21 matches found
A Bootiful Podcast: Java developer advocate Ana-Maria Mihalceanu
I had a wonderful chat with Java Developer Advocate Ana-Maria Mihalceanu about Java Flight Recorder, Project Babylon, Project Panama, and so many other exciting things in the Java ecosystem...
Important: jmc security update
JDK Mission Control is a powerful profiler for HotSpot JVMs and has an advanced set of tools that enables efficient and detailed analysis of the extensive data collected by JDK Flight Recorder. The tool chain enables developers and administrators to collect and analyze data from Java applications...
EUVD-1999-0375
Malware in sbrugna...
EUVD-1999-1484
Malware in sbrugna...
CVE-1999-0375
Buffer overflow in webd in Network Flight Recorder NFR 2.0.2-Research allows remote attackers to execute commands...
ActiveMQ: Deserialization vulnerability on Jolokia that allows authenticated users to perform RCE
A vulnerability in ActiveMQ's Jolokia integration, where an authenticated user can potentially execute arbitrary code on the server. The vulnerability stems from the ability to handle and manipulate JMX requests through Jolokia's HttpRequestHandler, allowing an attacker to exploit the...
UBUNTU-CVE-2022-41678
Once an user is authenticated on Jolokia, he can potentially trigger arbitrary code execution. In details, in ActiveMQ configurations, jetty allows org.jolokia.http.AgentServlet to handler request to /api/jolokia org.jolokia.http.HttpRequestHandlerhandlePostRequest is able to create JmxRequest...
RLSA-2022:0307 Moderate: java-1.8.0-openjdk security and bug fix update
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: Incomplete deserialization class filtering in ObjectInputStream Serialization, 8264934 CVE-2022-21248 OpenJDK: Insufficient URI checks in the XS...
java-1.8.0-openjdk security and bug fix update
An update is available for java-1.8.0-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime...
Fedora 32 : 1:java-1.8.0-openjdk (2020-e418151dc3)
July 2020 OpenJDK security update for OpenJDK 8. Full release notes: https://bitly.com/oj8u262 New features - JDK-8223147: JFR Backport Security fixes - JDK-8028431, CVE-2020-14579: NullPointerException in DerValue.equalsDerValue - JDK-8028591, CVE-2020-14578: NegativeArraySizeException in...
libcacard, qemu security update
CentOS Errata and Security Advisory CESA-2015:0349 Updated qemu-kvm packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common...
Important: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update
Updated qemu-kvm packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which...
Oracle Updates Java 7
Oracle released on Tuesday the Java standard edition version 7 update 40. Java 7u40 includes fixes for a long list of bugs and a number of new features as well. The most notable security patch appears to be a fix for a plugin deployment bug that failed to block expired certificates for users that...
CVE-1999-1503
The CVE-1999-1503 issue affects Network Flight Recorder (NFR) versions 1.5 and 1.6, where the nfrd daemon can crash (denial of service) when processing a TCP packet with a null header and data field. The underlying root cause is not explicitly stated in the provided documents. Impact described is...
CVE-1999-1503
Network Flight Recorder NFR 1.5 and 1.6 allows remote attackers to cause a denial of service in nfrd crash via a TCP packet with a null header and data field...
CVE-1999-0375
Buffer overflow in webd in Network Flight Recorder NFR 2.0.2-Research allows remote attackers to execute commands...
CVE-1999-0375
The connected PT-1999-1062 entry confirms a buffer overflow in the webd component of Network Flight Recorder (NFR) version 2.0.2-Research that allows remote command execution. Affected software: Network Flight Recorder (NFR) WebD, version 2.0.2-Research. Root cause: buffer overflow in webd. Impac...
nfr.sof.txt
Date: Tue, 16 Feb 1999 14:19:15 -0800 From: Security Research Labs To: [email protected] Subject: NAI Security Advisory: Vulnerability in NFR 2.0.2-Research ======================================================================= Network Associates, Inc. SECURITY ADVISORY February 16, 1999...
CVE-1999-0375
Buffer overflow in webd in Network Flight Recorder NFR 2.0.2-Research allows remote attackers to execute commands...
PT-1999-1062 · Nfr · Network Flight Recorder
Name of the Vulnerable Software and Affected Versions: Network Flight Recorder NFR version 2.0.2-Research Description: A buffer overflow issue in the webd component of Network Flight Recorder NFR allows remote attackers to execute commands. Recommendations: For Network Flight Recorder NFR version...