CVE-2012-6662 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, jquery_ui)

CVE-2012-6662 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, jquery_ui)

Cross-site scripting (XSS) vulnerability in the default content option in jquery.ui.tooltip.js in the Tooltip widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title attribute, which is not properly handled in the autocomplete combo box demo.

Source: CVE-2012-6662 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, jquery_ui)

CVE-2014-8595 (debian_linux, opensuse, xen)

CVE-2014-8595 (debian_linux, opensuse, xen)

arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not properly check privileges, which allows local HVM guest users to gain privileges or cause a denial of service (crash) via a crafted (1) CALL, (2) JMP, (3) RETF, (4) LCALL, (5) LJMP, or (6) LRET far branch instruction.

Source: CVE-2014-8595 (debian_linux, opensuse, xen)

CVE-2014-8594 (debian_linux, opensuse, xen)

CVE-2014-8594 (debian_linux, opensuse, xen)

The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service (NULL pointer derference) by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging (HAP).

Source: CVE-2014-8594 (debian_linux, opensuse, xen)

CVE-2014-6324 (windows_7, windows_8, windows_8.1, windows_server_2003, windows_server_2008, windows_server_2012, windows_vista)

CVE-2014-6324 (windows_7, windows_8, windows_8.1, windows_server_2003, windows_server_2008, windows_server_2012, windows_vista)

The Kerberos Key Distribution Center (KDC) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote authenticated domain users to obtain domain administrator privileges via a forged signature in a ticket, as exploited in the wild in November 2014, aka "Kerberos Checksum Vulnerability."

Source: CVE-2014-6324 (windows_7, windows_8, windows_8.1, windows_server_2003, windows_server_2008, windows_server_2012, windows_vista)

CVE-2014-3707 (debian_linux, hyperion, libcurl, mac_os_x, opensuse, ubuntu_linux)

CVE-2014-3707 (debian_linux, hyperion, libcurl, mac_os_x, opensuse, ubuntu_linux)

The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out-of-bounds read that allows remote web servers to read sensitive memory information.

Source: CVE-2014-3707 (debian_linux, hyperion, libcurl, mac_os_x, opensuse, ubuntu_linux)

CVE-2014-7815 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)

CVE-2014-7815 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

Source: CVE-2014-7815 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)

CVE-2014-8564 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, gnutls, opensuse, ubuntu_linux)

CVE-2014-8564 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, gnutls, opensuse, ubuntu_linux)

The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) Elliptic Curve Cryptography (ECC) certificate or (2) certificate signing requests (CSR), related to generating key IDs.

Source: CVE-2014-8564 (enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, gnutls, opensuse, ubuntu_linux)

CVE-2014-3640 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)

CVE-2014-3640 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)

The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.

Source: CVE-2014-3640 (debian_linux, enterprise_linux_desktop, enterprise_linux_hpc_node, enterprise_linux_server, enterprise_linux_workstation, qemu, ubuntu_linux)