4419 matches found
PAN-OS: OS command injection vulnerability in management interface certificate generator
An OS Command Injection vulnerability in the PAN-OS web management interface allows authenticated administrators to execute arbitrary OS commands with root privileges by sending a malicious request to generate new certificates for use in the PAN-OS configuration. Work around: This issue affects t...
kernel security and bug fix update
2.6.32-754.30.2.OL6 - Update genkey bug 25599697 2.6.32-754.30.2 - x86/speculation: Provide SRBDS late microcode loading support Waiman Long - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add SRBDS vulnerability...
U.S. Dept Of Defense: Sensitive information about a ██████
Summary: https://████████/ is an U.S. Government USG Information System IS that is provided for USG-authorized use only.Due to some reason a document which contains the information about a special ███ for the ████ █████ which possibly is ███████or █████.The pdf file is located at...
OPENSUSE-SU-2020:0785-1 Security update for axel
This update for axel fixes the following issues: axel was updated to 2.17.8: CVE-2020-13614: SSL Certificate Hostnames were not verified boo1172159 Replaced progressbar line clearing with terminal control sequence Fixed parsing of Content-Disposition HTTP header Fixed User-Agent HTTP header never...
openSUSE Security Update : axel (openSUSE-2020-778)
This update for axel fixes the following issues : axel was updated to 2.17.8 : - CVE-2020-13614: SSL Certificate Hostnames were not verified boo1172159 - Replaced progressbar line clearing with terminal control sequence - Fixed parsing of Content-Disposition HTTP header - Fixed User-Agent HTTP...
dom4j allows External Entities by default which might enable XXE attacks
dom4j before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j. Note: This advisory applies to dom4j:dom4j...
Low: Red Hat Bug Fix Advisory: Red Hat Virtualization Engine security, bug fix 4.3.10
An update is now available for Red Hat Virtualization Engine 4.3. The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features...
openSUSE Security Update : qemu (openSUSE-2020-756)
This update for qemu fixes the following issues : Security issue fixed : - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. Non-security issues fixed : - Fixed an issue where limiting the memory bandwidth was not possible bsc1167816. - Fixed the issue that s390x...
SUSE-SU-2020:1523-1 Security update for qemu
This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. - CVE-2019-20382: Fixed a potential DoS due to a memory leak in VNC disconnect bsc1165776. - CVE-2020-1711: Fixed a potential OOB access in...
openSUSE: Security Advisory for qemu (openSUSE-SU-2020:0756-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2020:1516-1 Security update for qemu
This update for qemu fixes the following issues: Security issue fixed: - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. Non-security issue fixed: - Fixed an issue where limiting the memory bandwidth was not possible bsc1167816. - Miscellaneous fixes to the...
OPENSUSE-SU-2020:0756-1 Security update for qemu
This update for qemu fixes the following issues: Security issue fixed: - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. Non-security issues fixed: - Fixed an issue where limiting the memory bandwidth was not possible bsc1167816. - Fixed the issue that s390x cou...
dokumonster.de Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1180917 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Vault - A Tool For Secrets Management, Encryption As A Service, And Privileged Access Management
Please note : We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault, please responsibly disclose by contacting us at [email protected]. Website: https://www.vaultproject.io IRC: vault-tool on Freenode Announcement list: Google...
SUSE-SU-2020:1502-1 Security update for qemu
This update for qemu fixes the following issues: Security issue fixed: - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. Non-security issues fixed: - Fixed an issue where limiting the memory bandwidth was not possible bsc1167816. - Fixed the issue that s390x cou...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0297
An update of 'linux', 'linux-esx' packages of Photon OS has been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0246
An update of 'linux', 'linux-aws', 'linux-secure', 'linux-esx', 'unbound' packages of Photon OS has been released...
SUSE-SU-2020:1501-1 Security update for qemu
This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. - CVE-2019-20382: Fixed a potential DoS due to a memory leak in VNC disconnect bsc1165776. - CVE-2020-1711: Fixed a potential OOB access in...
(RHSA-2020:2332) Low: Red Hat Satellite 5 - End Of Life Notice
After May 31, 2020, as per the life-cycle support policy for Red Hat Satellite, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite and Proxy versions 5.8 or older on Red Hat Enterprise Linux 6. The listed versions will exit the...
(RHSA-2020:2331) Low: Red Hat Satellite Proxy 5 - End Of Life Notice
After May 31, 2020, as per the life-cycle support policy for Red Hat Satellite Proxy, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite and Proxy versions 5.8 or older on Red Hat Enterprise Linux 6. The listed versions will exit...