Debian: Security Advisory (DLA-25-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for axel (moderate)

openSUSE Security Update: Security update for axel Announcement ID: openSUSE-SU-2020:0785-1 Rating: moderate References: 1172159 Cross-References: CVE-2020-13614 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...

openSUSE Security Update : axel (openSUSE-2020-778)

This update for axel fixes the following issues : axel was updated to 2.17.8 : - CVE-2020-13614: SSL Certificate Hostnames were not verified boo1172159 - Replaced progressbar line clearing with terminal control sequence - Fixed parsing of Content-Disposition HTTP header - Fixed User-Agent HTTP...

Man-in-the-Middle (MitM)

netty-handler is vulnerable to man-in-the-middle attacks. The library uses an SSLEngine that does not verify certificate hostnames when establishing connections with a server by default. This allows an attacker to potentially intercept and modify network traffic in a successful man-in-the-middle...

[DLA 25-1] python2.6 security update

Package : python2.6 Version : 2.6.6-8+deb6u1 CVE ID : CVE-2011-1015 CVE-2011-1521 CVE-2011-4940 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-4238 CVE-2014-1912 Multiple vulnerabilities were discovered in python2.6. The more relevant are: CVE-2013-4238 Incorrect handling of NUL bytes in...

Perl IO::Socket::SSL 'verify_hostname_of_cert()' Security Bypass Vulnerability

The IO::Socket::SSL module for Perl is prone to a security- bypass vulnerability because the application fails to properly validate certificate hostnames. Successfully exploiting this issue allows attackers to bypass certain security restrictions, which may aid in further attacks. Versions prior ...