Vulnerability & Exploit Database

Displaying entries 1 - 10 of 22 in total

Results for: CVE-2012-1585 Back to search

SUSE Linux Security Advisory: SUSE-SU-2014:1100-1 Vulnerability

  • Severity: 10
  • Published: September 03, 2014

Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG animation with DOM interaction that triggers incor...

USN-1585-1: FreeRADIUS vulnerability Vulnerability

  • Severity: 7
  • Published: September 18, 2012

Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS 2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via a long "not after" timestamp in a client certificate.

Cent OS: CVE-2012-3547: CESA-2012:1327 (freeradius2) Vulnerability

  • Severity: 7
  • Published: September 18, 2012

Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS 2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via a long "not after" timestamp in a client certificate.

USN-1413-1: Nova vulnerability Vulnerability

  • Severity: 4
  • Published: August 16, 2012

OpenStack Compute (Nova) Essex before 2011.3 allows remote authenticated users to cause a denial of service (Nova-API log file and disk consumption) via a long server name.

USN-1218-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 8
  • Published: June 21, 2012

Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this da...

USN-1216-1: Linux kernel (EC2) vulnerabilities Vulnerability

  • Severity: 8
  • Published: June 21, 2012

Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this da...

USN-1208-1: Linux kernel (Marvel DOVE) vulnerabilities Vulnerability

  • Severity: 8
  • Published: June 21, 2012

Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this da...

USN-1203-1: Linux kernel (Marvel DOVE) vulnerabilities Vulnerability

  • Severity: 8
  • Published: June 21, 2012

Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this da...

USN-1280-1: Linux (OMAP4 vulnerabilities Vulnerability

  • Severity: 5
  • Published: June 13, 2012

Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.

USN-1271-1: Linux kernel (FSL-IMX51) vulnerabilities Vulnerability

  • Severity: 5
  • Published: June 13, 2012

The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.