Oracle Linux 6 : java-1.8.0-openjdk (ELSA-2014-1636)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1636 advisory. 1:1.8.0.25-1.b17 - Update to October CPU patch update. - Resolves: RHBZ1148896 1:1.8.0.20-3.b26 - fixed headless policytool moved to normal -...

java-1.6.0-openjdk security and bug fix update

1:1.6.0.33-1.13.5.0 - Update to IcedTea 1.13.5 - Remove upstreamed patches. - Regenerate add-final-location-rpaths patch against new release. - Change versioning to match java-1.7.0-openjdk so revisions work. - Use xz for tarballs to reduce file size. - No need to explicitly disable system LCMS a...

Liferay 6.0.x Webdav File Reading Vulnerability

No description provided by source. Specially crafted webdav request allows reading of local files on liferay 6.0.x Description: Liferay Portal is an enterprise portal written in Java By creating a specially crafted webdav request that contains an external entity it is possible to read files from ...

Release Information for Veeam Backup & Replication 7 Patch 4

More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge Veeam Backup & Replication Patch 4 Release Notes Cause Please confirm you are running version 7.0.0.690, 7.0.0.715, 7.0.0.764, 7.0.0.771, 7.0.0.833, 7.0.0.83...

ES746 DELL Support-Bulletin - EMS Vulnerability Resolved

Document Title: =============== ES746 DELL Support-Bulletin - EMS Vulnerability Resolved References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1241 Download:...

CVE-2013-6955 Synology DSM remote code execution

Products Affected By CVE-2013-6955 Diskstation Manager 4.0 4.2 4.3 4.3-3810 Vendor: Synology Status: Patched webman/imageSelector.cgi in Synology DiskStation Manager DSM 4.0 before 4.0-2259, 4.2 before 4.2-3243, and 4.3 before 4.3-3810 Update 1 allows remote attackers to append data to arbitrary...

ES746 Support-Bulletin - EMS Vulnerability Resolved

Document Title: =============== ES746 Support-Bulletin - EMS Vulnerability Resolved References: =========== https://www.vulnerability-lab.com/getcontent.php?id=1241 Download:...

Veeam ONE v7 R2 update

Challenge Release Notes for Veeam ONE v7 R2 update Cause Please confirm you are running version 7.0.0.876 prior to installing this update. You can check this under Help | About in Veeam ONE Monitor Client. After upgrading, your build will be version 7.0.0.919. This update should be applied to...

Release Information for Veeam Backup & Replication 7 R2 Update

More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge Release Notes for Veeam Backup & Replication 7.0 R2а update Cause Please confirm you are running version 7.0.0.690, 7.0.0.715 or 7.0.0.764 prior to installin...

jomsocial below 3.0.5.1

jomsocial , 3.0.5.1, SQL Injection Resolved prior to notification...

rubygems security update

1.3.7-4 - Remove regexp backtracing CVE-2013-4363. - Related: rhbz1002838. 1.3.7-3 - Fix insecure connection to SSL repository CVE-2012-2125, CVE-2012-2126. - Related: rhbz1002838. 1.3.7-2 - Fix algorithmic complexity vulnerability CVE-2013-4287. - Resolves: rhbz1002838...

Google Malaysia Site Hijacked

The Google domain for Malaysia was hijacked on Thursday night, redirecting visitors to a page that said a group called Madleets from Pakistan had performed the attack. The domain has been restored now, but the name servers for the domain had been changed to a pair controlled by the attackers...

[security bulletin] HPSBHF02888 rev.1 - HP ProCurve, H3C, 3COM Routers and Switches, Remote Information Disclosure and Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03808969 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03808969 Version: 1 HPSBHF02888 rev....

Oracle Linux 5 : wireshark (ELSA-2009-0313)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0313 advisory. 1.0.6-2.0.1.el53 - Add oracle-ocfs2-network.patch 1.0.6-2 - bring back pie - Resolves: 486551 1.0.6-1 - various security flaws fixed - upgrade to 1.0.6...

Cisco ASA < 8.4.4.6|8.2.5.32 Ethernet Information Leak

Exploit for hardware platform in category dos / poc !/usr/bin/env python CVE-2003-0001 'Etherleak' exploit ================================= Exploit for hosts which use a network device driver that pads ethernet frames with data which vary from one packet to another, likely taken from kernel...

Fedora 18 : asterisk-11.2.0-1.fc18 (2013-1003)

The Asterisk Development Team has announced the release of Asterisk 11.2.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk The release of Asterisk 11.2.0 resolves several issues reported by the community and would have not been possible...

Patch 1 Release Notes for Veeam Backup & Replication 6.5

More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge These are the issues resolved by the Patch 1 for Veeam Backup version 6.5.0.109. All patches are cumulative so each below fix is contained in this patch. Cau...

Axway Secure Transport 5.1 SP2 - Directory Traversal

Axway Secure Transport 5.1 SP2 - Directory Traversal Secure Transport Path Traversal Vulnerability Public Disclosure Date: November 11, 2012 Vendors Affected: Axway http://www.axway.com Systems Affected: Secure Transport Problem: A path traversal vulnerability was identified in SecureTransport...

tomcat -- authentication weaknesses

The Apache Software Foundation reports: Three weaknesses in Tomcat's implementation of DIGEST authentication were identified and resolved: Tomcat tracked client rather than server nonces and nonce count. When a session ID was present, authentication was bypassed. The user name and password were n...

java-1.7.0-openjdk security update

1.7.0.9-2.3.3.0.1.el63.1 - Update DISTRONAME in specfile 1.7.0.9-2.3.3.el6.1 - Changed permissions of sa-jdi.jar to correct 644 - Resolves: rhbz865050 1.7.0.9-2.3.3.el6 - Updated to 2.3.3 - Updated java-1.7.0-openjdk-java-access-bridge-security.patch - Resolves rhbzs 856124, 865346, 865348, 86535...