Log

CVE-2017-7383 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Denial of service
Description
+ The PdfFontFactory.cpp:195:62 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
References
+ https://blogs.gentoo.org/ago/2017/03/31/podofo-four-null-pointer-dereference
+ http://www.securityfocus.com/bid/97296
Notes
CVE-2017-7468 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Certificate verification bypass
Description
+ libcurl from 7.52.0 to and including 7.53.1 would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which was established by the previous certificate (or no certificate).
+ This flaw is a regression and identical to CVE-2016-5419 reported on August 3rd 2016, but affecting a different version range.
References
+ https://curl.haxx.se/docs/adv_20170419.html
Notes
CVE-2017-7475 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Local
Type
+ Denial of service
Description
+ Cairo is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
References
+ https://bugs.freedesktop.org/show_bug.cgi?id=100763
+ http://seclists.org/oss-sec/2017/q2/151
+ https://gitlab.freedesktop.org/cairo/cairo/issues/80
Notes
+ Reproducer and report: https://bugs.freedesktop.org/attachment.cgi?id=131198
CVE-2017-7478 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Denial of service
Description
+ A security issue has been found in OpenVPN <= 2.4.1 where an unauthenticated attacker can send a packet with an unexpected payload size during SSL handshake, causing a server shutdown. Servers using tls-auth are protected against this attack as packets with an invalid HMAC are discarded before being processed by the vulnerable code.
References
+ https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits
+ https://ostif.org/the-openvpn-2-4-0-audit-by-ostif-and-quarkslab-results/
+ http://blog.quarkslab.com/security-assessment-of-openvpn.html
Notes
CVE-2017-7479 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ A security issue has been found in OpenVPN <= 2.4.1 where an authenticated attacker can crash a server using an AEAD mode cipher by sending crafted data to exhaust the packet counter.
References
+ https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits
+ https://ostif.org/the-openvpn-2-4-0-audit-by-ostif-and-quarkslab-results/
+ http://blog.quarkslab.com/security-assessment-of-openvpn.html
Notes
CVE-2017-7480 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ rkhunter downloads updates over a plain HTTP link with a version certificate that can be faked. A potential man-in-the-middle attack can lead to the execution of arbitrary code.
References
+ http://openwall.com/lists/oss-security/2017/06/29/2
Notes
CVE-2017-7484 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Information disclosure
Description
+ A security issue has been found in PostgreSQL < 9.6.3, where some selectivity estimation functions did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.
References
+ https://www.postgresql.org/about/news/1746/
Notes
CVE-2017-7485 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Man-in-the-middle
Description
+ A security issue has been found in the libpq component of PostgreSQL < 9.6.3, where the PGREQUIRESSL was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.
References
+ https://www.postgresql.org/about/news/1746/
Notes
CVE-2017-7486 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Information disclosure
Description
+ A security issue has been found in PostgreSQL < 9.6.3, where the pg_user_mappings view disclosed user mapping options to any user having USAGE privilege on the associated foreign server, including the password. An attacker could then use the password to run arbitrary queries against the server or others accepting the same credentials, not just the limited queries one can issue via foreign tables.
References
+ https://www.postgresql.org/about/news/1746/
Notes
CVE-2017-7494 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
References
+ https://www.samba.org/samba/security/CVE-2017-7494.html
Notes