SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2016:2954-1)

This update for util-linux fixes the following issues : - Consider redundant slashes when comparing paths bsc982331, util-linux-libmount-ignore-redundant-slashes.patch, affects backport of util-linux-libmount-cifs-ismounted.patch. - Use upstream compatibility patches for --show-pt-geometry with...

mariadb security update

CentOS Errata and Security Advisory CESA-2016:2595 An update for mariadb is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

DLA-710-1 akonadi - security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: atomic-openshift-utils security and bug fix update

An update for openshift-ansible and ansible is now available for OpenShift Container Platform 3.2 and 3.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

DSA-3714-1 akonadi - update

Bulletin has no description...

OAuth 2.0 Hack Exposes 1 Billion Mobile Apps to Account Hijacking

Third-party applications that allow single sign-on via Facebook and Google and support the OAuth 2.0 protocol, are exposed to account hijacking. Three Chinese University of Hong Kong researchers presented at Black Hat EU last week a paper called “Signing into One Billion Mobile LApp Accounts...

CVE-2016-7232

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

CVE-2016-7228

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability....

CVE-2016-7213

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability....

Memory corruption

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

CVE-2016-7235

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...

CVE-2016-7232

CVE-2016-7232 is a memory corruption vulnerability in Microsoft Office components (Word 2007; Office 2010 SP2; Word 2010 SP2; Word for Mac 2011; Office Compatibility Pack SP3) that allows remote code execution via a crafted Office document. Affected systems are mitigated by MS16-133 security upda...

CVE-2016-7233

CVE-2016-7233 is an information-disclosure/out-of-bounds-read vulnerability in multiple Microsoft Office components (e.g., Word 2007, Office 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Web Apps 2010 SP2, SharePoint 2013 components, and Office Automation Services). A craft...

CVE-2016-7228

CVE-2016-7228 affects Microsoft Office family (Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; Office for Mac 2011/2016; Office Compatibility Pack SP3). Description: memory corruption in Office components allows remote code execution when a user opens a crafted Office document. Impact per ...

CVE-2016-7235

CVE-2016-7235 is a memory-corruption vulnerability in Microsoft Office components that allows remote code execution via a crafted Office document. Affected products include Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Office Compatibility Pack SP3. The Roo...

CVE-2016-7234

CVE-2016-7234 is a memory-corruption vulnerability in Microsoft Office products (e.g., Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word for Mac 2011, Excel for Mac 2011, Word 2016 for Mac, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and related components) that allows...

Microsoft Office Compatibility Pack Multiple Vulnerabilities (3199168)

This host is missing an important security update according to Microsoft Bulletin MS16-133. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Office CVE-2016-7231 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

Microsoft Office CVE-2016-7228 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

Microsoft Office CVE-2016-7235 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...