Lucene search
K

4225 matches found

Tenable Nessus
Tenable Nessus
added 2014/12/06 12:0 a.m.36 views

openSUSE Security Update : clamav (openSUSE-SU-2014:1560-1)

clamav was updated to version 0.98.5 to fix two security issues. These security issues were fixed : - Segmentation fault when processing certain files CVE-2013-6497. - Heap-based buffer overflow when scanning crypted PE files CVE-2014-9050. The following non-security issues were fixed : - Support...

5CVSS7.2AI score0.04878EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2014/12/06 12:0 a.m.22 views

openSUSE: Security Advisory for clamav (openSUSE-SU-2014:1560-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.8AI score0.04878EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2014/12/05 10:4 a.m.39 views

Security update for clamav (important)

clamav was updated to version 0.98.5 to fix two security issues. These security issues were fixed: - Segmentation fault when processing certain files CVE-2013-6497. - Heap-based buffer overflow when scanning crypted PE files CVE-2014-9050. The following non-security issues were fixed: - Support f...

5CVSS0.6AI score0.04878EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.29 views

Fedora 19 : clamav-0.98.5-1.fc19 (2014-15463)

ClamAV 0.98.5 ============= ClamAV 0.98.5 also includes these new features and bug fixes : - Support for the XDP file format and extracting, decoding, and scanning PDF files within XDP files. Addition of shared library support for LLVM versions 3.1 - 3.5 for the purpose of just-in-timeJIT...

5CVSS6.8AI score0.04878EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.45 views

OracleVM 3.3 : nss (OVMSA-2014-0014)

The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Update some patches on account of the rebase - Resolves: Bug 1099619 - Backport nss-3.12.6 upstream fix required by Firefox 31 - Resolves: Bug 1099619 - Remov...

7.5CVSS6.3AI score0.04399EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.66 views

OracleVM 3.3 : openssl (OVMSA-2014-0032) (Heartbleed) (POODLE)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix CVE-2014-3567 - memory leak when handling session tickets - fix CVE-2014-3513 - memory leak in srtp support - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SS...

7.5CVSS7.9AI score0.99999EPSS
Exploits105References21
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.31 views

OracleVM 3.3 : nss (OVMSA-2014-0023)

The remote OracleVM system is missing necessary patches to address critical security updates : nss - Added nss-vendor.patch to change vendor - Replace expired PayPal test certificate that breaks the build - Resolves: Bug 1145431 - CVE-2014-1568 - Resolves: Bug 1145431 - CVE-2014-1568 - Removed...

7.5CVSS7.4AI score0.1617EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.249 views

OracleVM 2.2 : openssl (OVMSA-2014-0007)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability - replace expired GlobalSign Root CA certificate in ca-bundle.crt - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 ...

10CVSS8AI score0.95326EPSS
Exploits34References20
Tenable Nessus
Tenable Nessus
added 2014/11/24 12:0 a.m.42 views

Fedora 20 : clamav-0.98.5-1.fc20 (2014-15473)

ClamAV 0.98.5 ============= ClamAV 0.98.5 also includes these new features and bug fixes : - Support for the XDP file format and extracting, decoding, and scanning PDF files within XDP files. Addition of shared library support for LLVM versions 3.1 - 3.5 for the purpose of just-in-timeJIT...

2.1CVSS6.4AI score0.01133EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.71 views

CentOS 6 : openssh (CESA-2014:1552)

Updated openssh packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.5CVSS6.5AI score0.04751EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/10/23 12:0 a.m.33 views

Scientific Linux Security Update : openssh on SL6.x i386/x86_64 (20141014)

It was discovered that OpenSSH clients did not correctly verify DNS SSHFP records. A malicious server could use this flaw to force a connecting client to skip the DNS SSHFP record check and require the user to perform manual host verification of the DNS SSHFP record. CVE-2014-2653 It was found th...

6.5CVSS6.4AI score0.04751EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2014/10/16 12:0 a.m.203 views

openssl security update

1.0.1e-30.2 - fix CVE-2014-3567 - memory leak when handling session tickets - fix CVE-2014-3513 - memory leak in srtp support - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SSL3 1.0.1e-30 - add ECC TLS extensions to DTLS 1119800 1.0.1e-29 - fix CVE-2014-3505...

7.1CVSS0.5AI score0.99999EPSS
Exploits105
Oracle linux
Oracle linux
added 2014/10/15 12:0 a.m.96 views

openssh security, bug fix, and enhancement update

5.3p1-104 - ignore SIGXFSZ in postauth monitor child 1133906 5.3p1-103 - don't try to generate DSA keys in the init script in FIPS mode 1118735 5.3p1-102 - ignore SIGPIPE in ssh-keyscan 1108836 5.3p1-101 - ssh-add: fix fatal exit when removing card 1042519 5.3p1-100 - fix race in backported...

5.8CVSS0.9AI score0.04751EPSS
Exploits2
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.33 views

RedHat Update for openssh RHSA-2014:1552-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.7AI score0.04751EPSS
Exploits2References2
Citrix
Citrix
added 2014/10/14 4:0 a.m.289 views

CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw

Description of Problem The recently disclosed protocol flaw in SSLv3, referred to as CVE-2014-3566 or POODLE, could expose some deployments that support SSLv3 to a risk of an active Man in the Middle MITM attack. A successful attack could lead to the disclosure of the information that is being se...

4.3CVSS5.8AI score0.99999EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2014/10/14 12:0 a.m.52 views

RHEL 6 : openssh (RHSA-2014:1552)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1552 advisory. OpenSSH is OpenBSD's SSH Secure Shell protocol implementation. These packages include the core files necessary for both the OpenSSH client a...

6.5CVSS6.6AI score0.04751EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.29 views

F5 Networks BIG-IP : SSL acceleration card timing vulnerability (K15500)

SSL virtual servers in F5 BIG-IP systems 10.x before 10.2.4 HF9, 11.x before 11.2.1 HF12, 11.3.0 before HF10, 11.4.0 before HF8, 11.4.1 before HF5, 11.5.0 before HF5, and 11.5.1 before HF5, when used with third-party Secure Sockets Layer SSL accelerator cards, might allow remote attackers to have...

5.9CVSS6.2AI score0.0162EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/19 12:0 a.m.38 views

SuSE 11.3 Security Update : openssh (SAT Patch Number 9357)

This update for OpenSSH fixes the following issues : - Exit sshd normally when port is already in use. bnc832628 - Use hardware crypto engines where available. bnc826427 - Use correct options for login when it is used. bnc833605 - Move FIPS messages to higher debug level. bnc862875 - Fix forwardi...

6.5CVSS7.4AI score0.04751EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2014/06/19 12:0 a.m.77 views

SuSE 11.3 Security Update : openssh (SAT Patch Number 9357)

This update for OpenSSH fixes the following issues : - Exit sshd normally when port is already in use. bnc832628 - Use hardware crypto engines where available. bnc826427 - Use correct options for login when it is used. bnc833605 - Move FIPS messages to higher debug level. bnc862875 - Fix forwardi...

6.5CVSS7.4AI score0.04751EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.36 views

openSUSE Security Update : openssl (openSUSE-SU-2013:0337-1)

openssl was updated to 1.0.1e, fixing bugs and security issues : o Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version. o Include the fips configuration module. o Fix OCSP bad key DoS attack CVE-2013-0166 bnc802746 o Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169...

5CVSS6.3AI score0.39593EPSS
Exploits3References8
Rows per page
Query Builder