DELTA 448985 0 2617 SVN† † ‚j”f€.x¸}€AN…á@€‚†„H”X…x^RÁnÂ0=ÃWDÜÓ´Ö‚B& mœvÚ´c’º%¢$]ê"ñ÷K)&qZ.É³žŸýì¤i™æJMi^,rš$Ñ\O3 9Ä*›er6—1&áptÑ¢6ªÒþÔ ¡”´¦ªwÒZ¨‰D”zOŽ]mÁKejƒ'Î†¬AA–%hlpø²1q+pÓæìŒCÜK¼F‘DùÆvïâ¡qÛ%gMÏPµÓûïÎ!mV“bÓ.ÓGˆ=DÎWLW†*cûh¯üÜ?VëWšÆIFãi¶^G}cbkÐT2hJôeýÐª³dÝù#¤óy² E§d²•'‚; o®ó¸#/@>M¸¿\7¹jòkO¿sé|-®. ñÆbd¤ög}Ëã'ÎzÖ£Œÿø¾SãÌC ¬†Ë¦xqÛZaZíŽàObHÏišqv‹^y`ñŽ39"—*¿¢œõ_FŒn6ÈÍ† † † ‚h€„vÖ}®J˜|€\†™ … x^’Mkã0†ÏÍ¯r—%»v,ªaz_JïËDštEÉ•Æ¡ý÷+;›tÚK‚ù|Ÿ#m‘)+XŽ¶.›x¢ô64ªî…ºu«å{ôRGÿé´ño âá•)ô³ûWUÛ+UUMÿƒ2ÿLhØôhŒ‰ó·Ûv>šÃË™À8¦ûuYÕÍ<ÁðøeþJ-»Â]ù2€‰®ë(+âXràÂ>¦#²‹aîð„ˆ{0)æ,rQ-Ð—©LñŸ¥É|ŒÀ† † 1€…-w…®@¬Cƒ@†˜m3…Yx^ÍËÂ E×íW÷B‘¶¶fìÊA$Fû+.ú÷RlM ‰‰YqçL.9,_Ÿ®¼;+ oeGÐÛ(+hLEqiÄ^¼Æ1rˆæ¢æ‹Á;GàŠô°ÙNÕcÅ\>1Æ, °,Àrû½Lñ°4À²Ë=l)SbÊ¾”™ò‡Mæ'þlcéK|pkÈHÞ¢^jÕ›ûÎêŽ?sl”¨oe$#÷«'WâØp’à† † ‚P€YM“zŽx…Ù€‚-J…v½†™ „Qx^¥1oÂ0…gú+NìØI UAn¤¨0tAº0:Î‘X8v°*þ}m‚ZÚŽõtï|ï{g˜åºÆœ)ŸÏIšÙæ‘Ñ .àzí¸8ò»Æ—1Í[ÌK©«yš2zU¡ûœ’d“ý<©ðŒê/#<# á$KÒ§XgÏ!çdÊè-?MÞv¯`±3Ö»EHŒ„Rq<õÆ#éñeÜxß¹¥Ç’H'ˆ±5åÖK¡Å$IgÓ9MÆÁwÌh¹:Ûb§í%ð]g´ÃP”çÐ//À£ê:Ú3Zú{Þ›060Ì¶ïûÍ Šõ„éU5¸¼•ul\wá¥ÑpàRõá£‘ !þLÒ÷ÛÎK]ß¼_Uà„íÖÅäXþÚ9Å®à¢Áäî™KìPWfðùK‡qÍÁÏõ^-×;0!Ô|Nr¸×™€† † !ƒh €‚`N…¹•g‹?Œ'€p‚Ž5†—0pƒf task, LDTR loading needs to follow protected mode semantics. This was violated by the code.

On SVM (AMD hardware): a malicious unprivileged guest process can escalate its privilege to that of the guest operating system.

On both SVM and VMX (Intel hardware): a malicious unprivileged guest process can crash the guestcvename>CVE-2016-9382250ac2e96-ba4d-11e6-ae1b-002590263bf5"> xen-kernel -- x86 null segments not always treated as unusableŸ † † ƒ6€Uw„éšA†ˆ€‚t…‹³†™ ƒ4 addressed in FreeBSD-SA-16:25.bspatch, but some possible integer overflows remainedfreebsdsa>SA-16:29.bspatch10-10 2016-10-10 mkvtoolnix -- code execution via specially crafted files mkvtoolnix 9.4.1p>Moritz Bunkus reports:

FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser18 10.210.2_1 9.39.3_2h1>Problem Description:
Multiple integer overflows have been discovered in the XML_GetBuffer() function in the expat library.

Impact:

T«à† † ƒ3 d³@€…|†™ …|x^…’OoÔ0ÅÏð)F=µÒn"Ú ªj©ÄJõUOH“xÛx&ûçÛ3ŽÛ”CQÙó{oÞË7KðHîsüI½@¦³ðõ¦M7oßl:û_¿ç(½úxbEÒuÛî)tN¸ÑwóØî[4[Ç1Öï>\4V&¢€Mº¹ ª³¿zlÑÄ$I°óŠ†VËñ8'‚0Oeˆ`aðœ(—)˜0%Fp,1“áâ|Ž`päMp«“ObzcAWPAŸ™©œÿ-‚õö:Ù»= 1™˜b®ìâ–àüÇå%H„ŽŽJu‰ J<W¾Ÿ ;ç}¹í#ËêÙÎÌEX]!3eq1À€ÎÏ™T¾~¿»C™}B¯³(%˜°*k—ð*G,–ò&õÅ‹fuÔÔ—>Áç‡/O)WÑ—eð_é†UŸeÁ>#Û¦ ý¼x…wêjtår:¹1«ys¦9ˆÕÙÍ2P(SNwÖõ¶4¢,N 8{9«‹£ÁÕ±•>æ<'{Pâò/Â¤‰äÃJã5ÀQ»MÙm'œø"šÿy²€† † ‚B¯N„¸?€‚/^‘c€‚v—@†˜y'„ex^1oÃ …çæW ,™v;mE½T:tíZáœÒ`°8l+ÿ¾ÆI3´ÂÇñîï±úÄz2îÀ^[8àŒ:®ˆ,ÔhW¬#ìµg]ðÑ+oÕ€Z¬žß_ø&ËK¾Ýç;)~Ú6/ùŸ¬¸MVÞ&Ûß&»ÿ+ëƒ>cì…Çqí;t#X»V¾ÖP$á‰8¡êƒ‰'‘H"+D¶‰–¦“hB™”^s|3j–NfÐÅpºŽ´^›Æ ®æfÏ&#×æ¬’BCDJ)†Þºj‘ÊT±Áè§%”Jgy<Ïk=mXòºÞ*þ ê²Ø!l1WË+úÎ¨ê‘wŒsf½Ë4:3¾a„a0 YÂc€ÚX ’çÉ3šU¤«‹Ôq²[-îäí…/Å9è;ÀMÏÒÆj³Þl¾ï¾¸¯¸ † † —H…Ñ<€`…Ôy€jJ…ê;€‚^†™ „nx^¥Ínƒ0„Ïå)¢ÜÍú'¤rycBØ²$úô…Ð¢J…\º—ÙOi¤š`}ctU“ÂgÂAÀÃ·ErxŽ˜õ5FÞ®uÚÙÏ¦mej} ÎÛ›Q1@x3€äœ—®eò)4ã2SJ3ž1„s¦~\²hM˜€áÑöE2ËY†F«‹9)¬ 2S"ÄpTÒR#Œ)¿`zbeÅßYÑºFú&ûÚº‘žÑ"ô²3Eò&žÛŒî¶K²]Âÿ?YSˆ6$ÍS‚LRÀrþù!8©îò×aõkôZäû%¶{Á²Œo°2_Íâ¿j¾À† † {sƒ;€yD¡=‚x¼@†˜XHy8/">
By calling a particular script that is part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installedÄà† † ƒ7€ƒ^x‚þ|€‚Zƒ@†˜MS…ax^RËŽ›0]O¾ÂÊÞ1ÈcêPUS©»núû¬›ø‘6ßk˜éh¶EXŸûbwÃ)íœ¿Š¯óeÁW¿ÀE¹i"0\t}:Tp:â¾„¦ÔxÆ®:}Õ¨3žÏpl°Ç}µo¤H~l7lydÆCŒsx‚‡ÔíÈQÛùdÈ¡x4O½X£‰ÿˆ%…'Ò£UÞ ñç ÊÝÑ?Úª(^xy”âƒ}×¡«æÀ‹’^)Væ-Ê?S)îi´í&ÃŒØÝèË¶îöpÄcÁ¡WÈËÞ5/k xÖUYt§í›Wt³Qíä¬cœ³ïî«™rþA•¢qVŠUµÞ€¾G?jšA½ÂÛÍ“´0áâ%Å‰ò`éLŽ±¾¼°Þ¥™yœáYŠ9kºÑ©×[r™2/Û<,šU@5šÃòG¸8"7NÜjÑÔ{ªá)'Ð~³b¤<Ð³ßƒc ,-&úÒLÒ8>¸\@ËBôÆ^Yt¬Ã|ŸQµ–ºQgX?:ˆ$á³362›¦Ž|?yzÃÒ¨™’¶Ñù¯^Æê¤Hã;=øÇçVþXþæË€† † ƒ#|Ür‡ í:€‚N‚Ø€yh¸=Œ†™ ƒ!6.html", perhaps indefinite period. If a host watchdog (Xen or dom0) is in use, this can lead to a watchdog timeout and consequently a reboot of the host. If another, innocent, guest, is configured with a watchdog, this issue can lead to a reboot of such a guestcvename>CVE-2015-5307 CVE-2015-8104 http://xenbits.xen.org/xsa/advisory-1566 Ñ † † )ƒ[(H†˜@‚I†˜?ƒH†˜@ƒH†˜@€‚#f‚Öz€-†™ ƒY011112113114/ 2015-09-22 2015-09-22 ffmpeg -- multiple vulnerabilities libav 1.5.90 gstreamer-ffmpeg