DELTA 450595 0 2935 SVNf*r7ZPX1x^QAn0 <7 zW+NZ~a-ӉPEJ뗶Vp)׶,vJ}qNf(ʔ]q8y7ΡFl/md\HC$~jI:29-=EW'kY7bSuʰSJ25r5G4B`Pʘ7&P0֛w_Wߖ7LB\cl.:mW] ty(D.×@gm֒;):)[ kY06>F-=;g,E\>_AP>ԆYV= s\B/*6@^B#Bg) 4h h}%/M(>x^J1?{RREz,}f0lklׂ*4ǐ/_;fT;%r=%%?y2x(<&cO. Kp4iZȎP@\wsG&)RTሚ ;E줗:O22fruOo6ꥢ hd*2(˕sahƞ:wPd;O嗌=JƂ^ƂF 47WN֮#%*UI~c+()'oӒ  u x^]o0W$vRDGOdq K7ȅ^ T6}^#JI$<ϝ`;*~9Er Nk.qTYOUc8s dBxΕ i@?y@vQ}00Z!!9; `*}l oW-OM]8BM_O&uLxQ0@ȐH,ӌ%aR,FM`_-tnčyk(`2$ xT5P iţL_3UV؁NPņihCKk?9d]t>zQ_I i"6| ۲^o]ev}s^ad;uzXNpuHx^URK >7b`t\K}^{j{8FK؉}v9 z*~w)j)uPѰQha譣Gצּv<+dFB/:/ ,@mKICӥd*_oLqH!RlA`ah}o?vS-t37[]ғfCƝO9[s19:Gg,Ӣg4.T޹8 p,١ܨ^~ QsHȆ[ӵ /2ӏ2D{IS'őĐq_t|fJFj)So$s챞WZC%&Zɩ3մv0'ܵꟑwnhcL@) r~}XəD' " u x^K-/NM.-,u v520455ҷ/-ʱR;J_\ 21%T0Ä fR 343RsS\!* lâ8eD)34 N!qʌSfL2┙X0$. CbW,Ol_"ENTux^QR0 wC㰆1i:(^qփcɒ Vzz޳$p` H K!?Yނcci>L dC-apC6؋hƵ$56R-J%0z޲5Hާ4 q80]Rz1MÿG^RRاiZZvH #B:%ф i5/o?{Cj*stb \l{a@*+R5o*46M]R/OsYhr$-#ZkeQ"㼅? #|s8#^ArK9>˝UE5)uVx^0>j[kaeaA"AaHm &K,oYP09M/v11סXǡĻpT}uTT:^,W\|oVpFSp`ɶ|Xϔ(X~(`(4L}Á:@^j.p/TJɘp6-cF"f2eLS#ۛQ2voK]s['['R# run tasks or containers on a cluster5-1776 http://mail-archives.apache.org/mod_mbox/hadoop-general/201602.mbox/browser 2016-02-15 2016-03-19 git -- integer overflow gitgui%R=]s(u#s> 2016-02-020519db18-cf15-11e5-805c-5453ed2e2b49"> py-pillow -- Integer overflow in Resample.cIf a large value was passed into the new size for an image, it is possible to overflow an int32 value passed into malloc, leading the malloc’d buffer to be undersized. These allocations are followed by a loop that writes out of bounds. This can lead to corruption on the heayLcWv &yx7>wqemu -- denial of service vulnerability in MegaRAID SAS HBA emulation6021312/21/7">

Qemu emulator built with the SCSI MegaRAID SAS HBA emulation support is vulnerable to a stack buffer overflow issue. It occurs while processing the SCSI controller's CTRL_GET_INFO command. A privileged guest user could use this flaw to crash the Qemu process ˀ\\h~Xj~u9x^MO0 +,N uel&!8q؁[&h*IR6&_?5-!=(NG8be4F)Ho\H@ު4*^dYz1FToDMhr+(O.97N@q,:Ps&6Pb۹5)S8ǒ<[Ay,X ߽.nN]m=]ƙESrS4$ɱUIִ CS%~|n)""n;j>MZ\=+ktH iwH{-קnePgVJ:;{_X`J/&麟*LqYѠuD.?v@dugx^Mk0ͯ$ -1n=k%W/wd'![ yygT[UU<ǗLL)ʜgζlŗ]vM{Yue"V@=ĻTyØ++$"*K}d%r u?&ºҥ.?ɎHSn;ӟ90A+<c3WvP<jP;oKN;:m5P?-zMvF˂?ag *xx"8eN2"z?|.\-${9R

The QEMU model of the RTL8139 network card did not sufficiently validate inputs in the C+ mode offload emulation. This results in uninitialized memory from the QEMU process's heap being leaked to the domain as well as to the network.

A guest may be able to read sensitive host-level data relating to itself which resides i,Z-M@R?q22.html">

The code handling certain sub-operations of the HYPERVISOR_xen_version hypercall fails to fully initialize all fields of structures subsequently copied back to guest memory. Due to this hypervisor stack contents are copied into the destination of the operation, thus becoming visible to the guest.

A malicious guest might be able to read sensitive data relating to other guests.cvename>CVE-2015-2045 http://xenbits.xen.org/xsa/advisory-122>`~`~IuKx^J1W NR ō dnH2S^; R*fH8?ߙXKdOw8Ilx FJvܷ*磮撫HAF θֳ0]'یDA 4Y&khgA2-Zs+qU-C}o QrMތϑ,;8Dc8d\я S̢Z>,V_6]NXC5l1 &QC+!O/pL~i{qW!JzcNO2g7)x >O),R+^=^uXqX-Sw|y$uPlinux-firefox 37.04646.0630 Miscellaneous memory safety hazards (rv:37.0 / rv:31.6)

MFSA-2015-31 Use-after-free when using the Fluendo MP3 GStreamer plugin

MFS, bu)x^}Ao0 ۯ zJNtk;v؀]iȒJGm3H}'R:L]H@ `2 k跧İ ÷aq `c-QNpEXޟG2O(a}XvQbF*s:jDs*/Gq(ow}Q|R2,g ΫEv(l4eTT,%E/W/e[\yǃ%\qV7d=8D?>p}1Ȯ ^V/{.<nj̜OB/s%k $K^a@Lu*x^Oo0 ͧ kbCg`6[zhȒ'qGO ;[#ߏ;18)Az&HH dA"8KA\\ exZbpR0i嬓]|8E5"e].esP-`AmqD:wMqc3(.^ EA.@Ap=è?b@˱Ye9P>8T<]"j1J;%'K8&G\~aT8R`oT<&Zz]J#y:F%X :uHS0=n"ҥp~ sL MKKsQ#.>UuiN7ݬvSO7_0dnfۏöVH][p|N}eMU=^~RWT-vhux^URMo0 =7ȥ'YGQ=K,ѱPY$9]N1GtÙGTs0ǚ)eTUCs<`¸ ZΞ_0\L蚇.=rjV#k|uNQՍph-ed3[p1m͑}MRa/edPvJ~25;ށ1xGgCp1 aƝAa?[{dP4>E4wJj&>͓prS7 hٳkN*r) >zg Ao!)ǁ_q;3;쪊%|gqA9҄#@4 y{2eABHIPDwr0 /c-t~Nh̛;Ig(৻9ϔ~bМER9MFiLFP]YPuFux^uRK0>b@&} U8ʊ;:L6d=DS3 SaӐ+3yUl%rZЍA;*/~|ϱ?B*xќvQpkEҶ,uTk;LNĶ\/WrDia$.xBa3ʮw>Pƃ Ԏ_<>Sn|p)S820z'[bq\ c-p"a` Ԫ[&ub@\G 07@کBUuNjn3x!uġ'*f4C/V\ XKFFbķ.v~ o'џv;% .L^y*)1Lb^5`SKl/wS}hbnqrUd/ |x{ 3דq53Ǧ/>E@t^@uhx^R=s0 _܅"ic$:;EA/2?})KrjY2Zn̙ș,BɥďzH;xc%٥⧡sj4G N~]ﷹ{cRdb/槐Eb=kE[Sv 0xGñ;xĚ2tӠ_|o#.Z߼RXudL|}qnc_8?9|8pYح=6!>DzQU#&XS)y^Q{l>%&K5+/v4.7`]t^6Z1?֚vP! ң7[C0HO]+bt 5:2a8Y"[XPz% JbπdOY&|9trd^<ځ  u x^USMo0 =w40 (C; Xt ;EAe~SdO}wun{ǒ$0`8ӕ{0&4'߷~CE`8ŁB>׫vN`9[͍B0M$$m O?[7[Lr&_Sn Y= 2Rrf)B67/m88@xuFx^Oo0 zjNk = C(v d_):+I' "H=_0JT:i$]u*7?_`'w 1^_GJ3n/J KO}z]4e5)>-evL~Dir-{ЍNNS} v3@bk7ɜFcEAD:hpeg.6YLItD&֧D6&~A$ r!HfA`{RV2;~IQJ5JH/`~̑L?*Ek>_!ݮWDE!SOJ(~B[? Mu([QV}xI &YӔ3f&⚁eZZ~Wu1x^j0EW Mb5lJٔPJEDZZ[28(nBMprꢭK~)A%9 A'%wQAUug+HK}XrY/|~6 ݤ\ n8VϵQ]U),A=#?nF/'z?3ubx^j0@W 9'Vt#R9dybȒ3'w+T!lzHԃ %y$]XgLM!]"+//Q<$יd ys;N+S6;_d^7ܖ:i{훲K4Y&j+'tYWB|^@i0]l YiOơaJ  f#8ەRd+"IJMpQ':p- ~k:m4t i*R zQeN~1PF <C!ᐆ:?B4Io} ,dX9wE|uuwx^}j0 ^3ֱR(*Qh4Ӭo?Iaؖl '+93kSS>/`ٯևjR(mRg"z!YOmI"/]#XO(P %U#́ÊF MPPNW "* gIq5J(L9 K3Ԃ|M*-9Rq$@ 鉦b sj%Z?_8V*O߹`<6G wtW_-D:IBX%x2`+Mk(%o4d[6)Y<({Ɇa[ ~iif91{5fU>{RȀ~_'v@u6x^Rъ0|Nbw[kLQ } GI^']ɡ9 HFl;HKAmH/ M-L5ZMw!:T8~Z!q'8Y0},.1 L)ƛk;s!;c?3P[b(=ZN/VWb_gJ,W`g:w+" ١"y{N#ֹTbݰ0#ԩNESTQUmgO7/3GSڶhF.?~6zx%BQo0EYN'X*:z.(L CҪXc)<@̎Oꃔ„mQO@/c (c➒xE-7Q|5;ٿ-J3t g( 윊mUjmhL]F(:o[,!8DcF-:#WZ9wGP Kq|ν (L=Vv@5uIx^mn1 EW#q7}U]tMk!S}ډ"Ͻ6cնv^ mx{zz њݐrDU&f`+lb]$#-s:D4/xSw= |2+kS?<|\4'HC~Vz8`^^sP7F-Ds,:af~jtW|~M!dYL4pUg*xܥ @{j 7@ѾCb@?Z3&4Bmf 8Q2}1c̬a?Yu:^Lh#Z)4zyUPfd8(2H5Ps.֠&&J 1h3kz;(-d'TĢt_cy?k^ }P>Rb:uYx^Ak0ͯrjkm7d JB,!䎤uwd{i/i<{IjYxƀ&1ŋLxEu&]yq"nw|҇d ":YL WSd)~9ODZ7N<f)b'J],nҮ @!$YOaҖ  !OeYW0Õ^ Z|ߜ8/BDy`i&q%Ƀ'e`_}phb.g2CfJ`X5@H8YYE:xt&ʨ}܂5wáVQ4/O~?۶Ķc?+VY>܄AͩU_|R'Ծ,uu.S$/o4!v EJ@wG?u>x^En0 SX=0+*x!;M`Cd[~v;&4b^c.bl]PJ-&#?Z0OJyR+2t =ZQ"QvAkۂ [s,c{:GcˬML=Tmq8ꢪ*Z oմ~jEH D0g;˪}Y"O;!@"aQ, (-筚e Y`I I_-el$4 thF5 =HZ"F!BqsLw7S:'h2_d@ٕC/IyqWhM ӳف%4`@L@u_x^10kW›m6rPP QĞ$9v4s_-H4j760 M$-BOjCVAe7~%%g@cĐήpgzĭA.AӸh '0R!a6pXw1 4m7ڸTgu@,TF^"H;gi~|]ǔڥog\er";XOgqRe[q|xol>}ոnPM;cy$b\2tqd%ғRi/ -(_G6aHДm{3Ps|]>Wlt%!B9sgн u(20'm3:Łd{Jڗ-ʟVbЫg^m -j}7b0lfKTsWGSO'|.x=X"+ Qk6j1'&x=wL3 yU/s8qbC="! ~1NŢf'z}i cKkv$,5ul,NJF_EɫEI[QQ!Jුs~[ͯ6m)䅾3!uJH`6  w7LDg"fIe|$E$odp$shH;PFZ;bBT-&O$bɪ2 P u x^RMo0 =BaXfݶðbB>\I?I: kDQ=>! 8Q€I'F 5!;!?mB}1}K4z%^ "5H8QKi JD8?;>A<)) Q <fp5'ܑĤ,m[Ia?)p`$F͞E^rJWl[~Ƌ]vlu0Ⰸ-6c9/xN46K@9 ǃOշ.Z8y"JTUmlGϺ|6GiIw%] Υ EF4#zVQݭ73zVʊ4MكeU5LXFivEwA.w&WCWHP*xRqXGP?i=Xr?!NRuKx^mQn0<'_G\;PtIz,z(PVɕ0-JZ9;1\3+ARF6/iq_o`:+ ы;u|#y2=l!ѢJ5kXפ%Y{'lz|(;<߀UbcGJTvL\ ?OKէuthzY"RD)U^Vɕm9ͿM?c'׿*ꃂ6{Nct&3nu4d malicious package using the PEAR installer, or explicitly install a package that depends on a malicious packageurl>http://pear.php.net/advisory-20051104.txt4 openvpn -- potential denial-of-service on servers in TCP modeIf the TCP server accept() call returns an error status, the resulting exception handler may attempt to i!h e@\T?x@QvXKx^UQN ];_AShcʙ8=K%҇җp9s_mʢ]1#F+XxO JԃxU,,{b7ˌ+hIД6"UxN>cftz=X}x^Mo ͯ@||$Nj&kE`N`/w &mJ@z 3 5#8}f󊊛Vi0G4i;b=B`+rz]oV\76 C~`6OsOp[b)B#ꯕ?ˤ~rXV7 Y0t%3.CoE4\(v NYY!bs,ˬȈZ;K#ѻ%ִ`)?V4MPJŸۃ;%;ҷ$Ւe7NRmKK6/iJMQLO_)]P4|LM')~& hja(!'N<~(,~w }gge>0 fr-linux-netscape fr-netscape7 ja-linux-netscape ja-netscape71name>pt_BR-netscape7k>Lu?x^mR0b `H ( EE.ȣ_Qk1eHJ|{BQa0QBptp5qpL<54: (Đ BKT| <&+| 8e% q6k{kDM!}Y/f9?7b~wU[} [qF zĀ:Q(nD"dv&p'b"fGO F\ PAkW8p1C ˫"+9'v*"dQf&~ÕI`\h1TA%,T1+51]7+=@%EmύM兦ՓځKxo=ej ?:ʒr#U+8U-|]%D}bcHBA ͓0 9x#](bVKN oVۦLLnr}&Jn9Fk |MCFx^^Qw?Q?duCx^R͎ >ob=c f+轚l؉Wj/c?*f(t lǞHuRdC@=TYvh1qiG>nI"!uAZL'=΃TW:^v]}ׯ\M=󻅷Uxmnhe<3Y?q5u'?!%-9KL,4ebWE4?\e2< wλ$ j5@3q]xEm&PqY\9uLC'4ta>V%_n q3nutw3 l+B^t%,\\/8q;ݻ(&c(JN =^, -ya,)$EayрKR =wrEw-uxME4.n K}`5^k {!.~B ؉騅}XWi(pX3b(K +t%7xTѯ