Dernières alertes de sécurité
MDVSA-2012:001: fcgi
> date : 2012-01-03 09:16:48
> lien :
http://www.mandriva.com/br/support/security/advisories?name=...
A vulnerability has been found and corrected in fcgi:
The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as used by
CGI::Fast, uses environment variable values from one request during
processing of a later request, which allows remote attackers to bypass
authentication via crafted HTTP headers (CVE-2011-2766).
The updated packages have been patched to correct this issue.
MDVSA-2012:002: t1lib
> date : 2012-01-03 09:16:48
> lien :
http://www.mandriva.com/br/support/security/advisories?name=...
A vulnerability has been found and corrected in t1lib:
t1lib 5.1.2 and earlier uses an invalid pointer in conjunction with
a dereference operation, which allows remote attackers to execute
arbitrary code via a specially crafted Type 1 font in a PDF document
(CVE-2011-0764).
The updated packages have been patched to correct this issue.
Vuln: V8 JavaScript Engine Hash Collision Denial Of Service Vulnerability
> date : 2012-01-03 08:18:09
> lien :
http://www.securityfocus.com/bid/51235
V8 JavaScript Engine Hash Collision Denial Of Service Vulnerability
|
page 1 |
page suivante |
Sécurité
Classement
