[SECURITY] Fedora 19 Update: python3-3.3.2-9.fc19

Python 3 is a new version of the language that is incompatible with the 2.x line of releases. The language is mostly the same, but many details, especi ally how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been remov...

Hash Compare - File Integrity Comparison Tool

Hash Compare is the FREE File Hash comparison tool. It performs Hash based Integrity Comparison using any of the the popular hash algorthms such as MD5 , SHA1 or SHA256. To make the task easier and quicker, it also supports the 'File Drag & Drop' feature. That means you can just drag & drop one o...

LibreSSL Portable Fork Of OpenSSL Released

After months of code cleanup and rewriting, the OpenBSD Foundation this weekend sent LibreSSL out the door. The slimmed down OpenSSL fork works on a number of platforms beyond OpenBSD, including several Linux flavors, Solaris, Mac OS X and Free BSD. “I firmly believe that LibreSSL is in a better...

Moscrack v2.08b - Multifarious On-demand Systems Cracker (cracking WPA keys in parallel on a group of computers)

Moscrack is a perl application designed to facilitate cracking WPA keys in parallel on a group of computers. This is accomplished by use of either Mosix clustering software, SSH or RSH access to a number of nodes. With Moscrack's new plugin framework, hash cracking has become possible. SHA256/512...

[SECURITY] Fedora 19 Update: libreoffice-4.1.6.2-7.fc19

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

Linux 3.4+ recvmmsg x32 compat - Proof of Concept

No description provided by source. / PoC trigger for the linux 3.4+ recvmmsg x32 compat bug, based on the manpage https://code.google.com/p/chromium/issues/detail?id=338594 $ while true; do echo $RANDOM /dev/udp/127.0.0.1/1234; sleep 0.25; done / define GNUSOURCE include netinet/ip.h include...

Novell Netware 5.0 SP5/6.0 SP1 SMDR.NLM Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1467/info When Novell Netware is configured with IPX-Compatibility enabled, it is vulnerable to a denial of service attack by sending packets with random data to port 40193. Similar results are possible by sending...

Cygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req() Buffer Overflow (1)

No description provided by source. source: http://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos ...

ISDN4Linux 3.1 IPPPD Device String SysLog Format String Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in the ipppd utility. In some...

Live For Speed 2 Version Z .Mpr - Local buffer Overflow Exploit

No description provided by source. / Live For Speed 2 Version Z .Mpr Local buffer Overflow Exploit !! X version .mpr header specifications can be found at http://www.lfs.net/?page=MPR Version :Patch Z and all previous versions. Vendor :http://www.lfs.net/ Release date: July 14th 2009 Patch for th...

OpenSSL and Breaking UTF-8 Change (fixed in Node v0.8.27 and v0.10.29)

OpenSSL and Breaking UTF-8 Change fixed in Node v0.8.27 and v0.10.29 Today we are releasing new versions of Node: node-v0.8.27 node-v0.10.29 First and foremost these releases address the current OpenSSL vulnerability CVE-2014-0224, for both 0.8 and 0.10 we've upgraded the version of the bundled...

openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1959-1)

update to Thunderbird 24.2.0 bnc854370 - requires NSS 3.15.3.1 or higher - MFSA 2013-104/CVE-2013-5609/CVE-2013-5610 Miscellaneous memory safety hazards - MFSA 2013-108/CVE-2013-5616 bmo938341 Use-after-free in event listeners - MFSA 2013-109/CVE-2013-5618 bmo926361 Use-after-free during Table...

openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1957-1)

update to Thunderbird 24.2.0 bnc854370 - requires NSS 3.15.3.1 or higher - MFSA 2013-104/CVE-2013-5609/CVE-2013-5610 Miscellaneous memory safety hazards - MFSA 2013-108/CVE-2013-5616 bmo938341 Use-after-free in event listeners - MFSA 2013-109/CVE-2013-5618 bmo926361 Use-after-free during Table...

openSUSE Security Update : phpMyAdmin (openSUSE-2012-18)

update to 3.4.9 - bug 3442028 edit Inline editing enum fields with null shows no dropdown - bug 3442004 interface DB suggestion not correct for user with underscore - bug 3438420 core Magic quotes removed in PHP 5.4 - bug 3398788 session No feedback when result is empty signon authtype - bug...

openSUSE Security Update : glibc (openSUSE-SU-2011:0921-1)

The implementation of the blowfish based password hashing method had a bug affecting passwords that contain 8bit characters e.g. umlauts. Affected passwords are potentially faster to crack via brute-force methods CVE-2011-2483. SUSE's crypt implementation supports the blowfish password hashing...

openSUSE Security Update : subversion (openSUSE-SU-2013:1006-1)

This update of subversion includes several bug and security fixes. - update to 1.7.10 bnc821505 CVE-2013-1968 CVE-2013-2088 CVE-2013-2112 - Client-side bugfixes : - fix 'svn revert' 'no such table: revertlist' spurious error - fix 'svn diff' doesn't show some locally added files - fix changelist...

openSUSE Security Update : systemd (openSUSE-2012-139)

Add fix-console-switch.patch: prevent console lockup rhb771563. - Add fix-quota.patch: correctly enable quota rhb773431. - Add passcredentials.patch: ensure compatibility with kernel 3.2 bnc743299. - Update modulesonboot.patch to not cause failed state for systemd-modules-load.service bnc741481...

openSUSE Security Update : virtualbox (openSUSE-SU-2012:1323-1)

VirtualBox was updated to 4.1.22 stable release, bringing lots of security and also bugfixes. The 4.1.22 release is brought to all openSUSE distributions to align their versions. changes in virtualbox 4.1.22 maintenance release - VMM: fixed a potential host crash triggered by shutting down a VM...

CVE-2014-2778

Microsoft Word 2007 SP3 and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted embedded font in a 1 .doc or 2 .docx document, aka "Embedded Font Vulnerability."...

Memory corruption

Microsoft Word 2007 SP3 and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted embedded font in a 1 .doc or 2 .docx document, aka "Embedded Font Vulnerability."...