Download
| Alert*
oval:org.secpod.oval:def:40400
The host is installed with Mono Framework before 4.8.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fail to properly handle the certain duplications of component data. Successful exploitation allows remote attackers to obtain sensitive informat ... oval:org.secpod.oval:def:108248 MinGW Windows cross compiled Libjpeg-turbo library. oval:org.secpod.oval:def:40401 The host is missing security update for KB4019460. This security update resolves vulnerabilities in Mono Framework. A successfully exploitation of this vulnerability could allow attackers to disclose sensitive information oval:org.secpod.oval:def:1600327 An uninitialized memory read issue was found in the way libjpeg-turbo decoded images with missing Start Of Scan JPEG markers or Define Huffman Table JPEG markers. A remote attacker could create a specially crafted JPEG image that, when decoded, could possibly lead to a disclosure of potentially se ... oval:org.secpod.oval:def:21291 The host is missing a patch containing a security fixes, which affects the following package(s): Java oval:org.secpod.oval:def:1500334 An updated libjpeg package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is availab ... oval:org.secpod.oval:def:1500333 Updated libjpeg-turbo packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are avail ... oval:org.secpod.oval:def:701521 libjpeg-turbo: library for handling JPEG files - libjpeg6b: library for handling JPEG files libjpeg and libjpeg-turbo could be made to expose sensitive information. oval:org.secpod.oval:def:601148 Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2931 The chrome 31 development team found various issues from internal fuzzing, audits, and other studies. CVE-2013-6621 Khalil Zhani discovered a use-after-free issue in speech input handling. CVE-2013-6622 cloudfuzz ... oval:org.secpod.oval:def:16073 The host is missing a critical severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to some implementations and related to memory. Successful exploitation ... oval:org.secpod.oval:def:505463 IBM J2SE version 5.0 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security aler ... oval:org.secpod.oval:def:701515 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:701513 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:107057 MinGW Windows cross compiled Libjpeg-turbo library. oval:org.secpod.oval:def:16249 Google security researcher Michal Zalewski reported issues with JPEG format image processing with Start Of Scan (SOS) and Define HuffmanTable (DHT) markers in the libjpeg library. This could allow for the possible reading of arbitrary memory content as well as cross-domain image theft. oval:org.secpod.oval:def:70460 BM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. oval:org.secpod.oval:def:16089 The host is missing a critical severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to some implementations and related to memory. Successful exploitation ... oval:org.secpod.oval:def:501153 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. It also contains simple client programs for accessing the libjpeg functions. An uninitialized memory read issue was found in the way libjpeg-turbo decoded images with missing Start Of Scan JPEG markers or Define ... oval:org.secpod.oval:def:501155 The libjpeg package contains a library of functions for manipulating JPEG images. It also contains simple client programs for accessing the libjpeg functions. An uninitialized memory read issue was found in the way libjpeg decoded images with missing Start Of Scan JPEG markers. A remote attacker co ... oval:org.secpod.oval:def:106238 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. oval:org.secpod.oval:def:39850 The host is missing security update for KB4014652. This security update resolves vulnerabilities in Microsoft Silverlight. A successfully exploitation of this vulnerability could allow attackers to disclose sensitive information oval:org.secpod.oval:def:39851 The host is missing security update for KB4014652. This security update resolves vulnerabilities in Microsoft Silverlight. A successfully exploitation of this vulnerability could allow attackers to disclose sensitive information oval:org.secpod.oval:def:16051 The host is installed with Google Chrome before 31.0.1650.48 and is prone to an information disclosure vulnerability. The flaw is present in get_sos function in jdmarker.c, which fails to properly handle the certain duplications of component data. Successful exploitation allows remote attackers to o ... oval:org.secpod.oval:def:16055 The host is missing a critical severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to some implementations and related to memory. Successful exploitation ... oval:org.secpod.oval:def:601284 Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service. oval:org.secpod.oval:def:39849 The host is missing security update for KB4014652. This security update resolves vulnerabilities in Microsoft Silverlight. A successfully exploitation of this vulnerability could allow attackers to disclose sensitive information oval:org.secpod.oval:def:106267 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. oval:org.secpod.oval:def:505652 IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security ale ... oval:org.secpod.oval:def:16067 The host is installed with Mono Framework before 4.8.1, Google Chrome before 31.0.1650.48, Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2 or SeaMonkey before 2.23 and is prone to an information disclosure vulnerability. The flaw is present in get_sos function in j ... oval:org.secpod.oval:def:505656 This update corrects several security vulnerabilities in the IBM Java Runtime Environment shipped as part of Red Hat Network Satellite Server 5.4, 5.5, and 5.6. In a typical operating environment, these are of low security risk as the runtime is not used on untrusted applets. Several flaws were fixe ... oval:org.secpod.oval:def:202985 The libjpeg package contains a library of functions for manipulating JPEG images. It also contains simple client programs for accessing the libjpeg functions. An uninitialized memory read issue was found in the way libjpeg decoded images with missing Start Of Scan JPEG markers. A remote attacker co ... oval:org.secpod.oval:def:202982 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. It also contains simple client programs for accessing the libjpeg functions. An uninitialized memory read issue was found in the way libjpeg-turbo decoded images with missing Start Of Scan JPEG markers or Define ... oval:org.secpod.oval:def:107064 MinGW Windows cross compiled Libjpeg-turbo library. oval:org.secpod.oval:def:16035 The host is installed with Google Chrome before 31.0.1650.48 and is prone to an information disclosure vulnerability. The flaw is present in get_sos function in jdmarker.c, which fails to properly handle the certain duplications of component data. Successful exploitation allows remote attackers to o ... oval:org.secpod.oval:def:108505 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. oval:org.secpod.oval:def:505264 IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security ale ... oval:org.secpod.oval:def:505541 Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the ... oval:org.secpod.oval:def:400567 Chromium was updated to 31.0.1650.57: Stable channel update: - Security Fixes: * CVE-2013-6632: Multiple memory corruption issues. - Update to Chromium 31.0.1650.48 Stable Channel update: - Security fixes: * CVE-2013-6621: Use after free related to speech input elements.. * CVE-2013-6622: Use after ... oval:org.secpod.oval:def:1300251 Updated libjpeg packages fix security vulnerabilities: A Heap-based buffer overflow was found in the way libjpeg-turbo decompressed certain corrupt JPEG images in which the component count was erroneously set to a large value. An attacker could create a specially-crafted JPEG image that, when opened ... oval:org.secpod.oval:def:39820 The host is missing security update for KB4015549.This security update resolves multiple vulnerabilities in Microsoft windows that could allow attackers to execute arbitrary code in the context of the current user. oval:org.secpod.oval:def:400570 Security and bugfix update to Chromium 31.0.1650.57 - Update to Chromium 31.0.1650.57: - Security Fixes: * CVE-2013-6632: Multiple memory corruption issues. - Update to Chromium 31.0.1650.48 Stable Channel update: - Security fixes: * CVE-2013-6621: Use after free related to speech input elements.. * ... oval:org.secpod.oval:def:39821 The host is missing an important security update KB4015550 oval:org.secpod.oval:def:16041 The host is missing a critical severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to some implementations and related to memory. Successful exploitation ... oval:org.secpod.oval:def:39818 The host is missing an important security update KB4015551 oval:org.secpod.oval:def:39825 The host is missing an important security update KB4015583 oval:org.secpod.oval:def:39822 The host is missing an important security update KB4015219 oval:org.secpod.oval:def:39824 The host is missing an important security update KB4015221 oval:org.secpod.oval:def:39823 The host is missing an important security update KB4015217 oval:org.secpod.oval:def:16274 Google security researcher Michal Zalewski reported issues with JPEG format image processing with Start Of Scan (SOS) and Define HuffmanTable (DHT) markers in the libjpeg library. This could allow for the possible reading of arbitrary memory content as well as cross-domain image theft. oval:org.secpod.oval:def:16083 The host is installed with Google Chrome before 31.0.1650.48, Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, SeaMonkey before 2.23, Java SE 5.0 through 5.0u61, 6.0 through 6u71, 7.0 through 7u51, 8.0, Windows vista, server 2008, server 2008 R2, win 7, win server ... oval:org.secpod.oval:def:39852 The host is missing an important security update KB4017094 oval:org.secpod.oval:def:17037 The host is missing a security update according to Apple advisory, APPLE-SA-2014-02-25-1. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle certain vectors related to memory and crafted data. Successful exploitation allows attacke ... |