421 matches found
CVE-2017-5572
An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can corrupt the host database...
CVE-2017-5573
An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can cancel tasks of other administrators...
CVE-2017-5572
An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can corrupt the host database...
CVE-2017-5572
CVE-2017-5572 affects Citrix XenServer (Linux Foundation xapi) up to version 7.0. An authenticated read-only administrator can corrupt the host database, as described in multiple sources. CVSS data from NVD indicates network-based access with low complexity and partial integrity/availability impa...
Microsoft Joins The Linux Foundation — Turns Love Affair Into a Relationship
You won't believe your eyes while reading this, but this is true. Microsoft just joined the Linux Foundation as a high-paying Platinum member. Microsoft's love with open source community is embracing as time passes. At its first Connect event in 2013, the company launched Visual Studio 2013. A ye...
Third-party service side of the drain: Let's Encrypt leaked 7 6 1 8 name User email address-bug warning-the black bar safety net
! Let's Encrypt translated into Chinese called“let's encrypt”, in fact, this is one for the majority of the site free-issued SSL/TLS certificates of the project. Let's Encrypt the backing is not small, at the moment it is by the Linux Foundation managed to initiate the project of organizations...
Linux Foundation Badge Program Boost Open Source Security
The Linux Foundation says a new Core Infrastructure Initiative CII Best Practices Badge program launched Tuesday will help companies interested in adopting open source technologies evaluate projects based on security, quality and stability. The CII Best Practices Badge does not issue certificates...
The NTP daemon has a number of vulnerabilities need to fix-vulnerability warning-the black bar safety net
! Cisco to the Linux Foundation's Core Infrastructure implementation plan submitted by a number of the Network Time Protocol daemon vulnerability. They can allow an attacker to forge a UDP packet, causing a denial of service;or stop to set the correct time. Cisco's Talos security intelligence and...
Linux Foundation Launches 'Zephyr', a tiny OS for Internet of Things
The 21st century is witnessing a great change over in the daily life of folks with the advent of IoT devices that are capable of talking to each other without any human intervention. Yeah! Now you do not have to individually cascade an instruction to each of your home devices to accomplish a task...
Node.js facing two important security vulnerabilities, plans next week to repair-vulnerability warning-the black bar safety net
Node.js the Foundation disclosed a denial of service and a bounds access vulnerabilities, plan next week to provide a patch upgrade fixes two critical vulnerabilities. Node.js Foundation today released the announcement, the most popular server-side JavaScript platform contains "a high-strength...
OpenSSL Security Audit Ready to Start
Funding from the Core Infrastructure Initiative has helped the maintainers of OpenSSL, one of the Internet’s most-deployed pieces of open source software, begin to get the crypto implementation on its feet. Despite its ubiquity, OpenSSL has historically been under-funded and under-resourced, thou...
GnuPG Email Encryption Project Relies on 'Werner Koch', and He is Running Out of Funds
Werner Koch, the man who authored the free email encryption software, is running out of funding to continue the development of his crucial open-source GNU Privacy Guard GnuPG encryption tools.The code works on plenty of operating systems from Linux and FreeBSD to Windows and OS X. The popular Gnu...
cups-filters 'pdftoopvp'过滤器远程堆缓冲区溢出漏洞
Bugtraq ID:66163 CVE ID:CVE-2013-6474 CUPS是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 cups-filters 'pdftoopvp'过滤器存在远程堆缓冲区溢出,允许攻击者利用漏洞提交特殊请求使服务程序崩溃或可执行任意代码。 0 cups-filters 用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞:...
Code Aurora多个产品'CONFIG_STRICT_MEMORY_RWX'安全限制绕过漏洞
BUGTRAQ ID: 65630 CVECAN ID: CVE-2013-4737 Code Aurora Forum是Linux基金会协同项目。 Code Aurora多个项目的CONFIGSTRICTMEMORYRWX功能没有正确考虑某些内存区段,在实现中存在安全漏洞,这可使远程攻击者通过固定位置的RWX内存,利用此漏洞绕过目标访问限制。 0 Code Aurora QRD Android Code Aurora Firefox OS for MSM Code Aurora Android for MSM 厂商补丁: Code Aurora -----------...
Linux Foundation Says UEFI Doesn't Have to Prevent Other OS Installations
The Linux Foundation has released a document outlining ways in which the UEFI secure boot specification can be used to support the installation of Linux and other open operating systems on UEFI-enabled hardware. As long as hardware vendors set up their systems in the proper way, UEFI should be no...
Fedora Project Mandating New Password and SSH Key Change
Recent site breaches like those at Kernel.org and Linux have prompted the Fedora Project to contact users to change their password and SSH public key before November 30 to avoid having their accounts marked as inactive. In a message posted on Wednesday to the Developer’s Announcements mailing lis...
Linux.com down again due to Security Breach
Linux.com down again due to Security Breach Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are again down for maintenance due to a security breach that was discovered on September 8, 2011. Investigators yet can't elaborate the source of attack...
Linux.com down again due to Security Breach
Linux.com down again due to Security Breach Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are again down for maintenance due to a security breach that was discovered on September 8, 2011. Investigators yet can't elaborate the source of attack...
Linux Foundation Shuts More Web Sites After Discovering Compromise
The ripple effects of an August attack on the website kernel.org washed up on the Linux Foundation last week, forcing the group to take down its Web site and warn users that their account information may have been compromised. A message posted on the Foundation’s Web site, linux.com, over the...
Linux Foundation & Linux.com multiple server compromised
Linux Foundation & Linux.com multiple server compromised The Linux Foundation has pulled its websites from the web to clean up from a "security breach". A notice posted on the Linux Foundation said the entire infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down f...