[SECURITY] Fedora 20 Update: kamera-4.14.1-1.fc20

Digital camera support for KDE...

CVE-2014-5856

The Selfie Camera -Facial Beauty- aka com.cfinc.cunpic application 1.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Selfie Camera -Facial Beauty- aka com.cfinc.cunpic application 1.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5856

The CVE-2014-5856 entry concerns the Android app “Selfie Camera -Facial Beauty-” (package com.cfinc.cunpic) version 1.2.7. The root cause is failure to verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and read sensitive information via a crafted certificate. Af...

CVE-2014-5618

The Cartoon Camera aka com.fingersoft.cartooncamera application 1.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5566

The Selfshot - Front Flash Camera aka com.americos.selfshot application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Design/Logic Flaw

The Cartoon Camera aka com.fingersoft.cartooncamera application 1.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Design/Logic Flaw

The Selfshot - Front Flash Camera aka com.americos.selfshot application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5618

Affected software: Cartoon Camera (com.fingersoft.cartooncamera), Android app v1.2.2. Vulnerability: It does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Root cause (as stated): La...

CVE-2014-5566

CVE-2014-5566 affects the Android app “The Selfshot - Front Flash Camera” (com.americos.selfshot) version 1.1. The vulnerability is that the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafte...

CVE-2014-5566

The Selfshot - Front Flash Camera aka com.americos.selfshot application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5618

The Cartoon Camera aka com.fingersoft.cartooncamera application 1.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2013-2595

The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, enables MSMCAMIOCTLSETMEMMAPINFO ioctl calls for an unrestricted mmap interface, which allows...

Design/Logic Flaw

The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, enables MSMCAMIOCTLSETMEMMAPINFO ioctl calls for an unrestricted mmap interface, which allows...

CVE-2013-2595

The CVE-2013-2595 issue affects the MSM camera driver in Linux kernels 2.6.x and 3.x, used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices. The vulnerability stems from the MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl exposing an unrestricted mmap interface, enabling a locally ...

CVE-2013-2595

The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, enables MSMCAMIOCTLSETMEMMAPINFO ioctl calls for an unrestricted mmap interface, which allows...

Stem Innovation ‘IZON’ Hard-coded Credentials

No description provided by source. Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’ utilizes numerous hard-coded credentials within its Linux...

Axis Communications 207W Network Camera Web Interface admin/restartMessage.shtml server Parameter CSRF

No description provided by source...

obotix IP Camera M1 1.9.4 .7/M10 2.0.5 .2 help Script XSS

No description provided by source. source: http://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues t...

obotix IP Camera M1 1.9.4 .7/M10 2.0.5 .2 eventplayer get_image_info_abspath Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues t...