Lucene search
K

105 matches found

Debian
Debian
added 2016/08/25 8:53 p.m.126 views

[SECURITY] [DSA 3652-1] imagemagick security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3652-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 25, 2016 https://www.debian.org/security/faq -...

9.8CVSS9AI score0.13393EPSS
Exploits6
OSV
OSV
added 2016/08/15 11:45 a.m.11 views

SUSE-SU-2016:2075-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - security update: CVE-2016-6520: buffer overflow bsc991872 CVE-2016-6491: Out-of-bounds read in CopyMagickMemory bsc991445...

9.1CVSS8.4AI score0.05019EPSS
Exploits1References5
OSV
OSV
added 2016/08/15 11:43 a.m.11 views

SUSE-SU-2016:2076-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - security update: CVE-2016-6520: buffer overflow bsc991872 CVE-2016-5010: Out-of-bounds read in CopyMagickMemory bsc991444 CVE-2016-6491: Out-of-bounds read when processing crafted tiff files bsc991445...

9.1CVSS7.7AI score0.05019EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2016/06/06 12:0 a.m.39 views

ImageMagick 'Get8BIMProperty' Buffer Overflow Vulnerability - Windows

ImageMagick is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:imagemagick:imagemagick"...

8.8CVSS7.5AI score0.05019EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2016/06/03 12:0 a.m.32 views

Oracle MySQL Server <= 5.5.39 / 5.6 <= 5.6.20 Security Update (cpuoct2014) - Linux

Oracle MySQL Server is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.5AI score0.0726EPSS
Exploits0References11
NVD
NVD
added 2015/10/28 10:59 a.m.16 views

CVE-2015-6491

Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote authenticated users to insert the content of an arbitrary file into a FRAME element via unspecified vectors...

4CVSS6.3AI score0.01604EPSS
Exploits0References1
CVE
CVE
added 2015/10/28 10:0 a.m.69 views

CVE-2015-6491

Rockwell Automation MicroLogix 1100 and 1400 PLCs are affected by CVE-2015-6491. Specifically, MicroLogix 1100 controllers (Series B) with firmware version 14.000 and earlier are mitigated by updating to 15.000, while MicroLogix 1400 controllers (Series B) with firmware 15.003 and earlier require...

4CVSS6.5AI score0.01604EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.51 views

SUSE SLED12 / SLES12 Security Update : mariadb (SUSE-SU-2015:0743-1)

mariadb was updated to version 10.0.16 to fix 40 security issues. These security issues were fixed : - CVE-2015-0411: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allowed remote attackers to affect confidentiality, integrity, and availability via...

7.5CVSS7.8AI score0.99977EPSS
Exploits14References41
Slackware Linux
Slackware Linux
added 2014/11/04 1:25 a.m.49 views

[slackware-security] mariadb

New mariadb packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mariadb-5.5.40-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information, see:...

7.5CVSS7.6AI score0.0726EPSS
Exploits0
Amazon
Amazon
added 2014/10/16 12:0 a.m.45 views

Important: mysql55

Issue Overview: Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: SERVER:SSL:yaSSL. Supported versions that are affected are 5.5.39 and earlier and 5.6.20 and earlier. Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols...

7.5CVSS6.6AI score0.05655EPSS
Exploits0
CVE
CVE
added 2014/10/15 10:3 p.m.166 views

CVE-2014-6491

CVE-2014-6491 affects Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier, via SERVER:SSL:yaSSL, with partial confidentiality/integrity/availability impact. The IBM bulletin confirms linked CVEs and notes Guardium is vulnerable; the Debian advisory recommends upgrading to MySQL 5.5.40, ...

7.5CVSS6.4AI score0.05655EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2014/10/15 12:0 a.m.3 views

UBUNTU-CVE-2014-6491

Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6500...

7.5CVSS6.6AI score0.05655EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-2247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.5AI score0.02159EPSS
Exploits2References2
securityvulns
securityvulns
added 2014/06/19 12:0 a.m.96 views

[USN-2247-1] OpenStack Nova vulnerabilities

========================================================================== Ubuntu Security Notice USN-2247-1 June 17, 2014 nova vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.1CVSS1AI score0.02159EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.40 views

Ubuntu 14.04 LTS : OpenStack Nova vulnerabilities (USN-2247-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2247-1 advisory. Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Nova did not properly set up its sudo configuration. If a different flaw was found in...

7.1CVSS5.6AI score0.02159EPSS
Exploits2References8
securityvulns
securityvulns
added 2014/05/07 12:0 a.m.77 views

[USN-2208-1] OpenStack Cinder vulnerability

========================================================================== Ubuntu Security Notice USN-2208-1 May 06, 2014 cinder vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

4.3CVSS0.6AI score0.01884EPSS
Exploits0
CVE
CVE
added 2014/02/02 12:0 a.m.81 views

CVE-2013-6491

CVE-2013-6491 affects the OpenStack Oslo stack (OpenStack Nova) using the python-qpid client; specifically, the common/rpc/impl_qpid.py path does not enforce SSL when qpid_protocol is set to ssl, allowing remote attackers to sniff network traffic and obtain sensitive information. The root cause i...

4.3CVSS5.9AI score0.01884EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2013/01/25 12:0 a.m.32 views

SuSE 11.1 Security Update : libxslt (SAT Patch Number 6491)

The following issue has been fixed : - Specially crafted XSL documents could have crashed libxslt CVE-2012-2825 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright ...

5CVSS8.4AI score0.02141EPSS
Exploits0References3
CVE
CVE
added 2009/03/19 10:0 a.m.44 views

CVE-2008-6491

The CVE-2008-6491 entry affects PHPGKit 0.9, where the PHP remote file inclusion flaw resides in the connexion.php module. An attacker can cause arbitrary PHP code execution by supplying a URL in the DOCUMENT_ROOT parameter, enabling remote code execution via a crafted request. This vulnerability...

7.5CVSS7.5AI score0.02279EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.23 views

Fedora Update for gtkmozembedmm FEDORA-2008-6491

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

9.3CVSS8.9AI score0.05284EPSS
Exploits2References2
Rows per page
Query Builder