4419 matches found
openSUSE Security Update : perl-YAML-LibYAML (openSUSE-2020-1089)
This update for perl-YAML-LibYAML fixes the following issues : perl-YAML-LibYAML was updated to 0.69: bsc1173703 - Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. - Clarify documentation about exported functions -...
Security update for perl-YAML-LibYAML (moderate)
openSUSE Security Update: Security update for perl-YAML-LibYAML Announcement ID: openSUSE-SU-2020:1093-1 Rating: moderate References: 1173703 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for perl-YAML-LibYAML fixes the...
OPENSUSE-SU-2020:1093-1 Security update for perl-YAML-LibYAML
This update for perl-YAML-LibYAML fixes the following issues: perl-YAML-LibYAML was updated to 0.69: bsc1173703 Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. Clarify documentation about exported functions Dump w...
OPENSUSE-SU-2020:1089-1 Security update for perl-YAML-LibYAML
This update for perl-YAML-LibYAML fixes the following issues: perl-YAML-LibYAML was updated to 0.69: bsc1173703 Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. Clarify documentation about exported functions Dump w...
Dynamic Swagger Support Comes to Imperva
It’s no secret that the shift to DevOps deployments has taken center stage at organizations small and large. The ability to quickly configure, manage and update via APIs is critical to a company’s ability to push out small iterative changes, without human intervention. And Swagger has become the...
SUSE-SU-2020:2025-1 Security update for perl-YAML-LibYAML
This update for perl-YAML-LibYAML fixes the following issues: perl-YAML-LibYAML was updated to 0.69: bsc1173703 Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. Clarify documentation about exported functions Dump w...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Python vulnerabilities (USN-4428-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4428-1 advisory. It was discovered that Python documentation had a misleading information. A security issue could be possibly caused by wrong...
USN-4428-1 python2.7, python3.4, python3.5, python3.6, python3.8 vulnerabilities
It was discovered that Python documentation had a misleading information. A security issue could be possibly caused by wrong assumptions of this information. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2019-17514 It was discovered that...
[SECURITY] Fedora 31 Update: mailman-2.1.34-1.fc31
Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0263
An update of 'bindutils', 'apache-tomcat' packages of Photon OS has been released...
Upgrade the bundled version of Apache Tomcat to 8.5.57
h3. Issue Summary The recently disclosed vulnerability regarding Apache Tomcat CVE-2020-13934|https://vulners.com/cve/CVE-2020-13934 affects the following versions: Apache Tomcat 8.x from 8.5.1 to 8.5.56 Apache Tomcat 9.x from 9.0.0.M5 to 9.0.36 Apache Tomcat 10.x from 10.0.0-M1 to 10.0.0-M6...
clickroofing.co.uk Cross Site Scripting vulnerability OBB-1228822
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
SecGen
This is a Ruby application called SecGen, which creates vulnerable virtual machines for learning and practicing security penetration testing techniques. The application uses Vagrant, Puppet, and Ruby to generate randomly vulnerable virtual machines based on a scenario specification. The scenario...
letsdive.pl Cross Site Scripting vulnerability OBB-1227426
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
SUSE SLES12 Security Update : bind (SUSE-SU-2020:1914-1)
This update for bind fixes the following issues : Amended documentation referring to rule types 'krb5-subdomain' and 'ms-subdomain'. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. CVE-2018-5741...
SUSE-SU-2020:1914-1 Security update for bind
This update for bind fixes the following issues: - Amended documentation referring to rule types 'krb5-subdomain' and 'ms-subdomain'. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. CVE-2018-5741 ...
GHSA-VHR6-PVJM-9QWF User passwords are stored in clear text in the Django session
Impact django-two-factor-auth versions 1.11 and before store the user's password in clear text in the user session base64-encoded. The password is stored in the session when the user submits their username and password, and is removed once they complete authentication by entering a two-factor...
SUSE SLED15 / SLES15 Security Update : nasm (SUSE-SU-2020:1843-1)
This update for nasm fixes the following issues : nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. Fix crash due to multiple errors or warnings during the code generation pass if a list file is...
PAN-OS: OS command injection vulnerability in the management interface
An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. Work around: This issue impacts the PAN-OS management interface but you can mitigate the impact of this issue by following best...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0260
An update of 'python-Twisted' packages of Photon OS has been released...