OVAL Definitions - Source: Mitre

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows r... oval:org.mitre.oval:def:10691 Vulnerability unix
Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local use... oval:org.mitre.oval:def:10774 Vulnerability unix
Integer overflow in the MathML component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0... oval:org.mitre.oval:def:10794 Vulnerability unix
Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 might allow context-dependent attackers... oval:org.mitre.oval:def:10810 Vulnerability unix
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, ... oval:org.mitre.oval:def:10817 Vulnerability unix
Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execu... oval:org.mitre.oval:def:10822 Vulnerability unix
Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and J... oval:org.mitre.oval:def:10840 Vulnerability unix
Integer overflow in the WP6GeneralTextPacket::_readContents function in WordPerfect Document importer/exporter (libwpd) ... oval:org.mitre.oval:def:10862 Vulnerability unix
Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file. oval:org.mitre.oval:def:10867 Vulnerability unix
Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attacker... oval:org.mitre.oval:def:10882 Vulnerability unix
Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, ... oval:org.mitre.oval:def:10885 Vulnerability unix
Integer overflow in the do_replace function in netfilter for Linux before 2.6.16-rc3, when using "virtualization solutio... oval:org.mitre.oval:def:10945 Vulnerability unix
Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and T... oval:org.mitre.oval:def:10952 Vulnerability unix
Integer overflow in Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via cra... oval:org.mitre.oval:def:10957 Vulnerability unix
Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree... oval:org.mitre.oval:def:11011 Vulnerability unix
Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Ki... oval:org.mitre.oval:def:11012 Vulnerability unix
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image... oval:org.mitre.oval:def:11029 Vulnerability unix
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1,... oval:org.mitre.oval:def:11043 Vulnerability unix
Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assiste... oval:org.mitre.oval:def:11067 Vulnerability unix
Integer overflow in memory allocation routines in PHP before 5.1.6, when running on a 64-bit system, allows context-depe... oval:org.mitre.oval:def:11086 Vulnerability unix
Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cau... oval:org.mitre.oval:def:11129 Vulnerability unix
Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x t... oval:org.mitre.oval:def:11145 Vulnerability unix
Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2... oval:org.mitre.oval:def:11149 Vulnerability unix
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execu... oval:org.mitre.oval:def:11175 Vulnerability unix
Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows loca... oval:org.mitre.oval:def:11214 Vulnerability unix
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2... oval:org.mitre.oval:def:11266 Vulnerability unix
Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers... oval:org.mitre.oval:def:11276 Vulnerability unix
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphi... oval:org.mitre.oval:def:11289 Vulnerability unix
Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to cause a denial of service ... oval:org.mitre.oval:def:11305 Vulnerability unix
Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey before 1.0.8 allows remote attackers to trigger a ... oval:org.mitre.oval:def:11313 Vulnerability unix

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html