Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Cisco Patches DoS, Buffer Overflow Vulnerabilities in UCM

Cisco has again pushed out an update for its Unified Communications Manager product, fixing several vulnerabilities that if left unpatched could lead to a denial of service attack, allow attackers to modify data or execute arbitrary commands, among other problems. The problems exist in versions...

[security bulletin] HPSBHF02912 rev.1 - HP Networking Products including H3C and 3COM Routers and Switches, OSPF Remote Information Disclosure and Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03880910 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03880910 Version: 1 HPSBHF02912 rev....

Huawei networking equipment weak password cipher

Overview Huawei networking equipment use a DES encryption algorithm for password and encryption. DES is publicly known to be easily cracked. Description Huawei Security Advisory Huawei-SA-20120827-01-CX600 states:In multiple Huawei products, DES encryption algorithm is used for password and the...

Fedora Update for kdenetwork FEDORA-2013-13112

Check for the Version of kdenetwork OpenVAS Vulnerability Test Fedora Update for kdenetwork FEDORA-2013-13112 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora Update for kdenetwork FEDORA-2013-13499

Check for the Version of kdenetwork OpenVAS Vulnerability Test Fedora Update for kdenetwork FEDORA-2013-13499 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

[SECURITY] Fedora 17 Update: kdenetwork-4.10.5-1.fc17

Networking applications, including: kget: downloader manager kopete: chat client kppp: dialer and front end for pppd krdc: a client for Desktop Sharing and other VNC servers krfb: Desktop Sharing server, allow others to access your desktop via VNC...

Cisco ONS Detection

Based on the SNMP sysDesc value returned from the remote host, it is a Cisco Optical Networking System device. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69058; scriptversion"1.4"; scriptcvsdate"Date: 2020/01/22"; scriptnameenglish:"Cisco ONS Detection";...

[SECURITY] Fedora 18 Update: kdenetwork-4.10.5-1.fc18

Networking applications, including: kget: downloader manager kopete: chat client kppp: dialer and front end for pppd krdc: a client for Desktop Sharing and other VNC servers krfb: Desktop Sharing server, allow others to access your desktop via VNC...

CVE-2013-3435

The Cisco Unified IP Conference Station 7937G allows remote attackers to cause a denial of service networking outage via a flood of TCP packets, aka Bug ID CSCuh42052...

Code injection

The Cisco Unified IP Conference Station 7937G allows remote attackers to cause a denial of service networking outage via a flood of TCP packets, aka Bug ID CSCuh42052...

[SECURITY] Fedora 18 Update: nodejs-asn1-0.1.11-3.fc18

nodejs-asn1 is a library for encoding and decoding Abstract Syntax Notation One ASN.1 datatypes in pure JavaScript. ASN.1 is is a standard and notation that describes rules and structures for representing, encoding, transmitting, and decoding data in telecommunications and computer networking...

CVE-2013-3435

Cisco Unified IP Conference Station 7937G is affected by CVE-2013-3435, where a remote unauthenticated attacker can cause a DoS (networking outage) by sending a high rate of TCP packets. The root cause relates to resource constraints in processing network traffic. Impact is a device-wide DoS unti...

Kernel: atm: update msg_namelen in vcc_recvmsg()

The vccrecvmsg function in net/atm/common.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

OpenJDK: Prevent revealing the local address (Networking, 8001318)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

OpenJDK: exclusive port binding (Networking, 7170730)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous...

OpenJDK: Prevent revealing the local address (Networking, 8001318)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

OpenJDK: Prevent revealing the local address (Networking, 8001318)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

OpenJDK: exclusive port binding (Networking, 7170730)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous...

CVE-2013-3655

The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 allows remote attackers to cause a denial of service networking outage via crafted packet data...