Third Party Vulnerability Resolution Blog

CVE-2013-0900 Race Conditions vulnerability in ICU

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-0900 Race Conditions vulnerability

6.8

International Components for Unicode (ICU)

Solaris 11.1	11.1.16.5.0
Solaris 10	Patches planned but not yet available

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2013-5745 Input Validation vulnerability in Vino

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-5745 Input Validation vulnerability

7.1

Vino

Solaris 11.1

11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2008-0386 Improper Input Validation vulnerability in Xdg-utils

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2008-0386 Improper Input Validation vulnerability

6.8

Xdg-utils

Solaris 11.1

11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2014-0591 Buffer Errors vulnerability in Bind

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2014-0591 Buffer Errors vulnerability

2.6

Bind

Solaris 11.1	11.1.16.5.0
Solaris 10	Patches planned but not yet available
Solaris 9	Patches planned but not yet available

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2013-6462 Buffer Errors vulnerability in X.Org

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-6462 Buffer Errors vulnerability

9.3

X.Org

Solaris 11.1	11.1.16.5.0
Solaris 10	Patches planned but not yet available

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2013-2561 Link Following vulnerability in OpenFabrics ibutils

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-2561 Link Following vulnerability

6.3

OpenFabrics ibutils

Solaris 11.1

11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

Multiple vulnerabilities in Wireshark

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-7112 Input Validation vulnerability

5.0

Wireshark

Solaris 11.1

11.1.16.5.0

CVE-2013-7114 Buffer Errors vulnerability

5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2014-0397 Buffer Errors vulnerability in libXtsol

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2014-0397 Buffer Errors vulnerability

7.2

libXtsol

Solaris 10	Patches planned but not yet available
Solaris 11.1	11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2013-4408 Buffer Errors vulnerability in Samba

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2013-4408 Buffer Errors vulnerability

8.3

Samba

Solaris 10	SPARC: 119757-31 X86: 119758-31
Solaris 11.1	11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

CVE-2012-6150 Input Validation vulnerability in Samba

By Ritwik Ghoshal on Feb 25, 2014

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2012-6150 Input Validation vulnerability

3.6

Samba

Solaris 10	SPARC: 119757-31 X86: 119758-31
Solaris 11.1	11.1.16.5.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Category: Alerts

Tags: none

Permanent link to this entry | Comments [0]

Sun	Mon	Tue	Wed	Thu	Fri	Sat
« March 2014
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31
Today

Oracle

Oracle Blog

Third Party Vulnerability Resolution Blog

Security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle products

Tuesday Feb 25, 2014

CVE-2013-0900 Race Conditions vulnerability in ICU

By Ritwik Ghoshal on Feb 25, 2014

CVE-2013-5745 Input Validation vulnerability in Vino

By Ritwik Ghoshal on Feb 25, 2014

CVE-2008-0386 Improper Input Validation vulnerability in Xdg-utils

By Ritwik Ghoshal on Feb 25, 2014

CVE-2014-0591 Buffer Errors vulnerability in Bind

By Ritwik Ghoshal on Feb 25, 2014

CVE-2013-6462 Buffer Errors vulnerability in X.Org

By Ritwik Ghoshal on Feb 25, 2014

CVE-2013-2561 Link Following vulnerability in OpenFabrics ibutils

By Ritwik Ghoshal on Feb 25, 2014

Multiple vulnerabilities in Wireshark

By Ritwik Ghoshal on Feb 25, 2014

CVE-2014-0397 Buffer Errors vulnerability in libXtsol

By Ritwik Ghoshal on Feb 25, 2014

CVE-2013-4408 Buffer Errors vulnerability in Samba

By Ritwik Ghoshal on Feb 25, 2014

CVE-2012-6150 Input Validation vulnerability in Samba

By Ritwik Ghoshal on Feb 25, 2014

About

Search

Recent Posts

Top Tags

Categories

Archives

Maintain

Vulnerability Co-ordination

Community

Reference Material

Offerings

Menu

Feeds