openSUSE Security Update : spice-gtk (openSUSE-SU-2013:1562-1)

spice-gtk received fixes for the acl helper policy kit checks that had a race condition in PID checking. CVE-2013-4324, bnc844967. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : qemu (openSUSE-SU-2012:1170-1)

qemu was fixed to add bounds checking for VT100 escape code parsing and cursor placement. Also qemu was updated on 12.2 and 11.4 to the latest stable release v1.1.1 and v0.14.1 respectively. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

openSUSE Security Update : bind (openSUSE-SU-2013:1353-1)

The BIND nameserver was updated to 9.9.3P2 to fix a security issue where incorrect bounds checking on private type 'keydata' could lead to a remotely triggerable REQUIRE failure. CVE-2013-4854, bnc831899 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks ...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)

java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...

openSUSE Security Update : libfreetype6 (openSUSE-SU-2010:0549-1)

This update of freetype2 fixes several vulnerabilities that could lead to remote system compromise by executing arbitrary code with user privileges : - CVE-2010-1797: stack-based buffer overflow while processing CFF opcodes - CVE-2010-2497: integer underflow - CVE-2010-2498: invalid free -...

vold asec

Insufficient paramter checking for asec container creation allows an asec container to be mounted over part of the filesystem using directory traversal if the app has the ASEC permissions such as ASECCREATE There is an adb tethered root explot for motorola phones...

Wireshark MPEG File Parser Stack Buffer Overflow (CVE-2014-2299)

A buffer overflow vulnerability has been reported in Wireshark. The vulnerability is due to insufficient boundary checking when using mpeg file parser. An attacker can exploit this issue to crash the affected application...

MGASA-2014-0230 Updated moodle packages fix multiple vulnerabilities

Updated moodle package fixes security vulnerabilities: In Moodle before 2.6.3, Session checking was not being performed correctly in Assignment's quick-grading, allowing forged requests to be made unknowingly by authenticated users CVE-2014-0213. In Moodle before 2.6.3, MoodleMobile web service...

Updated moodle packages fix multiple vulnerabilities

Updated moodle package fixes security vulnerabilities: In Moodle before 2.6.3, Session checking was not being performed correctly in Assignment's quick-grading, allowing forged requests to be made unknowingly by authenticated users CVE-2014-0213. In Moodle before 2.6.3, MoodleMobile web service...

CVE-2014-1756

Microsoft Office CVE-2014-1756 is an untrusted search path/innocuous DLL-loading vulnerability in the Simplified Chinese Proofing Tool across Office 2007 SP3, 2010 SP1/SP2, and 2013 (Gold/SP1/RT). A local attacker could gain privileges by placing a malicious DLL in the current working directory a...

Microsoft Office Chinese Grammar Checking Feature CVE-2014-1756 Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...

Fedora 20 : qemu-1.6.2-4.fc20 (2014-5825)

Fix arm sd warnings with latest kernel bz 1091548 - Fix regression in CVE backport that affects openstack thanks lbezdick - Fix guest startup crashes from autotest bz 1081610 - Block/image format validation CVE-2014-0142 - 2014-0148 bz 1078201, bz 1086710, bz 1079140, bz 1086724, bz 1079240, bz...

In those years, those Apache Struts2 vulnerability-vulnerability warning-the black bar safety net

Each Apache Struts2 vulnerabilities the outbreak of the on the Internet set off a Reign of terror, we have compiled in recent years Apache Struts2 high-risk vulnerabilities in the information for your reference. For the Apache Struts2 vulnerability, nsfocus has provided an online checking tool to...

Qemu: vhdx: bounds checking for block_size and logical_sector_size

Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for blocksize and logicalsectorsize variables. These are used to derive other fields like 'sectorsperblock' etc. A user able t...

CVE-2013-5459

Unspecified vulnerability in IBM Rational Software Architect RSA Design Manager and Rational Rhapsody Design Manager 3.x through 3.0.1 and 4.x before 4.0.6 allows remote authenticated users to modify data by leveraging improper parameter checking...

Code injection

Unspecified vulnerability in IBM Rational Software Architect RSA Design Manager and Rational Rhapsody Design Manager 3.x through 3.0.1 and 4.x before 4.0.6 allows remote authenticated users to modify data by leveraging improper parameter checking...

OpenSSL Heartbleed and the Value of CRLs

One of the consequences of the drama around the OpenSSL heartbleed vulnerability is that security experts have begun taking a hard look again at the certificate revocation process and whether it actually protects users or gives them any visibility into the validity of a given certificate. In a lo...

JVN#93004610: Redmine vulnerable to open redirect

Redmine is a project management software. Redmine contains an open redirect vulnerability due to insufficient checking of the URL parameter. Impact A user who logs into Redmine may be redirected to an arbitrary website. As a result, the user may become a victim of a phishing attack. Solution Upda...

VideoLAN VLC Media Player MMS Plugin Stack Buffer Overflow - ver 2 (CVE-2012-1775)

A stack buffer overflow vulnerability has been reported in VLC Media Player. The vulnerability is due to insufficient bounds checking in the MMS access plugin while copying a hostname into a stack buffer. A remote attacker can exploit this issue by convincing a target user to open a specially...

OpenSSL TLS Heartbeat Extension - 'Heartbleed' Information Leak (1)

/ CVE-2014-0160 heartbleed OpenSSL information leak exploit ========================================================= This exploit uses OpenSSL to create an encrypted connection and trigger the heartbleed leak. The leaked information is returned within encrypted SSL packets and is then decrypted...