Multiple Adobe Product Type Obfuscation Vulnerabilities

Adobe Flash Player, Adobe AIR SDK, and Adobe AIR SDK & Compiler are products of Adobe, Incorporated.Adobe Flash Player is a multimedia player; Adobe AIR SDK and Adobe AIR SDK & Compiler are standard development kits for Adobe AIR a cross-OS runtime environment. Adobe Flash Player is a multimedia...

SUSE SLED11 / SLES11 Security Update : bind (SUSE-SU-2015:2340-1)

This update fixes the following security issue : - CVE-2015-8000: Fix remote denial of service by misparsing incoming responses bsc958861. It also fixes a bug : - Fix a regression in caching entries with a TTL of 0 bsc923281. Note that Tenable Network Security has extracted the preceding...

Bitcoin Core Developers Quit Bitcoin Project to Launch a New Digital Currency

Some of Bitcoin’s Core developers have left the Bitcoin project and started building their separate cryptocurrency called DECRED. Decred aims to prevent the issues Bitcoin is currently facing regarding project governance and development funding. CEO of 'Company 0', Mr. Jacob Yocom-Piatt, who has...

phpMyAdmin -- path disclosure vulnerability

The phpMyAdmin development team reports: By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. We consider these vulnerabilities to ...

Joomla! 1.5 3.4.5 - Object Injection Remote Command Execution

Joomla! 1.5 3.4.5 - Object Injection Remote Command Execution ''' Simple PoC for Joomla Object Injection. Gary @ Sec-1 ltd http://www.sec-1.com/ ''' import requests easyinstall requests def geturlurl, useragent: headers = 'User-Agent': useragent cookies = requests.geturl,headers=headers.cookies f...

Fast Packet Networking Toolkit: Snabb Switch

Snabb Switch is open source software for solving novel problems in networking. Blending the latest techniques for high-performance x86 packet processing together with a high-level LuaJIT programming interface. The goal is to offer the easiest way to create and deploy new network functions in larg...

UBUNTU-CVE-2015-8068

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

flash-plugin: multiple code execution issues fixed in APSB15-32

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial o...

[SECURITY] Fedora 23 Update: python-django-1.8.7-1.fc23

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

The largest infant electronic learning product Maker Vtech（Vtech）is aeration 4 8 0 million parents and children to information disclosure-vulnerability warning-the black bar safety net

Vtech Vtech, the company is located in Hong Kong, as the world's largest infant and preschool electronic learning products business, before being exposed user data leakage. From the current analysis point of view, leaked the data relates to the range has covered 4 of 8 0 million parents and more...

RHEL 5 / 6 : java-1.5.0-ibm (RHSA-2015:2518)

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

Debian DLA-349-1 : python-django security update

It was discovered that there was a potential settings leak in date template filter of Django, a web-development framework. If an application allows users to specify an unvalidated format for dates and passes this format to the date filter, e.g. lastupdated|date:userdateformat , then a malicious...

Important: Red Hat Security Advisory: java-1.5.0-ibm security update

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

OpenJDK: missing checks for proper initialization in ObjectStreamClass (Serialization, 8103671)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization...

DLA-349-1 python-django - security update

Bulletin has no description...

RHEL 6 : java-1.6.0-ibm (RHSA-2015:2508)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:2508 advisory. IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several...

RHEL 7 : java-1.8.0-ibm (RHSA-2015:2509)

Updated java-1.8.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2015:2506)

Updated java-1.7.1-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 6 and 7 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

[SECURITY] Fedora 21 Update: ProDy-1.7.1-1.fc21

ProDy is a free and open-source Python package for protein structure, dynam ics, and sequence analysis. It allows for comparative analysis and modeling of protein structural dynamics and sequence co-evolution. Fast and flexible P roDy API is for interactive usage as well as application developmen...

OpenJDK: java.nio Buffers integer overflow issues (Libraries, 8130891)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...