Searching gnu software vulnerabilities

GNU make follows symlinks when it reads a Makef

symlinks | Makefile | commands | execute | follows | allows | other | users | local | reads | stdin | which | make | GNU |

GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.


pgp4pine Pine/PGP interface version 1.75-6 does

interface | obtaining | properly | Pine/PGP | pgp4pine | Privacy | expired | version | public | Guard | check | 175-6 | does | keys | Gnu | via | see | not | has | key |

pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has expired when obtaining the keys via Gnu Privacy Guard (GnuPG), which causes the message to be sent in cleartext.


Buffer overflow in ftp daemon (ftpd) 6.2 in Deb

overflow | daemon | Buffer | ftp |

Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of service and possibly execute arbitrary code via a long SITE command.


Runtime library in GNU Ada compiler (GNAT) 3.12

compiler | library | Runtime | Ada | GNU |

Runtime library in GNU Ada compiler (GNAT) 3.12p through 3.14p allows local users to modify files of other users via a symlink attack on temporary files.


Buffer overflow in the Braille module for GNU s

overflow | Braille | screen | module | Buffer | GNU |

Buffer overflow in the Braille module for GNU screen 3.9.11, when HAVE_BRAILLE is defined, allows local users to execute arbitrary code.


Buffer overflow in freesweep in Debian GNU/Linu

environment | privileges | processing | variables | GNU/Linux | freesweep | overflow | "games" | Buffer | Debian | allows | users | local | group | gain |

Buffer overflow in freesweep in Debian GNU/Linux 3.0 allows local users to gain "games" group privileges when processing environment variables.


Unknown vulnerability in the dotlock implementa

implementation | vulnerability | mailutils | Unknown | dotlock | before |

Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to gain privileges.


CVS 1.12 and earlier on Debian GNU/Linux, when

CVS |

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method.


Stack-based buffer overflow in shar in GNU shar

Stack-based | sharutils | overflow | buffer | shar | GNU |

Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument.


Buffer overflow in GNU make for IBM AIX 4.3.3,

overflow | Buffer | make | AIX | IBM | GNU |

Buffer overflow in GNU make for IBM AIX 4.3.3, when installed setgid, allows local users to gain privileges via a long CC argument.


ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0

ipmenu |

ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file.


apt-setup in Debian GNU/Linux installs the apt.

permissions | information | passwords | sensitive | GNU/Linux | apt-setup | installs | insecure | aptconf | obtain | Debian | allows | which | local | users | file | such |

apt-setup in Debian GNU/Linux installs the apt.conf file with insecure permissions, which allows local users to obtain sensitive information such as passwords.


GNU Gnump3d before 2.9.8 allows local users to

Gnump3d | before | GNU |

GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file.


Directory traversal vulnerability in GNU Gnump3

vulnerability | Directory | traversal | Gnump3d | before | GNU |

Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values".


Stack-based buffer overflow in the as_bad funct

Stack-based | messagesc | function | overflow | buffer | as_bad | GNU |

Stack-based buffer overflow in the as_bad function in messages.c in the GNU as (gas) assembler in Free Software Foundation GNU Binutils before Thursday, July 21, 2005 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code.


GNU ed before 0.3 allows local users to overwri

overwrite | open_sbuf | temporary | arbitrary | possibly | function | symlink | attack | before | allows | users | local | files | GNU | via |

GNU ed before 0.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files, possibly in the open_sbuf function.


Memory leak in the image message functionality

functionality | message | Memory | before | image | leak | ekg |

Memory leak in the image message functionality in ekg before 1:1.7~rc2-1etch1 on Debian GNU/Linux Etch allows remote attackers to cause a denial of service.


Memory leak in the token OCR functionality in e

functionality | before | Memory | token | leak | ekg | OCR |

Memory leak in the token OCR functionality in ekg before 1:1.7~rc2-1etch1 on Debian GNU/Linux Etch allows remote attackers to cause a denial of service.


server/parser/sprite_definition.cpp in GNU Gnas

server/parser/sprite_definitioncpp | Gnash | GNU |

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.


Buffer overflow in the safer_name_suffix functi

safer_name_suffix | unspecified | "crashing | resulting | overflow | function | vectors | impact | attack | stack" | Buffer | GNU | tar | has |

Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack."


Software vulnerabilities results 1 to 20 of 92     
Page: 12345