[SECURITY] Fedora 26 Update: perl-Module-CoreList-5.20180414-1.fc26

Module::CoreList provides information on which core and dual-life modules are shipped with each version of perl...

[SECURITY] Fedora 26 Update: perl-5.24.4-397.fc26

Perl is a high-level programming language with roots in C, sed, awk and she ll scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common...

CVE-2017-17256

CVE-2017-17256 affects Huawei H323 protocol across multiple AR and related Huawei products. An unauthenticated, remote attacker can send malformed H323 packets, and due to insufficient packet verification a memory leak may occur, potentially causing DoS. Public details in Huawei HWPSIRT advisory ...

Oracle Solaris Critical Patch Update : apr2018_SRU11_3_29_5_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Python modules. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows low...

Hashcat Wrapper for Distributed Hashcracking: Hashtopolis

Hashtopolis is a multi-platform client-server tool for distributing hashcat tasks to multiple computers. The main goals for Hashtopolis’s development are portability, robustness, multi-user support, and multiple groups management. The application has two parts: Agent Multiple clients C, Python,...

CVE-2018-2753

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Python modules. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

CVE-2018-2753

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Python modules. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

Design/Logic Flaw

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Python modules. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

CVE-2018-2753

CVE-2018-2753 affects Oracle Solaris (Solaris component of Oracle Sun Systems Products Suite), specifically the Python modules subcomponent in Solaris 11.3. The root cause is a vulnerability in the Python modules that allows a low-privileged, logon-attached attacker to compromise Solaris, with us...

Hardcoded credentials

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...

CVE-2018-7241

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...

CVE-2018-7241

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...

CVE-2018-7242

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collision attacks...

CVE-2018-7241

CVE-2018-7241 affects Schneider Electric Modicon Premium, Quantum, M340, and BMXNOR0200 controllers. The issue is hard-coded accounts present in all versions of the devices’ communication modules, enabling unauthorized access via the FTP/communication interfaces. The underlying risk is high (desc...

Oracle Sun Solaris has an unspecified vulnerability (CNVD-2018-09049)

Oracle Sun Solaris is a Unix operating system originally developed by Sun Microsystems. An unspecified vulnerability exists in the Python modules component of Oracle Sun Solaris. An attacker could exploit this vulnerability to compromise confidentiality and integrity...

Debian DLA-1349-1 : linux-tools security update

This update doesn't fix a vulnerability in linux-tools, but provides support for building Linux kernel modules with the 'retpoline' mitigation for CVE-2017-5715 Spectre variant 2. This update also includes bug fixes from the upstream Linux 3.2 stable branch up to and including 3.2.101. For Debian...

CVE-2018-5506

In F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.1, 11.5.1-11.5.5, or 11.2.1 the Apache modules apacheauthtokenmod and modauthf5authtoken.cpp allow possible unauthenticated bruteforce on the emserverip authorization parameter to obtain which SSL client certificates used for mutual authentication between...

Authorization

In F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.1, 11.5.1-11.5.5, or 11.2.1 the Apache modules apacheauthtokenmod and modauthf5authtoken.cpp allow possible unauthenticated bruteforce on the emserverip authorization parameter to obtain which SSL client certificates used for mutual authentication between...

CVE-2018-5506

In F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.1, 11.5.1-11.5.5, or 11.2.1 the Apache modules apacheauthtokenmod and modauthf5authtoken.cpp allow possible unauthenticated bruteforce on the emserverip authorization parameter to obtain which SSL client certificates used for mutual authentication between...

CVE-2018-5506

CVE-2018-5506 affects F5 BIG-IP: Apache modules apache_auth_token_mod and mod_auth_f5_auth_token.cpp allow unauthenticated brute-forcing of the em_server_ip authorization parameter to disclose which SSL client certificates are used for mutual authentication between BIG-IQ/EM and managed BIG-IP de...