OVAL Definitions - Family: unix

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow conte... oval:org.mitre.oval:def:10988 Vulnerability unix
Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial o... oval:org.mitre.oval:def:10949 Vulnerability unix
Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) pr... oval:org.mitre.oval:def:10938 Vulnerability unix
Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow remote attackers to execute arbitrary code via... oval:org.mitre.oval:def:10849 Vulnerability unix
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to ex... oval:org.mitre.oval:def:10842 Vulnerability unix
Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause ... oval:org.mitre.oval:def:10804 Vulnerability unix
Multiple integer overflows in the (1) user_info_callback, (2) user_endrow_callback, and (3) gst_pngdec_task functions (e... oval:org.mitre.oval:def:10798 Vulnerability unix
Multiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in ... oval:org.mitre.oval:def:10795 Vulnerability unix
Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several windo... oval:org.mitre.oval:def:10771 Vulnerability unix
Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent atta... oval:org.mitre.oval:def:10702 Vulnerability unix
Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to re... oval:org.mitre.oval:def:10667 Vulnerability unix
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of se... oval:org.mitre.oval:def:10583 Vulnerability unix
Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and ot... oval:org.mitre.oval:def:10571 Vulnerability unix
Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, an... oval:org.mitre.oval:def:10534 Vulnerability unix
Multiple integer overflows in the rb_ary_store function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before... oval:org.mitre.oval:def:10524 Vulnerability unix
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protoco... oval:org.mitre.oval:def:10476 Vulnerability unix
Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbit... oval:org.mitre.oval:def:10399 Vulnerability unix
Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c... oval:org.mitre.oval:def:10369 Vulnerability unix
Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to re... oval:org.mitre.oval:def:10320 Vulnerability unix
Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attacke... oval:org.mitre.oval:def:10281 Vulnerability unix
Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4... oval:org.mitre.oval:def:10179 Vulnerability unix
Multiple integer overflows in the PyOS_vsnprintf function in Python/mysnprintf.c in Python 2.5.2 and earlier allow conte... oval:org.mitre.oval:def:10170 Vulnerability unix
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors re... oval:org.mitre.oval:def:10149 Vulnerability unix
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a cra... oval:org.mitre.oval:def:10141 Vulnerability unix
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attacker... oval:org.mitre.oval:def:10068 Vulnerability unix
Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.... oval:org.mitre.oval:def:11309 Vulnerability unix
Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denial of service (memory consumptio... oval:org.mitre.oval:def:10581 Vulnerability unix
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to b... oval:org.mitre.oval:def:8765 Vulnerability unix
Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via... oval:org.mitre.oval:def:11350 Vulnerability unix
Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via (1)... oval:org.mitre.oval:def:11188 Vulnerability unix

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html