20 matches found
Updated java packages fix security vulnerabilities
The updated packages fix security vulnerabilities and a file conflict : Improper connection handling during TLS handshake. CVE-2023-21930 Incorrect enqueue of references in garbage collector. CVE-2023-21954 Certificate validation issue in TLS session negotiation. CVE-2023-21967 Swing HTML parsing...
Advisory ROSA-SA-2021-1992
Software: util-linux 2.23.2 OS: Cobalt 7.9 CVE-ID: CVE-2015-5224 CVE-Crit: CRITICAL CVE-DESC: The mkostemp function in login-utils in util-linux, when misused, allows remote attackers to cause file name conflict and possibly other attacks. CVE-STATUS: default CVE-REV: default CVE-ID: CVE-2016-501...
SUSE: Security Advisory (SUSE-SU-2019:14163-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ALSA-2020:5500 Important: mariadb:10.3 security, bug fix, and enhancement update
MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: mariadb 10.3.27, galera 25.3.31. BZ1899082, BZ1899086 Security Fixes: mariadb: Insufficient SST method name check leading to cod...
Updated qtbase5 packages fix security vulnerabilities
Updated qtbase5 packages fix security vulnerabilities: QPluginLoader in Qt versions 5.0.0 through 5.13.2 would search for certain plugins first on the current working directory of the application, which allows an attacker that can place files in the file system and influence the working directory...
MGASA-2020-0080 Updated qtbase5 packages fix security vulnerabilities
Updated qtbase5 packages fix security vulnerabilities: QPluginLoader in Qt versions 5.0.0 through 5.13.2 would search for certain plugins first on the current working directory of the application, which allows an attacker that can place files in the file system and influence the working directory...
Updated bind packages fix security vulnerabilities
Updated bind packages fix security vulnerabilities Limiting simultaneous TCP clients is ineffective CVE-2018-5743 Race condition when discarding malformed packets can cause bind to exit with assertion failure CVE-2019-6471 In addition to those two security issues, this package releases also fixes...
MGASA-2019-0299 Updated bind packages fix security vulnerabilities
Updated bind packages fix security vulnerabilities Limiting simultaneous TCP clients is ineffective CVE-2018-5743 Race condition when discarding malformed packets can cause bind to exit with assertion failure CVE-2019-6471 In addition to those two security issues, this package releases also fixes...
CVE-2019-14414
In cPanel before 78.0.2, a Userdata cache temporary file can conflict with domains SEC-478...
openSUSE Security Update : libreoffice (openSUSE-2019-642)
This update for libreoffice to 6.0.5.2 fixes the following issues : Security issues fixed : - CVE-2018-10583: An information disclosure vulnerability occurs during automatic processing and initiating an SMB connection embedded in a malicious file, as demonstrated by...
[SECURITY] [DSA 4395-2] chromium regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-4395-2 [email protected] https://www.debian.org/security/ Michael Gilbert February 26, 2019 https://www.debian.org/security/faq -...
openSUSE Security Update : libreoffice (openSUSE-2018-942)
This update for libreoffice to 6.0.5.2 fixes the following issues : Security issues fixed : - CVE-2018-10583: An information disclosure vulnerability occurs during automatic processing and initiating an SMB connection embedded in a malicious file, as demonstrated by...
openSUSE Security Update : libreoffice (openSUSE-2018-941)
This update for libreoffice to 6.0.5.2 fixes the following issues : Security issues fixed : - CVE-2018-10583: An information disclosure vulnerability occurs during automatic processing and initiating an SMB connection embedded in a malicious file, as demonstrated by...
Security update for libreoffice (moderate)
This update for libreoffice to 6.0.5.2 fixes the following issues: Security issues fixed: - CVE-2018-10583: An information disclosure vulnerability occurs during automatic processing and initiating an SMB connection embedded in a malicious file, as demonstrated by...
openSUSE Security Update : zeromq (openSUSE-2015-409)
zeromq was updated to fix one security issue and two non-security bugs. The following vulnerabilities were fixed : - CVE-2014-9721: zeromq protocol downgrade attack on sockets using the ZMTP v3 protocol boo931978 The following bugs were fixed : - boo912460: avoid curve test to hang for ppc ppc64...
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:0180-1)
Fix a file conflict between -devel and -headless package - Update to 2.4.4 bnc858818 - changed from xz to gzipped tarball as the first was not available during update - changed a keyring file due release manager change new one is signed by 66484681 from [email protected], see...
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:0174-1)
Fix a file conflict between -devel and -headless package - Update to 2.4.4 bnc858818 - changed from xz to gzipped tarball as the first was not available during update - changed a keyring file due release manager change new one is signed by 66484681 from [email protected], see...
MDVA-2009:026-1 : samba
This update fixes two minor issues with samba. Package does not install from update because of missing dependency 47979. Fix dependencies because /usr/include/tdb.h was moved from libsmbclient0-devel to libtdb-devel and this led to a file conflict and prevented a smooth upgrade. This update fixes...
MDVA-2009:026 : samba
This update fixes two minor issues with samba. Package does not install from update because of missing dependency 47979. Fix dependencies because /usr/include/tdb.h was moved from libsmbclient0-devel to libtdb-devel and this led to a file conflict and prevented a smooth upgrade. This update fixes...
Debian DSA-1516-1 : dovecot - privilege escalation
Prior to this update, the default configuration for Dovecot used by Debian runs the server daemons with group mail privileges. This means that users with write access to their mail directory on the server for example, through an SSH login could read and also delete via a symbolic link mailboxes...