CVE-2016-1344

The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service device reload via fragmented packets, aka Bug ID CSCux38417...

CVE-2016-1351

CVE-2016-1351 affects Cisco IOS (15.1/15.2) and NX-OS (4.1–6.2) where the Locator/ID Separation Protocol (LISP) is implemented. The root cause is improper input validation of LISP headers, allowing remote unauthenticated attackers to cause a denial of service (device reload) via a crafted UDP hea...

CVE-2016-1347

The Wide Area Application Services WAAS Express implementation in Cisco IOS 15.1 through 15.5 allows remote attackers to cause a denial of service device reload via a crafted TCP segment, aka Bug ID CSCuq59708...

Emergency Java Patch Re-Issued for 2013 Vulnerability

Oracle yesterday released an emergency patch for a Java vulnerability that was improperly patched in 2013. Researchers at Security Explorations in Poland two weeks ago disclosed that a Java patch for an issue the company reported in 2013, CVE-2013-5838, was still trivially exploitable, and it...

CVE-2016-1784

The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to cause a denial of service resource consumption and application crash via a crafted web site...

Design/Logic Flaw

The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby before 2.0.0-p648, 2.1 before 2.1.8, and 2.2 before 2.2.4, as distributed in Apple OS X before 10.11.4 and other products, mishandles tainting, which allows context-dependent attackers to execute arbitrary code or cause a denial of...

CVE-2016-1784

The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to cause a denial of service resource consumption and application crash via a crafted web site...

RedHat Update for openssh RHSA-2016:0465-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openssh, pam_ssh_agent_auth security update

CentOS Errata and Security Advisory CESA-2016:0466 Updated openssh packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which...

VulnCheck KEV: CVE-2015-1805

The 1 piperead and 2 pipewrite implementations in fs/pipe.c in the Linux kernel before 3.16 do not properly consider the side effects of failed copytouserinatomic and copyfromuserinatomic calls, which allows local users to cause a denial of service system crash or possibly...

Ubuntu 14.04 LTS : Linux kernel (Wily HWE) vulnerabilities (USN-2930-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2930-2 advisory. Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local...

Ubuntu 15.10 : linux vulnerabilities (USN-2930-1)

Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges...

USN-2929-2: Linux kernel (Trusty HWE) vulnerabilities

Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges...

USN-2930-1: Linux kernel vulnerabilities

Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges...

CVE-2015-7560

CVE-2015-7560 affects the SMB1 ACL handling in Samba’s smbd component across Samba 3.x and 4.x. An authenticated remote user can first use a UNIX SMB1 call to create a symlink, then a non-UNIX SMB1 call to write to the ACL content, enabling modification of arbitrary ACLs. Remediation: upgrade to ...

CVE-2016-1970

Integer underflow in the srtpunprotect function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...

Striptls - Proxy POC Implementation Of STARTTLS Stripping Attacks

poc implementation of STARTTLS stripping attacks SMTP SMTP.StripFromCapabilities - server response capability patch SMTP.StripWithInvalidResponseCode - client STARTTLS stripping, invalid response code SMTP.UntrustedIntercept - STARTTLS interception client and server talking ssl requires server.pe...

[SECURITY] Fedora 22 Update: libssh2-1.5.0-2.fc22

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

DSA-3510-1 iceweasel - security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: rabbitmq-server security and bug fix update

Updated rabbitmq-server packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base...