discovered that QtWebKit did not properly handle certain SVGPathList data structures. If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. Several flaws were discovered in the Q ... |