Fedora 22 : python-tornado-3.2.2-1.fc22 (2015-9143)

Security fixes The XSRF token is now encoded with a random mask on each request. This makes it safe to include in compressed pages without being vulnerable to the BREACH attack. This applies to most applications that use both the xsrfcookies and gzip options or have gzip applied by a proxy...

SUSE-RU-2015:1021-1 Recommended update for freetype2

This update for freetype2 adjusts the patch that fixed CVE-2014-9671 for better backwards compatibility. As the PCF format doesn't have an official specification, we have to exactly follow X11's pcfWriteFont and pcfReadFont functions' behavior...

Open-Source Disk Encryption for Windows: LibreCrypt

LibreCrypt is an Open-Source “on-the-fly” transparent disk encryption for Windows both 32 and 64 bit. LUKS compatible – formerly DoxBox. This software can create “virtual disks” on your computer – anything written to these disks is automatically encrypted before being stored on your computer’s ha...

Low: Red Hat Bug Fix Advisory: jboss-ec2-eap enhancement update for EAP 6.4.1

Updated jboss-ec2-eap packages that add an enhancement are now available for Red Hat JBoss Enterprise Application Platform 6.4.1 on Red Hat Enterprise Linux 6. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java EE applications. It is based on JBoss Application Server 7 and...

Portable Penetration Testing Distribution for Windows: PentestBox

PentestBox is not like other Penetration Testing Distributions which runs on virtual machines. It is created because more than 70% of penetration testing distributions users uses windows and provides an efficient platform for Penetration Testing on windows. It provides all security tools as a...

Fedora 20 : ca-certificates-2015.2.4-1.0.fc20 (2015-7714)

This is an update to the set of CA certificates released with NSS version 3.18.1 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla,...

WakeMeOnLan v1.71 - Turn on computers on your network with Wake-on-LAN packet

This utility allows you to easily turn on one or more computers remotely by sending Wake-on-LAN WOL packet to the remote computers. When your computers are turned on, WakeMeOnLan allows you to scan your network, and collect the MAC addresses of all your computers, and save the computers list into...

SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2013:1151-1)

The SUSE Linux Enterprise 11 Service Pack 2 kernel was respun with the 3.0.80 update to fix a severe compatibility problem with kernel module packages KMPs like e.g. drbd. An incompatible ABI change could lead to those modules not correctly working or crashing on loading and is fixed by this...

Debian DSA-3261-1 : libmodule-signature-perl - security update

Multiple vulnerabilities were discovered in libmodule-signature-perl, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-3406 John Lightsey discovered that Module::Signature could parse the unsigned...

Debian Security Advisory DSA 3261-1 (libmodule-signature-perl - security update)

Multiple vulnerabilities were discovered in libmodule-signature-perl, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-3406 John Lightsey discovered that Module::Signature could parse the unsigned portio...

Fedora 21 : ca-certificates-2015.2.4-1.0.fc21 (2015-7892)

This is an update to the set of CA certificates released with NSS version 3.18.1 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla,...

Ubuntu 12.04 LTS : openssl update (USN-2606-1)

For compatibility reasons, Ubuntu 12.04 LTS shipped OpenSSL with TLSv1.2 disabled when being used as a client. This update re-enables TLSv1.2 by default now that the majority of problematic sites have been updated to fix compatibility issues. For problematic environments, TLSv1.2 can be disabled...

Fedora 22 : ca-certificates-2015.2.4-1.0.fc22 (2015-7918)

This is an update to the set of CA certificates released with NSS version 3.18.1 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla,...

[ MDVSA-2015:204 ] librsync

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:204 http://www.mandriva.com/en/support/security/ Package : librsync Date : April 27, 2015 Affected: Business Server 1.0 Problem Description: Updated librsync packages fix security vulnerability: librsync...

Updated kernel package fixes security vulnerabilities

This kernel update is based on upstream -longterm 3.14.39 and fixes the following security issues: It was found that the Linux kernel's Infiniband subsystem did not properly sanitize input parameters while registering memory regions from user space via the uverbs API. A local user with access to ...

[SECURITY] Fedora 21 Update: libreoffice-4.3.7.2-3.fc21

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

The vulnerability of the CentOS operating system, which allows a malicious attacker to compromise the accessibility of protected information

The vulnerability of the avahi-compat-howl-0.6.16 package of the CentOS operating system can lead to a violation of the accessibility of protected information. Exploiting this vulnerability can be carried out remotely...

Fedora 20 : zarafa-7.1.12-1.fc20 (2015-5864)

Zarafa Collaboration Platform 7.1.12 final 48726 ================================================== - ZCP-10149: Include Documentation hint for usage of NFS and -o nolock option - ZCP-10233: Zarafa-mr-accept script complains in certain cases about php timezone functions - ZCP-10578: missing...

The vulnerability of the Red Hat Enterprise Linux operating system, which allows a remote attacker to compromise the accessibility of protected information

The vulnerability of the avahi-compat-howl-0.6.16 package of the Red Hat Enterprise Linux operating system can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...

The vulnerability of the Red Hat Enterprise Linux operating system, which allows a remote attacker to compromise the accessibility of protected information

The vulnerability of the avahi-compat-libdnssd-0.6.16 package for the Red Hat Enterprise Linux operating system can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...