Important: Red Hat Security Advisory: xen security and bug fix update

Updated xen packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

USN-1369-1: Thunderbird vulnerabilities

Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Thunderbird can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, o...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. VID 68ac6266-25c3-11e1-b63a-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID 68ac6266-25c3-11e1-b63a-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Ubuntu Update for ubufox USN-1355-3

Ubuntu Update for Linux kernel vulnerabilities USN-1355-3 OpenVAS Vulnerability Test $Id: gbubuntuUSN13553.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for ubufox USN-1355-3 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu: Security Advisory (USN-1355-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1355-3: ubufox and webfav update

USN-1355-1 fixed vulnerabilities in Firefox. This update provides updated ubufox and webfav packages for use with the latest Firefox. Original advisory details: It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect...

USN-1355-1: Firefox vulnerabilities

It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. CVE-2012-0450 Nicolas Gregoire and Aki Helin discovered that when processing a malformed...

Wireless Penetration Testing Series Part 2: Basic concepts of WLANs

Wireless Penetration Testing Series Part 2: Basic concepts of WLANs This blog post is in continuation of the Wireless Penetration Testing and Hacking series we started Part 1: Getting Started with Monitoring and Injection on the basis of the "SecurityTube Wi-Fi Security Expert" SWSE course which ...

CVE-2010-4648

The orinocoioctlsetauth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames...

broadcast-pppoe-discover NSE Script

Discovers PPPoE Point-to-Point Protocol over Ethernet servers using the PPPoE Discovery protocol PPPoED. PPPoE is an ethernet based protocol so the script has to know what ethernet interface to use for discovery. If no interface is specified, requests are sent out on all available interfaces. As...

Google Chrome < 16.0.912.75 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 16.0.912.75 and is affected the following vulnerabilities: - A heap-based buffer overflow exists related to 'libxml'. CVE-2011-3919 - A use-after-free error exists related to animation frames. CVE-2011-3921 - A stack-based...

Google Chrome Multiple Denial of Service Vulnerabilities (Jan 2012) - Linux

Google Chrome is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-3921

Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames...

CVE-2011-3921

Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames...

Design/Logic Flaw

Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames...

CVE-2011-3921

CVE-2011-3921: A use-after-free in Google Chrome prior to 16.0.912.75 affects the browser’s handling of animation frames, allowing remote-triggered denial of service and potentially other impact. Affected software: Google Chrome (pre-16.0.912.75). Root cause: use-after-free in animation-frame pro...

CVE-2011-3921

Removed by vendor...

CVE-2011-3921

Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames...

CVE-2011-3593

A certain Red Hat patch to the vlanhwacceldoreceive function in net/8021q/vlancore.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux RHEL 6 allows remote attackers to cause a denial of service system crash via priority-tagged VLAN frames...

CVE-2011-3910

Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...