search for: ormandy

Hi, Tavis Ormandy found some bugs in OpenSSL's ASN.1 and buffer code that can be exploited to cause a heap overflow: http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html Fortunately OpenSSH's sshd is not vulnerable - it has avoided the use of ASN.1 parsing since 2002 when Markus wrote...

...------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-libs/zlib < 1.2.2-r1 >= 1.2.2-r1 Description =========== Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a buffer overflow in zlib. A bounds checking operation failed to take invalid data into account, allowing a specifically malformed deflate data stream to overrun a buffer. Impact ====== An attacker could construct a malformed data stream, embeddi...

Hi all. Julien Tinnes and Tavis Ormandy from the Google Security Team have recently found a Linux kernel vulnerability which affects all 2.4 and 2.6 kernels since 2001 on all architectures. Please read the announcement on LWM: http://lwn.net/Articles/347006/ for further information about the vulnerability and the exploit which has been p...

...========== FreeBSD-SA-05:16.zlib Security Advisory The FreeBSD Project Topic: Buffer overflow in zlib Category: core Module: libz Announced: 2005-07-06 Credits: Tavis Ormandy Affects: FreeBSD 5.3, FreeBSD 5.4 Corrected: 2005-07-06 14:01:11 UTC (RELENG_5, 5.4-STABLE) 2005-07-06 14:01:30 UTC (RELENG_5_4, 5.4-RELEASE-p4) 2005-07-06 14:01:52 UTC (RELENG_5_3, 5.3-RELEASE-p18) CVE Name: CAN-2005-2096 For general information r...

...========== FreeBSD-SA-05:16.zlib Security Advisory The FreeBSD Project Topic: Buffer overflow in zlib Category: core Module: libz Announced: 2005-07-06 Credits: Tavis Ormandy Affects: FreeBSD 5.3, FreeBSD 5.4 Corrected: 2005-07-06 14:01:11 UTC (RELENG_5, 5.4-STABLE) 2005-07-06 14:01:30 UTC (RELENG_5_4, 5.4-RELEASE-p4) 2005-07-06 14:01:52 UTC (RELENG_5_3, 5.3-RELEASE-p18) CVE Name: CAN-2005-2096 For general information r...

...-SA-06:22.openssh Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in OpenSSH Category: contrib Module: openssh Announced: 2006-09-30 Credits: Tavis Ormandy, Mark Dowd Affects: All FreeBSD releases. Corrected: 2006-09-30 19:50:57 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-30 19:51:56 UTC (RELENG_6_1, 6.1-RELEASE-p10) 2006-09-30 19:53:21 UTC (RELENG_6_0, 6.0-RELEASE-p15) 2006-09-30 19:54:03 UTC (RE...

...-SA-06:22.openssh Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in OpenSSH Category: contrib Module: openssh Announced: 2006-09-30 Credits: Tavis Ormandy, Mark Dowd Affects: All FreeBSD releases. Corrected: 2006-09-30 19:50:57 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-30 19:51:56 UTC (RELENG_6_1, 6.1-RELEASE-p10) 2006-09-30 19:53:21 UTC (RELENG_6_0, 6.0-RELEASE-p15) 2006-09-30 19:54:03 UTC (RE...

https://bugzilla.mindrot.org/show_bug.cgi?id=1785 Summary: configurable timeout for x11 cookies Product: Portable OpenSSH Version: 5.5p1 Platform: All OS/Version: Linux Status: NEW Severity: enhancement Priority: P2 Component: ssh AssignedTo: unassigned-bugs at mindrot.org ReportedBy:

...For international orders use http://https.openbsd.org/cgi-bin/order and for European orders, use http://https.openbsd.org/cgi-bin/order.eu Changes since OpenSSH 4.3: ============================ Security bugs resolved in this release: * Fix a pre-authentication denial of service found by Tavis Ormandy, that would cause sshd(8) to spin until the login grace time expired. * Fix an unsafe signal hander reported by Mark Dowd. The signal handler was vulnerable to a race condition that could be exploited to perform a pre-authentication denial of service. On portable OpenSSH, this vuln...

...For international orders use http://https.openbsd.org/cgi-bin/order and for European orders, use http://https.openbsd.org/cgi-bin/order.eu Changes since OpenSSH 4.3: ============================ Security bugs resolved in this release: * Fix a pre-authentication denial of service found by Tavis Ormandy, that would cause sshd(8) to spin until the login grace time expired. * Fix an unsafe signal hander reported by Mark Dowd. The signal handler was vulnerable to a race condition that could be exploited to perform a pre-authentication denial of service. On portable OpenSSH, this vuln...

...reeBSD-SA-06:21.gzip Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in gzip Category: contrib Module: gzip Announced: 2006-09-19 Credits: Tavis Ormandy, Google Security Team Affects: All FreeBSD releases. Corrected: 2006-09-19 14:02:30 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-19 14:03:26 UTC (RELENG_6_1, 6.1-RELEASE-p7) 2006-09-19 14:04:13 UTC (RELENG_6_0, 6.0-RELEASE-p12) 2006-09-19 14:06:...

...reeBSD-SA-06:21.gzip Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in gzip Category: contrib Module: gzip Announced: 2006-09-19 Credits: Tavis Ormandy, Google Security Team Affects: All FreeBSD releases. Corrected: 2006-09-19 14:02:30 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-19 14:03:26 UTC (RELENG_6_1, 6.1-RELEASE-p7) 2006-09-19 14:04:13 UTC (RELENG_6_0, 6.0-RELEASE-p12) 2006-09-19 14:06:...

...reeBSD-SA-06:21.gzip Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in gzip Category: contrib Module: gzip Announced: 2006-09-19 Credits: Tavis Ormandy, Google Security Team Affects: All FreeBSD releases. Corrected: 2006-09-19 14:02:30 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-19 14:03:26 UTC (RELENG_6_1, 6.1-RELEASE-p7) 2006-09-19 14:04:13 UTC (RELENG_6_0, 6.0-RELEASE-p12) 2006-09-19 14:06:...

...openssl Security Advisory The FreeBSD Project Topic: Multiple problems in crypto(3) Category: contrib Module: openssl Announced: 2006-09-28 Credits: Dr S N Henson, Tavis Ormandy, Will Drewry Affects: All FreeBSD releases. Corrected: 2006-09-28 13:02:37 UTC (RELENG_6, 6.1-PRERELEASE) 2006-09-28 13:03:14 UTC (RELENG_6_1, 6.1-RELEASE-p8) 2006-09-28 13:03:41 UTC (RELENG_6_0, 6.0-RELEASE-p13) 2006-09-28 13:03:57 UTC (R...

...-SA-06:22.openssh Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in OpenSSH Category: contrib Module: openssh Announced: 2006-09-30 Credits: Tavis Ormandy, Mark Dowd Affects: All FreeBSD releases. Corrected: 2006-09-30 19:50:57 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-30 19:51:56 UTC (RELENG_6_1, 6.1-RELEASE-p10) 2006-09-30 19:53:21 UTC (RELENG_6_0, 6.0-RELEASE-p15) 2006-09-30 19:54:03 UTC (RE...

...openssl Security Advisory The FreeBSD Project Topic: Multiple problems in crypto(3) Category: contrib Module: openssl Announced: 2006-09-28 Credits: Dr S N Henson, Tavis Ormandy, Will Drewry Affects: All FreeBSD releases. Corrected: 2006-09-28 13:02:37 UTC (RELENG_6, 6.1-PRERELEASE) 2006-09-28 13:03:14 UTC (RELENG_6_1, 6.1-RELEASE-p8) 2006-09-28 13:03:41 UTC (RELENG_6_0, 6.0-RELEASE-p13) 2006-09-28 13:03:57 UTC (R...

...openssl Security Advisory The FreeBSD Project Topic: Multiple problems in crypto(3) Category: contrib Module: openssl Announced: 2006-09-28 Credits: Dr S N Henson, Tavis Ormandy, Will Drewry Stephen Kiernan (Juniper SIRT) Affects: All FreeBSD releases. Corrected: 2006-09-29 13:44:03 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-29 13:44:31 UTC (RELENG_6_1, 6.1-RELEASE-p9) 2006-09-29 13:44:45 UTC (RELENG_6_0, 6.0-RELEASE-...

...openssl Security Advisory The FreeBSD Project Topic: Multiple problems in crypto(3) Category: contrib Module: openssl Announced: 2006-09-28 Credits: Dr S N Henson, Tavis Ormandy, Will Drewry Stephen Kiernan (Juniper SIRT) Affects: All FreeBSD releases. Corrected: 2006-09-29 13:44:03 UTC (RELENG_6, 6.2-PRERELEASE) 2006-09-29 13:44:31 UTC (RELENG_6_1, 6.1-RELEASE-p9) 2006-09-29 13:44:45 UTC (RELENG_6_0, 6.0-RELEASE-...