Download
| Alert*
oval:org.secpod.oval:def:505256
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 57.0.2987.98. Security Fix: * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or d ... oval:org.secpod.oval:def:39238 The host is installed with Google Chrome before 57.0.2987.98 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:39239 The host is installed with Google Chrome before 57.0.2987.98 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:39218 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:39592 The host is missing a security update according to Apple advisory, APPLE-SA-2017-03-28-2. The update is requited fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:39274 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:39275 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:89044947 This update for libxslt fixes the following issues: - CVE-2017-5029: The xsltAddTextString function in transform.c lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page . - CVE-2016-4738: Fix he ... oval:org.secpod.oval:def:703580 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:40416 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:39200 The host is installed with Google Chrome before 57.0.2987.98, Apple iTunes before 12.6 or Apple iCloud before 6.2 and is prone to an integer overflow vulnerability. A flaw is present in the applications, which fail to handle unspecified vectors. Successful exploitation allows attackers to have unspe ... oval:org.secpod.oval:def:89044603 This update for libxslt fixes the following issues: - CVE-2017-5029: The xsltAddTextString function in transform.c lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page . - CVE-2016-4738: Fix he ... oval:org.secpod.oval:def:1800067 The issue can be exploited to trigger an out of bounds write on 64-bit systems. oval:org.secpod.oval:def:1800019 The issue can be exploited to trigger an out of bounds write on 64-bit systems. oval:org.secpod.oval:def:39237 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:39219 The host is installed with Google Chrome before 57.0.2987.98 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:45080 The host is missing a security update according to Apple advisory, APPLE-SA-2017-03-28-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted elements on a web site. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:51759 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:602820 Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5029 Holger Fuhrmannek discovered an integer overflow issue in the libxslt library. CVE-2017-5030 Brendon Tiszka discovered a memory corruption issue in the v8 javascript library. CVE-2017-5031 Looben Yang discovered ... oval:org.secpod.oval:def:112596 Qt5 - QtWebEngine components. oval:org.secpod.oval:def:703546 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:1800515 The issue can be exploited to trigger an out of bounds write on 64-bit systems. oval:org.secpod.oval:def:2104564 The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue. oval:org.secpod.oval:def:112634 Qt5 - QtWebEngine components. oval:org.secpod.oval:def:40418 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:40417 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:52188 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:51523 libxslt: XSLT processing library Several security issues were fixed in Libxslt. |