77 matches found
SUSE-SU-2020:1171-1 Security update for nginx
This update for nginx fixes the following issues: nginx was updated to 1.16.1 jscECO-1401 - Added TLS 1.3 support jscSLE-9295, bsc1150711 - Replaced obsolete GeoIP module with MaxMinDB-based GeoIP2 jscSLE-11184, bsc1156202 - Started nginx after network is online bsc1155690 - CVE-2019-20372: Fixed...
SSRF Sheriff - A Simple SSRF-testing Sheriff Written In Go
This is an SSRF testing sheriff written in Go. It was originally created for the Uber H1-4420 2019 London Live Hacking Event, but it is now being open-sourced for other organizations to implement and contribute back to. Features Repsond to any HTTP method GET, POST, PUT, DELETE, etc. Configurable...
OPENSUSE-SU-2020:0222-1 Security update for hostapd
This update for hostapd fixes the following issues: hostapd was updated to version 2.9: SAE changes - disable use of groups using Brainpool curves - improved protection against side channel attacks https://w1.fi/security/2019-6/ EAP-pwd changes - disable use of groups using Brainpool curves -...
SUSE-SU-2020:0025-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: Update to version jdk8u232 icedtea 3.14.0 October 2019 CPU, bsc1154212 Security issues fixed: - CVE-2019-2933: Windows file handling redux - CVE-2019-2945: Better socket support - CVE-2019-2949: Better Kerberos ccache handling -...
Arbitrary Code Execution
Overview apple/swift-nio-ssl is a TLS Support for SwiftNIO, based on BoringSSL. Affected versions of this package are vulnerable to Arbitrary Code Execution. The issue was addressed by signaling that an executable stack is not required. This issue is fixed in SwiftNIO SSL 2.4.1. A SwiftNIO...
Xerxes - DoS Tool Enhanced
Xerxes dos tool enhanced with many features for stress testing. Features Xerxes has many features, some of these features are: TLS Support HTTP header randomization Useragent randomization Multiprocessing support Multiple Attack vectors etc... Not only that but also we are aggressively developing...
CVE-2017-13832
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "802.1X" component. It allows attackers to have an unspecified impact by leveraging TLS 1.0 support...
Viproy - VoIP Penetration Testing and Exploitation Kit
Viproy Voip Pen-Test Kit provides penetration testing modules for VoIP networks. It supports signalling analysis for SIP and Skinny protocols, IP phone services and network infrastructure. Viproy 2.0 is released at Blackhat Arsenal USA 2014 with TCP/TLS support for SIP, vendor extentions support,...
SUSE-SU-2017:1349-1 Security update for SUSE Manager Server 3.0
The following security issue in spacewalk-backend has been fixed: - Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel. bsc1026633, CVE-2017-7470 Additionally, the following non-security issues have been fixed: rhnlib: - Support all TLS versions in rpclib...
SUSE-SU-2017:1346-1 Security update for SUSE Manager Proxy 3.0
The following security issue in spacewalk-backend has been fixed: - Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel. bsc1026633, CVE-2017-7470 Additionally, the following non-security issues have been fixed: rhnlib: - Support all TLS versions in rpclib...
SUSE-SU-2017:1347-1 Security update for SUSE Manager Client Tools
The following security issue in spacewalk-backend has been fixed: - Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel. bsc1026633, CVE-2017-7470 Additionally, the following non-security issues have been fixed: rhnlib: - Support all TLS versions in rpclib...
SUSE-SU-2017:1352-1 Security update for SUSE Manager Client Tools
The following security issue in spacewalk-backend has been fixed: - Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel. bsc1026633, CVE-2017-7470 Additionally, the following non-security issues have been fixed: cobbler: - Support UEFI boot with cobbler...
SUSE-SU-2017:1248-1 Security update for MozillaFirefox, mozilla-nss, mozilla-nspr, java-1_8_0-openjdk
Mozilla Firefox was updated to the Firefox ESR release 45.9. Mozilla NSS was updated to support TLS 1.3 close to release draft and various new ciphers, PRFs, Diffie Hellman key agreement and support for more hashes. Security issues fixed in Firefox bsc1035082 - MFSA 2017-11/CVE-2017-5469: Potenti...
SUSE-SU-2017:1008-1 Security update for sblim-sfcb
This update for sblim-sfcb fixes the following issues: Feature enhancements: - A seperate sblim-sfcb-openssl1 package was added to the SECURITY Module. fate322032/bsc1012814 This package can be installed additionaly, and the SysV Init script will pick the openssl1 variant on the next start,...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk fixes the following issues: - Oracle Critical Patch Update of January 2017 to OpenJDK 7u131 bsc1020905: Security Fixes - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution -...
SUSE-SU-2017:0490-1 Security update for java-1_7_0-openjdk
This update for java-170-openjdk fixes the following issues: - Oracle Critical Patch Update of January 2017 to OpenJDK 7u131 bsc1020905: Security Fixes - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution -...
SSL/TLS: MySQL / MariaDB (STARTTLS-like) SSL/TLS Detection
Checks if the remote MySQL / MariaDB server supports STARTTLS-like SSL/TLS. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : java-1_8_0-openjdk (SUSE-SU-2017:0346-1)
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0 : - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolutio...
SUSE-SU-2017:0346-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0: - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution...
SUSE-SU-2016:3268-1 Security update for wget
This update for wget fixes the following issues: Security issues fixed: - CVE-2016-7098: Fixed a potential race condition by creating files with .tmp ext and making them accessible to the current user only. bsc995964 Non security issues fixed: - bsc1005091: Don't call xfree on string returned by...