LinuxSecurity.com: It was discovered that the JasPer JPEG-2000 runtime library allowed an attacker to create a crafted input file that could lead to denial of service and heap corruption. [More...]
on 04/18/2010 – Made popular on 04/18/2010
LinuxSecurity.com: It was discovered that Audio File Library contained a heap-based bufferoverflow. If a user or automated system processed a crafted WAV file, anattacker could cause a denial of service via application crash, or possiblyexecute arbitrary code with the privileges of the user invoking theprogram. The default compiler options for Ubuntu should reduce this [More...]
I have a jasper reporting server. It would like to make my own authentication .
Jasper has possibility to integrate into iframe but unfortunately logging in is using GET parameters, which i would not like to show to end user.
So i was gone use nginx and x-accel-redirect header, but find myslef going in circles.
LinuxSecurity.com: It was discovered that znc, an IRC bouncer, is vulnerable to denial of service attacks via a NULL pointer dereference when traffic statistics are requested while there is an unauthenticated connection. [More...]