CVE-2019-15217

A vulnerability was found in the Linux kernel. The Zr364xx USB device driver is susceptible to malicious USB devices. An attacker able to add a specific USB device could cause a crash leading to a denial of service. Mitigation To mitigate this issue, prevent module zr364xx from being loaded. Plea...

OPENSUSE-SU-2019:2008-1 Security update for zstd

This update for zstd fixes the following issues: - Update to version 1.4.2: bug: Fix bug in zstd-0.5 decoder by @terrelln 1696 bug: Fix seekable decompression in-memory API by @iburinoc 1695 bug: Close minor memory leak in CLI by @LeeYoung624 1701 misc: Validate blocks are smaller than size limit...

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2019:2192-1)

This update for qemu fixes the following issues : Security issues fixed : CVE-2019-14378: Security fix for heap overflow in ipreass on big packet input bsc1143794. CVE-2019-12155: Security fix for NULL pointer dereference while releasing spice resources bsc1135902. CVE-2019-13164: Security fix fo...

Pyshark - Python Wrapper For Tshark, Allowing Python Packet Parsing Using Wireshark Dissectors

Python wrapper for tshark, allowing python packet parsing using wireshark dissectors. Extended documentation: http://kiminewt.github.io/pyshark Python2 deprecation - This package no longer supports Python2. If you wish to still use it in Python2, you can: Use version 0.3.8 Install pyshark-legacy...

Memory Corruption in PAN-OS

Palo Alto Networks is aware of a memory corruption vulnerability in PAN-OS. Ref: PAN-123700/ CVE-2019-1582. Successful exploitation of this issue may allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session. This issue affects PAN-OS 8.1...

SUSE-SU-2019:2192-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-14378: Security fix for heap overflow in ipreass on big packet input bsc1143794. - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources bsc1135902. - CVE-2019-13164: Security fi...

OPENSUSE-SU-2019:1952-1 Security update for zstd

This update for zstd fixes the following issues: - Update to version 1.4.2: bug: Fix bug in zstd-0.5 decoder by @terrelln 1696 bug: Fix seekable decompression in-memory API by @iburinoc 1695 bug: Close minor memory leak in CLI by @LeeYoung624 1701 misc: Validate blocks are smaller than size limit...

Diaphora - The Most Advanced Free And Open Source Program Diffing Tool

Diaphora διαφορά, Greek for 'difference' is a program diffing plugin for IDA, similar to Zynamics Bindiff or other FOSS counterparts like YaDiff, DarunGrim, TurboDiff, etc... It was released during SyScan 2015. It works with IDA 6.9 to 7.3. Support for Ghidra is in development. Support for Binary...

DockerSecurityPlayground - A Microservices-based Framework For The Study Of Network Security And Penetration Test Techniques

Docker Security Playground is an application that allows you to: Create network and network security scenarios , in order to understand network protocols, rules, and security issues by installing DSP in your PC. Learn penetrationtesting techniques by simulating vulnerability labs scenarios Manage...

OPENSUSE-SU-2019:1895-1 Security update for ledger

This update for ledger fixes the following issues: ledger was updated to 3.1.3: + Properly reject postings with a comment right after the flag bug 1753 + Make sorting order of lot information deterministic bug 1747 + Fix bug in tag value parsing bug 1702 + Remove the org command, which was always...

Security update for libheimdal (moderate)

openSUSE Security Update: Security update for libheimdal Announcement ID: openSUSE-SU-2019:1888-1 Rating: moderate References: 1047218 1084909 Cross-References: CVE-2018-16860 CVE-2019-12098 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...

Security update for ledger (moderate)

openSUSE Security Update: Security update for ledger Announcement ID: openSUSE-SU-2019:1895-1 Rating: moderate References: 1052478 1052484 1105084 Cross-References: CVE-2017-12481 CVE-2017-12482 CVE-2017-2807 CVE-2017-2808 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes four...

Moderate: Red Hat Security Advisory: CloudForms 4.7.8 security, bug fix and enhancement update

An update is now available for CloudForms Management Engine 5.10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

Fedora Update for kernel-tools FEDORA-2019-6bda4c81f4

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for kernel-tools FEDORA-2019-e37c348348

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0039)

The remote OracleVM system is missing necessary patches to address critical security updates : - xen: let allocxenballoonedpages fail if not enough memory free Juergen Gross Orabug: 30073695 - mm/pagealloc.c: calculate 'available' memory in a separate function Igor Redko Orabug: 30073695 - Input:...

[SECURITY] Fedora 29 Update: kernel-tools-5.2.7-100.fc29

This package contains the tools/ directory from the kernel source and the supporting documentation...

[SECURITY] Fedora 30 Update: kernel-tools-5.2.7-200.fc30

This package contains the tools/ directory from the kernel source and the supporting documentation...

Authorization Bypass

bind is vulnerable to authorization bypass. The vulnerability exists through an Incorrect documentation of krb5-subdomain and ms-subdomain update policies...

Unbreakable Enterprise kernel security update

4.1.12-124.30.1 - xen: let allocxenballoonedpages fail if not enough memory free Juergen Gross Orabug: 30073695 - mm/pagealloc.c: calculate 'available' memory in a separate function Igor Redko Orabug: 30073695 - Input: gtco - bounds check collection indent level Grant Hernandez Orabug: 30074413...