14 matches found
NetIQ Sentinel < 7.4.1 Multiple Vulnerabilities
The version of Novell NetIQ Sentinel server installed on the remote host is prior to 7.4.1. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in Apache ActiveMQ in the processControlCommand function within the file broker/TransportConnection.java. An unauthenticated, remote...
Multiple Security issues with NetIQ Sentinel
Sentinel 7.4.1 resolves multiple security vulnerabilities SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netiq:sentinel"; if...
Mageia: Security Advisory (MGASA-2015-0350)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated xmltooling packages fix CVE-2015-0851
Updated xmltooling and opensaml packages fix security vulnerability: The InCommon Shibboleth Training team discovered that XMLTooling, a C++ XML parsing library, did not properly handle an exception when parsing well-formed but schema-invalid XML. This could allow remote attackers to cause a deni...
CVE-2015-0851
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider SP, does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service crash via schema-invalid XML data...
CVE-2015-0851
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider SP, does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service crash via schema-invalid XML data...
CVE-2015-0851
CVE-2015-0851 affects XMLTooling-C (before 1.5.5) as used in OpenSAML-C and Shibboleth Service Provider. The vulnerability arises from improper handling of integer conversion exceptions, allowing remote attackers to trigger a denial of service (crash) via schema-invalid XML data. Affected compone...
CVE-2015-0851
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider SP, does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service crash via schema-invalid XML data...
[SECURITY] [DLA 290-2] opensaml2 security update
Package : opensaml2 Version : 2.3-2+squeeze2 CVE ID : CVE-2015-0851 It was discovered that opensaml2, a Security Assertion Markup Language library, needed to be rebuilt against a fixed version of the xmltooling package due to its use of macros vulnerable to CVE-2015-0851 as fixed in the DSA 3321-...
Debian DLA-290-2 : opensaml2 security update
It was discovered that opensaml2, a Security Assertion Markup Language library, needed to be rebuilt against a fixed version of the xmltooling package due to its use of macros vulnerable to CVE-2015-0851 as fixed in the DSA 3321-1 update. NOTE: Tenable Network Security has extracted the preceding...
[SECURITY] [DLA 290-1] xmltooling security update
Package : xmltooling Version : 1.3.3-2+deb6u1 CVE ID : CVE-2015-0851 Debian Bug : 793855 Shibboleth SP software crashes on well-formed but invalid XML Another upload for opensaml2 is needed to really solve this issue. This will be done shortly...
[SECURITY] [DSA 3321-2] opensaml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3321-2 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 08, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3321-1] xmltooling security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3321-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 30, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3321-1] xmltooling security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3321-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 30, 2015 https://www.debian.org/security/faq -...