Testing TLS/SSL encryption: testssl.sh

testssl.sh is a free command line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It’s designed to provide clear output in any case. Testing TLS/SSL encryption: testssl.sh Key features Clear output: you can tell...

SUSE-SU-2015:1821-1 Security update for postgresql93

The PostreSQL database postgresql93 was updated to the bugfix release 9.3.10: Security issues fixed: - CVE-2015-5289, bsc949670: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. - CVE-2015-5288, bsc949669: The crypt...

Auto Client Reconnect Fix on XenDesktop Deployments with CloudBridge for Traffic Optimization

This fix applies only to XenDesktop deployments that utilize CloudBridge for traffic optimization. This fix enables the Auto Client Reconnect functionality of XenDesktop for deployments that utilize CloudBridge for traffic optimization. With this fix Auto Client Reconnect is used for session...

Samsung Launches 6GB RAM Chips for Next Generation Smartphones

With Launch of Galaxy S6 and Galaxy S6 Edge, Samsung was the first one to bring 4GB RAM access in the Android mobile phones; with Samsung Note 5 and the current OnePlus 2 carrying the same RAM capacity. Now, today Samsung has again taken the technology a step further with the launch of 12GB LPDDR...

Meet Linux's New Fastest File-System – Bcachefs

First announced over five years ago, ex-Google engineer Kent Overstreet is pleasured in announcing the general availability of a new open-source file-system for Linux, called the Bcache File System or Bcachefs. Bcachefs is a Linux kernel block layer cache that aims at offering a speedier and more...

pacemaker security update

CentOS Errata and Security Advisory CESA-2015:1424 Updated pacemaker packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVS...

Cyber UL Could Become Reality Under Leadership of Hacker Mudge

UPDATE–One of the longstanding problems in security–and the software industry in general–is the lack of any universally acknowledged authority on quality and reliability. But the industry moved one step closer to making such a clearinghouse a reality this week when Peiter Zatko, a longtime...

zookeeper vulnerability analysis-vulnerability warning-the black bar safety net

! /Article/UploadPic/2015-5/2015512104512959.jpg For those unaware the ZooKeeper of the people, it is a famous open source project, it supports the distributed coordination reliability is very high. It is the world many of the security companies of the trust, including PagerDuty to. It is in the...

Ubuntu: Security Advisory (USN-2565-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 22 Update: lftp-4.6.1-4.fc22

LFTP is a sophisticated ftp/http file transfer program. Like bash, it has j ob control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind...

[SECURITY] Fedora 20 Update: lftp-4.5.4-3.fc20

LFTP is a sophisticated ftp/http file transfer program. Like bash, it has j ob control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind...

Antivirus Exclusions for Veeam Backup & Replication

Veeam Threat Hunter service Exclusions When upgrading to Veeam Backup & Replication 12.3, the installer's Configuration Check will display a warning advising: The new Veeam Threat Hunter service scanning process might be interrupted by existing antivirus software on mount hosts. Please read KB199...

ShellShock DHCP Server

Added: 11/20/2014 CVE: CVE-2014-6271 BID: 70103 OSVDB: 112004 Background Bash is vulnerable to command injection using environment variables. When an application takes user input and uses setenv a malicious actor is able to execute commands on the target in the security context of the running...

OpenBSD <= 5.5 Local Kernel Panic

OpenBSD = 5.5 All architectures is prone to a local DoS condition by triggering a kernel panic through a malformed ELF executable. A patch has been released to address this issue. See "013 Reliability Fix" at: http://www.openbsd.org/errata55.html013kernexec More details and PoC code:...

Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)

This module exploits the Shellshock vulnerability, a flaw in how the Bash shell handles external environment variables. This module targets CGI scripts in the Apache web server by setting the HTTPUSERAGENT environment variable to a malicious function definition. This module requires Metasploit:...

Update for Microsoft Silverlight (KB2977218)

This update to Silverlight improves security, reliability, accessibility support, startup performance, enhances line-of-business support and includes several fixes to better support rich internet applications. This update is backward compatible with web applications built using previous versions ...

MS03-046 Exchange 2000 XEXCH50 Heap Overflow

No description provided by source. $Id: ms03046exchange2000xexch50.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing a...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)

java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2013:0964-1)

update to icedtea-2.3.9 bnc816720 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework RMI model -...

Fedora 19 : libgadu-1.12.0-0.5.rc3.fc19 (2014-6645)

Security bug fix: remote Gadu-Gadu file relay servers could cause a denial of service memory overwrite or possibly execute arbitrary code via a crafted message CVE-2014-3775. - Fixes related to image transfers. - Regression test reliability fixes. Note that Tenable Network Security has extracted...