PRE-CERT Security Advisory
==
* Advisory: PRE-SA-2011-04
* Released on: 10 May 2011
* Last updated on: 10 May 2011
* Affected product: Linux Kernel 2.4 and 2.6
* Impact: information disclosure, denial-of-service
* Origin: storage devices
* Credit: Timo Warns (PRESENSE
PRE-CERT Security Advisory
==
* Advisory: PRE-SA-2011-05
* Released on: 22 Jun 2011
* Last updated on: 22 Jun 2011
* Affected product: tftp-hpa 0.30 - 5.0
* Impact: buffer overflow
* Origin: remote tftp client
* Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE
PRE-CERT Security Advisory
==
* Advisory: PRE-SA-2011-06
* Released on: 19 August 2011
* Last updated on: 19 August 2011
* Affected product: Linux Kernel 2.4, 2.6, and 3.0
* Impact: denial-of-service
* Origin: Be file system
* Credit: Timo Warns (PRESENSE Technologies GmbH
IcedTea6 1.9.x below 1.9.13
IcedTea6 1.10.x below 1.10.6
IcedTea6 1.11.x below 1.11.1
IcedTea 2.x below 2.0.1
Older versions may also be affected.
* Impact: denial-of-service
* Origin: java.util.zip
* Credit: Timo Warns
tion leak
* Credit: - Thomas Klausner
- Timo Warns (PRESENSE Technologies GmbH)
* CVE Identifier: - CVE-2012-1162
- CVE-2012-1163
Summary
---
libzip (version <= 0.10) has two vulnerabilities that may lead to a heap
overflow or an information leak via corrupted zi
Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE Identifier: CVE-2012-2319
Summary
---
The Linux kernel contains a vulnerability in the driver for HFS plus
file systems that may be exploited for code execution or privilege
escalation.
A specially-crafted HFS plus filesystem can cause a
bscore: 10
Exploitability Subscore: 8.6
CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)
* Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE Identifier: CVE-2012-2665
Summary
---
Multiple issues have been identified in LibreOffice / OpenOffice that
allow to execute arbitrary code via spe
Exploitability Subscore: 10
CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)
* Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE Identifier: CVE-2012-3547
Summary
---
A stack overflow vulnerability has been identified in FreeRADIUS that allows to
remotely execute arbitrary code via specially crafted
: 10
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C)
* Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE Identifier: CVE-2012-4445
Summary
---
The internal EAP authentication server of hostapd does not sufficiently
validate the message length field of EAP-TLS messages, which can be
exploited
* CVE Identifier: - CVE-2011-1010
## Summary ##
Timo Warns (PRESENSE Technologies GmbH) reported some vulnerabilities in
the Linux kernel that may lead to privilege escalation,
denial-of-service, or information leakage via corrupted partition
tables. Exploiting these vulnerabilities has been
PRE-CERT Security Advisory
==
* Advisory: PRE-SA-2011-02
* Released on: 16 Mar 2011
* Last updated on: 16 Mar 2011
* Affected product: Linux Kernel 2.4 and 2.6
* Impact: disclosure of sensitive information
* Origin: storage devices
* Credit: Timo Warns (PRESENSE
PRE-CERT Security Advisory
==
* Advisory: PRE-SA-2011-03
* Released on: 13 Apr 2011
* Last updated on: 13 Apr 2011
* Affected product: Linux Kernel 2.4 and 2.6
* Impact: denial-of-service
* Origin: storage devices
* Credit: Timo Warns (PRESENSE Technologies GmbH)
* CVE
12 matches
Mail list logo
