[SECURITY] [DSA 4096-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4096-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 25, 2018 https://www.debian.org/security/faq -...

Debian DSA-4096-1 : firefox-esr - security update

Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees, integer overflows and other implementation errors may lead to the execution of arbitrary code, denial of service or URL spoofing. C Tenable Network Security, Inc. The...

Pool update does not complete when CPU feature set has changed

When applying a hotfix that contains CPU feature setchangesto a XenServer host or pool that has running VMs, the XenCenterInstall Update wizard might stop after installing the update on one or more of the hosts and display the following error: The host does not have some of the CPU features that...

Debian DLA-1256-1 : firefox-esr security update

Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees and other implementation errors may lead to the execution of arbitrary code or denial of service. For Debian 7 'Wheezy', these problems have been fixed in version...

[SECURITY] [DLA 1256-1] firefox-esr security update

Package : firefox-esr Version : 52.6.0esr-1deb7u1 CVE ID : CVE-2018-5089 CVE-2018-5091 CVE-2018-5095 CVE-2018-5096 CVE-2018-5097 CVE-2018-5098 CVE-2018-5099 CVE-2018-5102 CVE-2018-5103 CVE-2018-5104 CVE-2018-5117 Several security issues have been found in the Mozilla Firefox web browser: Multiple...

The vulnerability of the Media Framework component of the Android operating system, which allows a hacker to compromise the accessibility of data

The vulnerability of the Media Framework component in the Android operating system is related to resource management errors. Exploiting this vulnerability allows an attacker to compromise data accessibility...

The vulnerability of the `ih264d_get_implicit_weights` function (decoder/ih264d_parse_bslice.c) in the Media Framework component of the Android operating system, which allows a perpetrator to manipulate the accessibility of data.

The vulnerability of the ih264dgetimplicitweights function in the decoder/ih264dparsebslice.c file of the Media Framework component of the Android operating system is related to resource management errors. Exploiting this vulnerability could allow a remote attacker to compromise data accessibilit...

Mozilla Firefox Security Advisories (MFSA2018-02, MFSA2018-03) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

Intel Halts Spectre/Meltdown Patching for Broadwell and Haswell Systems

Intel is advising OEMs and partners to halt patching for the Spectre and Meltdown vulnerabilities amid numerous reports the updates are causing reboot issues on systems running the Broadwell and Haswell microprocessors. “We recommend that OEMs, cloud service providers, system manufacturers,...

FreeBSD : wordpress -- multiple issues (c04dc18f-fcde-11e7-bdf6-00e04c1ea73d)

wordpress developers reports : JavaScript errors that prevented saving posts in Firefox have been fixed. The previous taxonomy-agnostic behavior of getcategorylink and categorydescription was restored. Switching themes will now attempt to restore previous widget assignments, even when there are n...

wordpress -- multiple issues

wordpress developers reports: JavaScript errors that prevented saving posts in Firefox have been fixed. The previous taxonomy-agnostic behavior of getcategorylink and categorydescription was restored. Switching themes will now attempt to restore previous widget assignments, even when there are no...

Debian: Security Advisory (DLA-896-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 27 Update: awstats-7.6-8.fc27

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

The vulnerability of the uncompress function in ImfZip.cpp of the OpenEXR library, which allows a hacker to trigger a service failure

The vulnerability of the uncompress function in the ImfZip.cpp library related to numerical processing errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Microsoft Word 2010 Service Pack 2 Multiple RCE Vulnerabilities (KB4011659)

This host is missing a critical security update according to Microsoft KB4011659 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

App Layering: Nutanix AHV 5.5 support requires ELM 4.9 or above

App Layering 4.8 and before is not compatible with networking changes in Nutanix AHV 5.5. Depending on the operation you are performing, you may see any of these errors: Failed to connect to the server at 'host' A failure occurred connecting to the Nutanix server. Error = write EPROTO...

Microsoft Windows Multiple Vulnerabilities (KB4056898)

This host is missing an important security update according to Microsoft KB4056898 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

OPENSUSE-SU-2017:3448-1 Security update for phpMyAdmin

This update for phpMyAdmin to version 4.7.7 fixes a security issue and bugs. The following vulnerability was fixed: - By deceiving a user to click on a crafted URL, it was possible to perform harmful database operations bsc1074066, PMASA-2017-09 This update also contains all upstream improvements...

Sql injection

The einjerrorinject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set...

CVE-2016-3695

The einjerrorinject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set...