[SECURITY] Fedora 20 Update: php-ZendFramework2-2.2.6-1.fc20

Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...

DEBIAN-CVE-2014-2242

includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 does not prevent use of invalid namespaces in SVG files, which allows remote attackers to conduct cross-site scripting XSS attacks via an SVG upload, as demonstrated by use of a W...

UBUNTU-CVE-2014-2242

includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 does not prevent use of invalid namespaces in SVG files, which allows remote attackers to conduct cross-site scripting XSS attacks via an SVG upload, as demonstrated by use of a W...

Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix two security issues, one bug, and add two enhancements are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Ubuntu: Security Advisory (USN-1815-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for linux USN-1815-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN18151.nasl 8650 2018-02-03 12:16:59Z teissa $ Ubuntu Update for linux USN-1815-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...

USN-1815-1: Linux kernel vulnerabilities

Andy Lutomirski discover an error in the Linux kernel's credential handling on unix sockets. A local user could exploit this flaw to gain administrative privileges. CVE-2013-1979 Andy Lutomirski discovered a privilege escalation in the Linux kernel's user namespaces. A local user could exploit th...

DEBIAN-CVE-2013-1957

The clonemnt function in fs/namespace.c in the Linux kernel before 3.8.6 does not properly restrict changes to the MNTREADONLY flag, which allows local users to bypass an intended read-only property of a filesystem by leveraging a separate mount namespace...

USN-1607-1: Linux kernel vulnerabilities

Vadim Ponomarev discovered a flaw in the Linux kernel causing a reference leak when PID namespaces are used. A remote attacker could exploit this flaw causing a denial of service. CVE-2012-2127 A flaw was found in how the Linux kernel's KVM Kernel-based Virtual Machine subsystem handled MSI Messa...

Ubuntu Update for linux-lts-backport-oneiric USN-1594-1

Ubuntu Update for Linux kernel vulnerabilities USN-1594-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15941.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux-lts-backport-oneiric USN-1594-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1594-1)

Vadim Ponomarev discovered a flaw in the Linux kernel causing a reference leak when PID namespaces are used. A remote attacker could exploit this flaw causing a denial of service. CVE-2012-2127 A flaw was found in how the Linux kernel's KVM Kernel-based Virtual Machine subsystem handled MSI Messa...

USN-1594-1: Linux kernel (Oneiric backport) vulnerabilities

Vadim Ponomarev discovered a flaw in the Linux kernel causing a reference leak when PID namespaces are used. A remote attacker could exploit this flaw causing a denial of service. CVE-2012-2127 A flaw was found in how the Linux kernel's KVM Kernel-based Virtual Machine subsystem handled MSI Messa...

CVE-2012-2127

fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONENEWPID clone system calls, which allows remote attackers to cause a denial of service reference leak and memory consumption by making many connections to a daemon that uses PID namespac...

Code injection

fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONENEWPID clone system calls, which allows remote attackers to cause a denial of service reference leak and memory consumption by making many connections to a daemon that uses PID namespac...

CVE-2012-2127

fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONENEWPID clone system calls, which allows remote attackers to cause a denial of service reference leak and memory consumption by making many connections to a daemon that uses PID namespac...

CVE-2012-2127

fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONENEWPID clone system calls, which allows remote attackers to cause a denial of service reference leak and memory consumption by making many connections to a daemon that uses PID namespac...

Ubuntu: Security Advisory (USN-1288-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for vsftpd USN-1288-1

Ubuntu Update for Linux kernel vulnerabilities USN-1288-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12881.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for vsftpd USN-1288-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

USN-1288-1: vsftpd vulnerability

It was discovered that the 2.6.35 and earlier Linux kernel does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service memory consumption in applications that require a separate namespace per connectio...