[FD] Advisory X41-2016-001: Memory Corruption Vulnerability in "libotr"

2016-03-09 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2016-001 Memory Corruption Vulnerability in "libotr" === Overview Severity Rating: high Confirmed Affected Version: 4.1.0 and below Confirmed Patched Version: libotr 4.1.1 Vendor: OTR Development Team Vendor

[FD] Advisory X41-2017-002: Multiple Vulnerabilities in ytnef

2017-02-15 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-002 Multiple Vulnerabilities in ytnef = Overview Severity Rating: High Confirmed Affected Versions: 1.9 and earlier Confirmed Patched Versions: 1.9.1 Vendor: Yerase Vendor URL: https://github.com/Yeraze/ytnef

[FD] Advisory X41-2017-004: Multiple Vulnerabilities in tnef

2017-02-24 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-004 Multiple Vulnerabilities in tnef Overview Confirmed Affected Versions: 1.4.12 and earlier Confirmed Patched Versions: Vendor: verdammelt Vendor URL: https://github.com/verdammelt/tnef/ Vector: File Credit:

[FD] Advisory X41-2017-001: Multiple Vulnerabilities in X.org

2017-02-28 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-001 Multiple Vulnerabilities in X.org = Overview Vendor: X.org/Freedesktop.org Vendor URL: https://www.x.org/wiki/ Credit: X41 D-Sec GmbH, Eric Sesterhenn Advisory-URL:

[FD] X41-2017-005 - Multiple Vulnerabilities in peplink balance routers

2017-06-06 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-005 Multiple Vulnerabilities in peplink balance routers === Overview Confirmed Affected Versions: 7.0.0-build1904 Confirmed Patched Versions:

[FD] Advisory X41-2017-010: Command Execution in Shadowsocks-libev

2017-10-13 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-010 Command Execution in Shadowsocks-libev == Overview Severity Rating: High Confirmed Affected Versions: 3.1.0 Confirmed Patched Versions: N/A Vendor: Shadowsocks Vendor URL:

[FD] Advisory X41-2017-008: Multiple Vulnerabilities in Shadowsocks

2017-10-13 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-008 Multiple Vulnerabilities in Shadowsocks === Overview Confirmed Affected Versions: Latest commit 2ab8c6b on Sep 6 Confirmed Patched Versions: N/A Vendor: Shadowsocks Vendor URL:

[FD] Advisory X41-2017-006: Multiple Vulnerabilities in PSFTPd Windows FTP Server

2017-11-14 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server = Overview Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung

[FD] X41 D-Sec GmbH Security Advisory X41-2018-001: Multiple Vulnerabilities in Yubico Piv

2018-08-21 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-001 Multiple Vulnerabilities in Yubico Piv == Overview - Confirmed Affected Versions: 1.5.0 Confirmed Patched Versions: 1.6.0 Vendor: Yubico Vendor URL:

[FD] X41 D-Sec GmbH Security Advisory X41-2018-002: Multiple Vulnerabilities in OpenSC

2018-08-21 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-002 Multiple Vulnerabilities in OpenSC == Overview - Confirmed Affected Versions: 0.18.0 Confirmed Patched Versions: possibly 0.19.0 Vendor: OpenSC Vendor URL:

[FD] X41 D-Sec GmbH Security Advisory X41-2018-003: Multiple Vulnerabilities in pam_pkcs11

2018-08-21 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-003 Multiple Vulnerabilities in pam_pkcs11 == Overview - Confirmed Affected Versions: 0.6.9 Confirmed Patched Versions: - Vendor: Unmaintained Vendor URL:

[FD] X41 D-Sec GmbH Security Advisory X41-2018-004: Multiple Vulnerabilities in Yubico libykneomgr

2018-08-21 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-004 Multiple Vulnerabilities in Yubico libykneomgr == Overview - Confirmed Affected Versions: 0.1.9 Confirmed Patched Versions: - Vendor: Yubico /

[FD] X41 D-Sec GmbH Security Advisory X41-2018-005: Multiple Vulnerabilities in Apple smartcardservices

2018-08-21 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-005 Multiple Vulnerabilities in Apple smartcardservices === Overview - Confirmed Affected Versions: e3eb96a6eff9d02497a51b3c155a10fa5989021f

[FD] X41 D-Sec GmbH Security Advisory X41-2018-007: Multiple Vulnerabilities in mgetty

2018-09-20 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2018-007 Multiple Vulnerabilities in mgetty == Overview - Confirmed Affected Versions: 1.2.0 Patched Versions: 1.2.1 Vendor: mgetty Vendor URL:

[FD] X41 D-Sec GmbH Security Advisory X41-2018-008: Multiple Vulnerabilities in HylaFAX

2018-09-20 Thread X41 D-Sec GmbH Advisories
X41 D-SEC GmbH Security Advisory: X41-2018-008 Multiple Vulnerabilities in HylaFAX === Overview Confirmed Affected Versions: HylaFAX 6.0.6, HylaFAX+ 5.6.0 Confirmed Patched Versions: HylaFAX 6.0.7, HylaFAX+ 5.6.1 Vendor: Hylafax, Hylafax+ Vendor URL:

[FD] X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability in UA-Parser

2019-01-11 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-SEC GmbH Security Advisory: X41-2018-009 ReDoS Vulnerability in UA-Parser Severity Rating: Medium Confirmed Affected Versions: 2015-05-14 and newer, commit 6fd6c261274254bcbbacd77ef4b12534c7f9923d Confirmed

[FD] X41 D-Sec GmbH Security Advisory X41-2019-002: Heap-based buffer overflow in Thunderbird

2019-06-14 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2019-002 Heap-based buffer overflow in Thunderbird = Severity Rating: High Confirmed Affected Versions: All versions affected Confirmed Patched Versions: Thunderbird ESR

[FD] X41 D-Sec GmbH Security Advisory X41-2019-004: Type confusion in Thunderbird

2019-06-14 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2019-004 Type confusion in Thunderbird = Severity Rating: Medium Confirmed Affected Versions: All versions affected Confirmed Patched Versions: Thunderbird ESR 60.7.XXX Vendor:

[FD] X41 D-Sec GmbH Security Advisory X41-2019-003: Stack-based buffer overflow in Thunderbird

2019-06-14 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2019-003 Stack-based buffer overflow in Thunderbird == Severity Rating: High Confirmed Affected Versions: All versions affected Confirmed Patched Versions: Thunderbird

[FD] X41 D-Sec GmbH Security Advisory X41-2019-001: Heap-based buffer overflow in Thunderbird

2019-06-14 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 X41 D-Sec GmbH Security Advisory: X41-2019-001 Heap-based buffer overflow in Thunderbird = Severity Rating: High Confirmed Affected Versions: All versions affected Confirmed Patched Versions: Thunderbird ESR

[FD] X41 D-Sec GmbH Security Advisory X41-2020-006: Memory Corruption Vulnerability in bspatch

2020-07-09 Thread X41 D-Sec GmbH Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 X41 D-SEC GmbH Security Advisory: X41-2020-006 Advisory X41-2020-006: Memory Corruption Vulnerability in bspatch = Severity Rating: High Confirmed Affected Versions: Colin Percival's