66 matches found
Unable to turn off the maintenance mode for Azure hosting connection after upgrading DDC's to 2203
Getting an error "Attempt to perform the operation failed. The license in use by the connection is invalid" while trying to turn off the maintenance mode for Azure hosting connection after upgrading DDC's to 2203...
How to upgrade the SQL Server LocalDB (required for LHC) on the controllers
How to upgrade the local sql DB on the DDC's...
Test the communication between DDC and SQL with an .udl file
If you would like to test if the communication between DDC and SQL is working fine, outside Citrix, you can create an .udl file on desktop and try to access the SQL server using the required username and password. If the communication completes successfully, you can continue troubleshooting from...
Several PVS target devices can not be registered
One or several PVS targets can not be registered even after rebooting while other targets are registered with DDC successfully...
SUSE CVE-2019-3812
QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/i2c-ddc.c:i2cddc function. A local attacker with permission to execute i2c commands could exploit this to read stack memory of the qemu process on the host...
Joining new DDC to Multi-Zone CVAD Site fails
New DDC join process to a multi-zone CVAD site spread across different datacenters fails. This happens at the step when each service on the new DDC tries to register with Citrix Configuration service...
Malicious Package
Overview ddc-classnames-js is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
Malicious Package
Overview ddc-new-relic is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...
Malicious code in ddc-new-relic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 724b8e2d9bbce93045922539d67f166495a0abac1fe3d410e5cea2ec861e82d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ddc-classnames-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e99acb40e304c7529f780536e9e0c06faa3d8e76d23a1d58b7573005c7b92200 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2378 Malicious code in ddc-new-relic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 724b8e2d9bbce93045922539d67f166495a0abac1fe3d410e5cea2ec861e82d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2377 Malicious code in ddc-classnames-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e99acb40e304c7529f780536e9e0c06faa3d8e76d23a1d58b7573005c7b92200 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
HSTS Missing From HTTPS Server (RFC 6797) for DDC servers
Security team running Nessus scans are reporting they are being notified of a finding on their controllers - HSTS Missing From HTTPS Server - Nessus Plugin ID 84502 which is a medium finding...
Unable to access StoreFront URL, error “can’t reach this page”
• In this scenario, the customer just built a test site running Virtual Apps 1912CU1 • He built one DDC, 2 StoreFront servers, and aleady created a Site and a StoreFront Store • When attempting to access the StoreFront URL, he gets an error saying “can’t reach this page” • Using the StoreFront...
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2020-1266)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the i2c_ddc functions in the QEMU hardware emulation software allows a hacker to disclose protected information.
The vulnerability of the i2cddc function hw/i2c/i2c-ddc.c in the QEMU hardware emulation software is related to reading data beyond the buffer limit 128 bytes of stack memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security...
qemu security update
15:3.1.0-3.el7 - x86: Document CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 as fixed Mark Kanda Orabug: 29744956 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 15:3.1.0-2.el7 - x86: Add mds feature Karl Heubaum - e1000: Never increment the RX undersize count register...
Fedora 30 : 2:qemu (2019-0664c7724d)
fix crash with virgl enabled bz 1692323 - linux-user: make pwrite64/pread64fd, NULL, 0, offset return 0 bz 1174267 - Fix build with latest gluster bz 1684298 - CVE-2018-20123: pvrdma: memory leakage in device hotplug bz 1658964 - CVE-2018-16872: usb-mtp: path traversal issue bz 1659150 -...
PT-2019-4607 · Qemu +3 · Qemu +3
Name of the Vulnerable Software and Affected Versions: QEMU versions 2.10 through 3.1.0 Description: The issue is related to an out-of-bounds read of up to 128 bytes in the i2c ddc function, located in the hw/i2c/i2c-ddc.c file. A local attacker with permission to execute i2c commands could explo...
New Imperva Java SDK: Greasing The Wheels for Active Directory Coding Projects
words and research by Gabriel Beyo. According to StackOverflow’s 2018 Developer Survey, Java remains one of the world’s most popular coding languages, universally liked for its versatility and ease of adoption. Even so, working under the pressures developers often do, a bit of help always goes a...