8691 matches found
Fedora 13 : mysql-5.1.50-2.fc13 (2010-15166)
Update to mysql 5.1.50, for numerous bug fixes including some low-grade security issues. See upstream release notes at : - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.htm l Note that Tenable Network Security has extracted the...
Mozilla Releases Firefox 3.5.13 and 3.6.10
The Mozilla Foundation has released Firefox 3.5.13 and 3.6.10 to address a stability issue affecting some users. US-CERT encourages users and administrators to review the release notes for Firefox 3.5.13 and Firefox 3.6.10 and apply any necessary updates to mitigate the issue. This product is...
[SECURITY] Fedora 13 Update: bugzilla-3.4.8-2.fc13
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 14 Update: bugzilla-3.6.2-1.fc14
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
Fedora 11 : konversation-1.2.3-1.fc11 (2010-1883)
Update to version 1.2.3, which fixes remote crash caused by a message containing invalid Unicode characters. If the message triggers a KNotify notification, invalid Unicode string is sent over D-Bus, resulting in application crash. Apart from that, the earlier update to 1.2.2 included lots of fix...
Cisco ASA Software HTTP Response Splitting Vulnerability
Cisco ASA Software versions prior to 8.12 contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability exists due to improper handling of characters within URLs. An unauthenticated, remote attacker could exploit this...
moodle -- multiple vulnerabilities
The Moodle release notes report multiple vulnerabilities which could allow cross site scripting, XSS attacks, unauthorised deletion of attempts in some instances...
Lotus Domino Version
Several checks to determine Lotus Domino Server Version. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Lotus Domino Version', 'Description' = 'Several checks to determine Lotus Domino Server...
Foxit Releases Foxit Reader 3.3
The Foxit Corporation has released Foxit Reader 3.3 for Windows. This release of Foxit Reader contains a component called Trust Manager. Foxit Reader release notes indicate that the Trust Manager enables users to allow or deny unauthorized actions and data transmission, including URL connection,...
Oracle Releases Sun Java SE 1.6.0_20
Oracle has released Sun Java SE 1.6.020 to address several vulnerabilities. The release notes for this version of Java SE indicate that these vulnerabilities are in Java Deployment Toolkit and the new Java Plug-in. Exploitation of these vulnerabilities may allow a remote, unauthenticated attacker...
moodle -- multiple vulnerabilities
The Moodle release notes report multiple vulnerabilities which could allow remote attackers to perform, amongst others, cross site scripting, user enumeration and SQL injection attacks...
Mozilla Releases Firefox 3.6.2
The Mozilla Foundation has released Firefox 3.6.2 to address multiple security issues, including a critical vulnerability that may allow a remote attacker to execute arbitrary code. US-CERT encourages users and administrators to do the following to help mitigate the risks: Review the Firefox 3.6....
[SECURITY] Fedora 11 Update: bugzilla-3.2.6-2.fc11
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
Serv-U File Server User Directory Information Disclosure Vulnerability
Serv-U File Server is prone to an unspecified information-disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Moderate: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0.CP08 update
Updated JBoss Enterprise Application Platform JBEAP 4.2 packages that fix multiple security issues, several bugs, and add enhancements are now available for Red Hat Enterprise Linux 5 as JBEAP 4.2.0.CP08. This update has been rated as having moderate security impact by the Red Hat Security Respon...
[SECURITY] Fedora 12 Update: bugzilla-3.4.4-1.fc12
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
Wireshark Multiple Denial Of Service Vulnerability (Nov 2009) - Linux
Wireshark is prone to multiple Denial of Service vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial of Service Vulnerability
Serv-U is prone to a remote denial-of-service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:serv-u:serv-u";...
[SECURITY] Fedora 10 Update: bugzilla-3.2.5-1.fc10
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
fwbuilder -- security issue in temporary file handling
Firewall Builder release notes reports: Vadim Kurland [email protected] reports: Fwbuilder and libfwbuilder 3.0.4 through to 3.0.6 generate iptables scripts with a security issue when also used to generate static routing configurations...