The attached file crashes in CmdExtract::UnstoreFile because the signed int64 DestUnpSize is truncated to an unsigned 32bit integer. Perhaps CmdExtract::ExtractCurrentFile should sanity check Arc.FileHead.UnpSize early. The researcher observed this crash…
>> AUTHOR: deepcore
Apple Security Advisory 2015-12-11-1 – iTunes 12.3.2 is now available and addresses 12 security vulnerabilities.
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 – _FXCLI_SetConfFileChunk Stack Buffer Overflow Vulnerability
Ovidentia absences Module 2.64 – Remote File Inclusion
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 – _FXCLI_GetConfFileChunk Stack Buffer Overflow Vulnerability
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 – Invalid Pointer Dereference
Joomla 1.5 – 3.4.5 – Object Injection Remote Command Execution
An independent vulnerability laboratory researcher discovered a local buffer overflow web vulnerability in the official Aeris Calandar v2.1 software.
An independent vulnerability laboratory researcher discovered a code execution vulnerability in the official POP Peeper v4.0.1 software.
The Vulnerability Laboratory Core Research Team discovered a client-side cross site scripting web vulnerability in the official Western Union China web-application.