oCERT advisory archive

2016/05/30 - oCERT-2016-001 - Jetty path sanitization issues

2015/12/30 - oCERT-2015-012 - Ganeti multiple issues

2015/12/17 - oCERT-2015-011 - PyAMF input sanitization errors (XXE)

2015/08/20 - oCERT-2015-009 - VLC arbitrary pointer dereference

2015/06/22 - oCERT-2015-008 - FreeRADIUS insufficent CRL application

2015/05/11 - oCERT-2015-006 - dcraw input sanitization errors

2015/04/29 - oCERT-2015-003 - MySQL SSL/TLS downgrade

2015/02/05 - oCERT-2015-002 - e2fsprogs input sanitization errors

2015/01/21 - oCERT-2015-001 - JasPer input sanitization errors

2014/12/22 - oCERT-2014-011 - UnZip input sanitization errors

2014/12/22 - oCERT-2014-010 - SoX input sanitization errors

2014/12/18 - oCERT-2014-012 - JasPer input sanitization errors

2014/12/04 - oCERT-2014-009 - JasPer input sanitization errors

2014/11/25 - oCERT-2014-008 - libFLAC multiple issues

2014/09/25 - oCERT-2014-007 - libvncserver multiple issues

2014/08/12 - oCERT-2014-006 - Ganeti insecure archive permission

2014/07/23 - oCERT-2014-005 - LPAR2RRD input sanitization errors

2014/07/21 - oCERT-2014-004 - Ansible input sanitization errors

2014/03/26 - oCERT-2014-003 - LibYAML input sanitization errors

2014/03/24 - oCERT-2014-002 - Xalan-Java insufficient secure processing

2014/02/08 - oCERT-2014-001 - MantisBT input sanitization errors

2013/07/08 - oCERT-2013-001 - File Roller path sanitization errors

2012/11/23 - oCERT-2012-001 - multiple implementations denial-of-service via MurmurHash algorithm collision

2011/12/28 - oCERT-2011-003 - multiple implementations denial-of-service via hash algorithm collision

2011/08/10 - oCERT-2011-002 - libavcodec insufficient boundary check

2011/07/13 - oCERT-2011-001 - Chyrp input sanitization errors

2010/09/28 - oCERT-2010-004 - FFmpeg/libavcodec arbitrary offset dereference

2010/09/17 - oCERT-2010-003 - Free Simple CMS path sanitization errors

2010/07/20 - oCERT-2010-002 - Joomla input sanitization errors (XSS)

2010/05/17 - oCERT-2010-001 - multiple http client unexpected download filename

2009/12/17 - oCERT-2009-019 - Ganeti path sanitization errors

2009/11/30 - oCERT-2009-017 - PHP multiple issues

2009/10/27 - oCERT-2009-015 - KDE multiple issues

2009/10/21 - oCERT-2009-016 - Poppler, xpdf integer overflow during heap allocation

2009/10/05 - oCERT-2009-014 - Android denial-of-service issues

2009/09/05 - oCERT-2009-013 - yTNEF/Evolution TNEF attachment decoder input sanitization errors

2009/07/16 - oCERT-2009-011 - Android improper camera and audio permission verification

2009/07/13 - oCERT-2009-010 - mimeTeX and mathTeX buffer overflows and command injection

2009/07/13 - oCERT-2009-012 - libtiff tools integer overflows

2009/07/03 - oCERT-2009-008 - Dillo integer overflow

2009/07/03 - oCERT-2009-007 - FCKeditor input sanitization errors

2009/07/02 - oCERT-2009-009 - CamlImages integer overflows

2009/05/22 - oCERT-2009-006 - Android improper package verification when using shared uids

2009/05/11 - oCERT-2009-004 - AjaxTerm session id collision

2009/05/07 - oCERT-2009-001 - Pango integer overflow in heap allocation size calculations

2009/03/20 - oCERT-2009-003 - LittleCMS integer errors

2009/03/12 - oCERT-2008-015 - glib and glib-predecessor heap overflows

2009/02/07 - oCERT-2009-002 - OpenCORE insufficient bounds checking during MP3 decoding

2009/01/07 - oCERT-2008-016 - multiple OpenSSL signature verification API misuse

2008/09/29 - oCERT-2008-013 - MPlayer Real demuxer heap overflow

2008/09/10 - oCERT-2008-012 - Horde, Popoon frameworks common input sanitization errors (XSS)

2008/09/01 - oCERT-2008-014 - WordNet stack and heap overflows

2008/08/22 - oCERT-2008-008 - multiple heap overflows in xine-lib

2008/07/31 - oCERT-2008-009 - libxslt heap overflow

2008/07/07 - oCERT-2008-007 - libpoppler uninitialized pointer

2008/06/09 - oCERT-2008-006 - multiple SNMP implementations HMAC authentication spoofing

2008/04/17 - oCERT-2008-004 - multiple speex implementations insufficient boundary checks

2008/04/12 - oCERT-2008-003 - libpng zero-length chunks incorrect handling

2008/04/06 - oCERT-2008-002 - libfishsound insufficient boundary checks

2008/03/26 - oCERT-2008-001 - GnuPG memory corruption