Lucene search
Gentoo FoundationMGASA-2014-0437HistoryOct 29, 2014 - 2:30 p.m.
Updated konversation package fixes security vulnerability
2014-10-2914:30:40
Gentoo Foundation
advisories.mageia.org
10
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.5%
Due to and out-of-bounds read issue in Konversation in The ECB Blowfish decryption function, a malicious client can cause either denial of service or disclosure of information from process memory by using an improperly formed message (CVE-2014-8483).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | konversation | < 1.5-0.rc1.2 | konversation-1.5-0.rc1.2.mga3 |
| Mageia | 4 | noarch | konversation | < 1.5-0.rc1.3 | konversation-1.5-0.rc1.3.mga4 |
Related
freebsd
freebsd
Konversation -- out-of-bounds read on a heap-allocated array
2014-11-04 00:00:00
nessus
nessus
Debian DSA-3068-1 : konversation - security update
2014-11-10 00:00:00
Ubuntu 12.04 LTS : konversation vulnerability (USN-2401-1)
2014-11-11 00:00:00
openSUSE Security Update : quassel (openSUSE-SU-2014:1382-1)
2014-11-11 00:00:00
openvas
openvas
Debian Security Advisory DSA 3068-1 (konversation - security update)
2014-11-07 00:00:00
Mageia: Security Advisory (MGASA-2014-0437)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3063-1)
2014-11-01 00:00:00
debian
debian
[SECURITY] [DLA 168-1] konversation security update
2015-03-07 21:38:47
[SECURITY] [DSA 3068-1] konversation security update
2014-11-07 10:07:25
[SECURITY] [DSA 3063-1] quassel security update
2014-11-02 21:31:23
ubuntucve
ubuntucve
CVE-2014-8483
2014-10-29 00:00:00
cve
cve
CVE-2014-8483
2014-11-06 15:55:09
fedora
fedora
[SECURITY] Fedora 20 Update: konversation-1.5.1-1.fc20
2014-11-15 09:10:35
[SECURITY] Fedora 21 Update: konversation-1.5.1-1.fc21
2014-11-12 02:34:43
[SECURITY] Fedora 19 Update: konversation-1.5.1-1.fc19
2014-11-15 09:22:43
securityvulns
securityvulns
[SECURITY] [DSA 3063-1] quassel security update
2014-11-03 00:00:00
KDE Konversation / Quassel IRC memory corruption
2014-12-01 00:00:00
[USN-2401-1] Konversation vulnerability
2014-12-01 00:00:00
osv
osv
konversation - security update
2014-11-07 00:00:00
quassel - security update
2014-11-02 00:00:00
debiancve
debiancve
CVE-2014-8483
2014-11-06 15:55:09
mageia
mageia
Updated quassel packages fix security vulnerability
2014-10-29 14:30:40
prion
prion
Out-of-bounds
2014-11-06 15:55:00
nvd
nvd
CVE-2014-8483
2014-11-06 15:55:09
archlinux
archlinux
konversation: denial of service
2014-11-09 00:00:00
cvelist
cvelist
CVE-2014-8483
2014-11-06 15:00:00
ubuntu
ubuntu
Konversation vulnerability
2014-11-10 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.5%
Related for MGASA-2014-0437