SUSE-SU-2021:0068-1 Security update for nodejs12

This update for nodejs12 fixes the following issues: - New upstream LTS version 12.20.1: CVE-2020-8265: use-after-free in TLSWrap High bug in TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as...

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RHEL 7 : openssl (RHSA-2020:5640)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5640 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

RHEL 7 : openssl (RHSA-2020:5566)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5566 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

RHEL 7 : openssl (RHSA-2020:5623)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5623 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

RHEL 8 : openssl (RHSA-2020:5476)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5476 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

Fix CVE: CVE-2020-1971

EDIPARTYNAME NULL pointer de-reference CVE-2020-1971...

OPENSUSE-SU-2020:1121-1 Security update for ldb

This update for ldb fixes the following issues: - CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. This update was imported from the SUSE:SLE-15-SP1:Update update project...

SUSE SLED15 / SLES15 Security Update : ldb (SUSE-SU-2020:2067-1)

This update for ldb fixes the following issues : CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE-SU-2020:2067-1 Security update for ldb

This update for ldb fixes the following issues: - CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159...

RHEL 7 : samba (RHSA-2020:3118)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3118 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allo...

openSUSE Security Update : ldb / samba (openSUSE-2020-1023)

"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Security update for samba (important)

openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2020:0984-1 Rating: important References: 1171437 1172307 1173159 1173160 1173161 1173359 Cross-References: CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-14303 Affected Products: openSUSE Leap 15.1 An update...

OpenSSL: EDIPARTYNAME NULL Pointer De-reference Vulnerability (CVE-2020-1971) - Linux

OpenSSL is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl";...

VLC < 3.0.8 Multiple Vulnerabilities

The version of VLC media player installed on the remote Windows host is prior to 3.0.8. It is, therefore, affected by multiple vulnerabilities: - An integer underflow condition exists in the modules/demux/mp4/mp4.c component of VLC Player. An unauthenticated, remote attacker can exploit this, by...

Security fix for the ALT Linux 8 package samba-DC version 4.9.10-alt1

July 16, 2019 Evgeny Sinelnikov 4.9.10-alt1 - Update to latest summer release of samba-4.9 backported to p8 - Security fixes: + CVE-2019-12435 Samba AD DC Denial of Service in DNS management server dnsserver + CVE-2018-16860 Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum + CVE-2018-16852 NULL...

Security fix for the ALT Linux 8 package samba version 4.9.9-alt1

June 26, 2019 Evgeny Sinelnikov 4.9.9-alt1 - Update to summer security release of samba-4.9 backported to p8 - Security fixes: + CVE-2019-12435 Samba AD DC Denial of Service in DNS management server dnsserver + CVE-2018-16860 Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum + CVE-2018-16852 NULL...

CVE-2018-11988

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, Un-trusted pointer de-reference issue by accessing a variable which is already freed...