Posted by jericho on Mar 18
relevent to your ‘buffer overflow’ posts that are not real issues:
http://blogs.technet.com/b/markrussinovich/archive/2005/05/17/buffer-overflows.aspx
http://superuser.com/questions/491597/process-monitor-entrys-with-buffer-overflow
Posted by Patrik Kernstock on Mar 18
Hi,
to just let you know: There is a new OpenSSL version upcoming in about
two days with some fixed security issues with the severity “high”:
“The OpenSSL project team would like to announce the forthcoming release
of OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf.
These releases will be made available on 19th March. They will fix a
number of security defects. The highest severity defect fixed by these
releases is…
Resolved Bugs
1200034 – varnish: heap-based buffer overflow in backend server HTTP response parsing
1200035 – varnish: heap-based buffer overflow in backend server HTTP response parsing [fedora-all]<br
Added an update that fixes a bug trigged by a bogus content-length header. Under special circumstances, it could crash a varnishd subthread.
New upstream release. A bugfix release.
Highlights from the changelog:
* 26 reported bugs fixed.
* Replaced objects are now expired immediately, instead of kept around until expiry.
* Memory usage on chunked backend responses is lower
Fore a detailed list of changes, please see the project’s announcement at https://www.varnish-cache.org/content/varnish-cache-403
Resolved Bugs
1201532 – Merge clickpad patch for i2c touchpads
1181166 – CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access
1200950 – CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access [fedora-all]
1196266 – CVE-2015-2150 xen: non-maskable interrupts triggerable by guests (xsa120)
1200397 – CVE-2015-2150 xen: non-maskable interrupts triggerable by guests (xsa120) [fedora-all]
1200777 – Fix touchpads on the Oct 2014 series of the Lenovo *40 series
1200778 – Support the Lenovo X1 Carbon 3rd touchpad (kernel)
1199312 – Building kernel-4.0.0-0.rc2.git0.1 on F21 gives rpmbuild error for insecure path.<br
Update to latest upstream 4.0 release, Linux v4.0-rc4. This also should fix some aarch64 hangs and builds with variant set. UEFI ESRT support is added.
Backport of patch to not ascribe cookies to the target domain.
https://github.com/kennethreitz/requests/commit/3bd8afbff29e50b38f889b2f688785a669b9aafc
http://www.openwall.com/lists/oss-security/2015/03/14/4
Resolved Bugs
1200034 – varnish: heap-based buffer overflow in backend server HTTP response parsing
1200035 – varnish: heap-based buffer overflow in backend server HTTP response parsing [fedora-all]<br
This update fixes a bug trigged by a bogus content-length header. Under special circumstances, it could crash a varnishd subthread.
New upstream release. A bugfix release.
Highlights from the changelog:
* 26 reported bugs fixed.
* Replaced objects are now expired immediately, instead of kept around until expiry.
* Memory usage on chunked backend responses is lower
Fore a detailed list of changes, please see the project’s announcement at https://www.varnish-cache.org/content/varnish-cache-403
Resolved Bugs
1202906 – CVE-2015-2296 python-requests: session fixation and cookie stealing vulnerability [fedora-21]
1202904 – CVE-2015-2296 python-requests: session fixation and cookie stealing vulnerability<br
Backport of patch to not ascribe cookies to the target domain.
– https://github.com/kennethreitz/requests/commit/3bd8afbff29e50b38f889b2f688785a669b9aafc
– http://www.openwall.com/lists/oss-security/2015/03/14/4
Resolved Bugs
1195355 – CVE-2015-2042 kernel: rds: information handling flaw in rds sysctl files.
1199365 – CVE-2015-2042 kernel: rds: information handling flaw in rds sysctl files. [fedora-all]
1200777 – Fix touchpads on the Oct 2014 series of the Lenovo *40 series
1200778 – Support the Lenovo X1 Carbon 3rd touchpad (kernel)
1196266 – CVE-2015-2150 xen: non-maskable interrupts triggerable by guests (xsa120)
1200397 – CVE-2015-2150 xen: non-maskable interrupts triggerable by guests (xsa120) [fedora-all]
1069027 – Cannot turn on Screen with radeon drivers after resume of suspend.
1181166 – CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access
1200950 – CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access [fedora-all]
1201532 – Merge clickpad patch for i2c touchpads<br
The 3.19.1 rebase contains improved hardware support, a number of new features, and many important fixes across the tree.
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
This Metasploit module exploits a vulnerability found in Adobe Flash Player. A compilation logic error in the PCRE engine, specifically in the handling of the c escape sequence when followed by a multi-byte UTF8 character, allows arbitrary execution of PCRE bytecode.