[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

111017

 
 

909

 
 

86402

 
 

136

 
 
Paid content will be excluded from the download.

Filter
Matches : 32104 Download | Alert*

Josh Duart of the Google Security Team discovered heap-based buffer overflow flaws in JasPer, a library for manipulating JPEG-2000 files, which could lead to denial of service or the execution of arbitrary code.

An off-by-one flaw, leading to a heap-based buffer overflow , and an unrestricted stack memory use flaw were found in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

It was discovered that malicious web applications could use the Expression Language to bypass protections of a Security Manager as expressions were evaluated within a privileged code section.

It was discovered that malicious web applications could use the Expression Language to bypass protections of a Security Manager as expressions were evaluated within a privileged code section.

jasper: Library for manipulating JPEG-2000 files JasPer could be made to crash or run programs as your login if it opened a specially crafted file.

ghostscript: PostScript and PDF interpreter Details: USN-2434-1 fixed a vulnerability in JasPer. This update provides the corresponding fix for the JasPer library embedded in the Ghostscript package. Original advisory Ghostscript could be made to crash or run programs as your login if it opened a specially crafted file.

jasper: Library for manipulating JPEG-2000 files JasPer could be made to crash or run programs as your login if it opened a specially crafted file.

ghostscript: PostScript and PDF interpreter Details: USN-2483-1 fixed vulnerabilities in JasPer. This update provides the corresponding fix for the JasPer library embedded in the Ghostscript package. Original advisory Ghostscript could be made to crash or run programs as your login if it opened a specially crafted file.

tomcat6: Servlet and JSP engine Several security issues were fixed in Tomcat.

tomcat7: Servlet and JSP engine Several security issues were fixed in Tomcat.


Pages:      Start    2    3    4    5    6    7    8    9    10    11    12    13    14    15    ..   3210

© SecPod Technologies