PYSEC-2014-115

The urlopen function in pym/portage/util/urlopen.py in Gentoo Portage 2.1.12, when using HTTPS, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and modify binary package lists via a crafted certificate...

Scientific Linux Security Update : firefox on SL4.x, SL5.x, SL6.x i386/x86_64

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. It was found that a Certificate Authority CA issued a fraudulent HTTPS certificate. This update renders any HTTPS certificates signed by that CA as untrusted, except for a select few...

CentOS Update for thunderbird CESA-2011:1243 centos4 x86_64

Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2011:1243 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CentOS Update for xulrunner CESA-2011:0373 centos5 x86_64

Check for the Version of xulrunner OpenVAS Vulnerability Test CentOS Update for xulrunner CESA-2011:0373 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

CentOS Update for thunderbird CESA-2011:1243 centos5 i386

Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2011:1243 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CentOS Update for thunderbird CESA-2011:1243 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for xulrunner CESA-2011:1268 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RedHat Update for seamonkey RHSA-2011:1266-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RedHat Update for firefox RHSA-2011:1268-01

Check for the Version of firefox OpenVAS Vulnerability Test RedHat Update for firefox RHSA-2011:1268-01 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for seamonkey CESA-2011:1244 centos4 i386

Check for the Version of seamonkey OpenVAS Vulnerability Test CentOS Update for seamonkey CESA-2011:1244 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

CentOS 4 / 5 : thunderbird (CESA-2011:1243)

An updated thunderbird package that fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Thunderbird is a standalone mail and newsgroup client. It was found that a...

RHEL 4 / 5 / 6 : thunderbird (RHSA-2011:1243)

An updated thunderbird package that fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Thunderbird is a standalone mail and newsgroup client. It was found that a...

openSUSE Security Update : mozilla-xulrunner191 (mozilla-xulrunner191-4202)

Mozilla XULRunner 1.9.1 was updated to version 1.9.1.18 to fix the following security issue : MFSA 2011-11 Several invalid HTTPS certificates were placed on the certificate blacklist to prevent their misuse. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7422)

MozillaFirefox was updated to version 3.6.16 to fix the following security issue : - Several invalid HTTPS certificates were placed on the certificate blacklist to prevent their misuse. MFSA 2011-11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...

Update to HTTPS certificate blacklist — Mozilla

Several invalid HTTPS certificates were placed on the certificate blacklist to prevent their misuse...

mozilla -- update to HTTPS certificate blacklist

The Mozilla Project reports: MFSA 2011-11 Update to HTTPS certificate blacklist...

Safari < 3.2.2 Multiple Vulnerabilities

The version of Safari installed on the remote Windows host is earlier than 3.2.2. Such versions reportedly have multiple security vulnerabilities : - Input validation issues in their handling of 'feed:' URLs, which could be abused to execute arbitrary JavaScript code in the local security zone. -...