Download
| Alert*
oval:org.secpod.oval:def:89000074
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:69844 Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. oval:org.secpod.oval:def:2106162 Oracle Solaris 11 - ( CVE-2020-15683 ) oval:org.secpod.oval:def:89000332 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:605382 Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. oval:org.secpod.oval:def:2500096 FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. oval:org.secpod.oval:def:1503079 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:505308 Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 86.0.4240.111. Security Fix: * chromium-browser: Inappropriate implementation in Blink * chromium-browser: Use after free in media * chromium-browser: Use after free in PDFium * freetype: Heap-bas ... oval:org.secpod.oval:def:205684 FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. Security Fix: * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png For more details about the security issue, in ... oval:org.secpod.oval:def:89002926 This update for freetype2 fixes the following issues: - CVE-2020-15999: fixed a heap buffer overflow found in the handling of embedded PNG bitmaps . oval:org.secpod.oval:def:66266 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:89987 The remote host is missing a patch 119813-25 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:89986 The remote host is missing a patch 119812-23 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:66267 The host is installed with Google Chrome before 86.0.4240.111 and Edge Chromium before 86.0.622.51 and is prone to a heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impac ... oval:org.secpod.oval:def:66203 The host is missing a high severity security update according to Google advisory. The update is required to fix multipll vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:89050463 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:89050465 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:2106170 Oracle Solaris 11 - ( CVE-2020-15999 ) oval:org.secpod.oval:def:118834 The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a font ... oval:org.secpod.oval:def:89002868 This update for freetype2 fixes the following issues: - CVE-2020-15999: fixed a heap buffer overflow found in the handling of embedded PNG bitmaps . oval:org.secpod.oval:def:504783 FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. Security Fix: * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png For more details about the security issue, in ... oval:org.secpod.oval:def:119026 The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a font ... oval:org.secpod.oval:def:504744 FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. Security Fix: * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png For more details about the security issue, in ... oval:org.secpod.oval:def:605270 Sergei Glazunov discovered a heap-based buffer overflow vulnerability in the handling of embedded PNG bitmaps in FreeType. Opening malformed fonts may result in denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:1700526 Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page oval:org.secpod.oval:def:1503105 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:66273 The host is missing a high severity security update according to Google advisory. The update is required to fix multipll vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:66691 Sergei Glazunov discovered a heap-based buffer overflow vulnerability in the handling of embedded PNG bitmaps in libfreetype6-dev. Opening malformed fonts may result in denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:66272 The host is missing a high severity security update according to Google advisory. The update is required to fix multipll vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:67185 freetype: FreeType 2 is a font engine library FreeType could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:1801765 firefox-esr: Multiple vulnerabilities in versions before 78.5 oval:org.secpod.oval:def:66275 The host is installed with Google Chrome before 86.0.4240.111 and is prone to a heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:705706 freetype: FreeType 2 is a font engine library FreeType could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:66274 The host is installed with Google Chrome before 86.0.4240.111 and is prone to a heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:68014 FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. Security Fix: * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png For more details about the security issue, in ... oval:org.secpod.oval:def:19500064 A heap buffer overflow leading to out-of-bounds write was found in freetype. Memory allocation based on truncated PNG width and height values allows for an out-of-bounds write to occur in application memory when an attacker supplies a specially crafted TTF file. A heap buffer overflow flaw was found ... oval:org.secpod.oval:def:66204 The host is installed with Google Chrome before 86.0.4240.111 and Edge Chromium before 86.0.622.51 and is prone to a heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impac ... |