[SECURITY] Fedora 20 Update: rdiff-backup-1.2.8-14.fc20

rdiff-backup is a script, written in Python, that backs up one directory to another and is intended to be run periodically nightly from cron for instance. The target directory ends up a copy of the source directory, but extra reverse diffs are stored in the target directory, so you can still...

[SECURITY] Fedora 20 Update: duplicity-0.6.25-3.fc20

Duplicity incrementally backs up files and directory by encrypting tar-format volumes with GnuPG and uploading them to a remote or local file server. In theory many protocols for connecting to a file server could be supported; so far ssh/scp, local file access, rsync, ftp, HSI, WebDAV and Amazon ...

[SECURITY] Fedora 22 Update: duplicity-0.6.25-3.fc22

Duplicity incrementally backs up files and directory by encrypting tar-format volumes with GnuPG and uploading them to a remote or local file server. In theory many protocols for connecting to a file server could be supported; so far ssh/scp, local file access, rsync, ftp, HSI, WebDAV and Amazon ...

[SECURITY] Fedora 22 Update: rdiff-backup-1.2.8-14.fc22

rdiff-backup is a script, written in Python, that backs up one directory to another and is intended to be run periodically nightly from cron for instance. The target directory ends up a copy of the source directory, but extra reverse diffs are stored in the target directory, so you can still...

[SECURITY] Fedora 20 Update: dump-0.4-0.24.b44.fc20

The dump package contains both dump and restore. Dump examines files in a filesystem, determines which ones need to be backed up, and copies those files to a specified disk, tape, or other storage medium. The restore command performs the inverse function of dump; it can restore a full backup of a...

Job's Next Run Date Doesn't Match Schedule

Challenge The 'Next Run' date shown for a job does not match the settings selected in the Schedule tab of the job. For example, a job configured to run Monthly on the last Saturday displays a 'Next Run' date of the upcoming Saturday, which is not the last Saturday of the month. Cause This occurs...

Backup Job has Too Many Restore Points - Considerations and Causes

Purpose This article provides information about the two most common configurations whose behavior can appear to cause "Too many restore points." Forward Incremental Retention Per-Machine Backup Files Solution Forward Incremental Retention The Forward Incremental Backup mode's method of retention...

OracleVM 3.3 : glibc (OVMSA-2014-0017)

The remote OracleVM system is missing necessary patches to address critical security updates : - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, - Don't use alloca in addgetnetgrentX 1087789. - Adjust...

Backup to tape jobs fails when the source contains .vrb files

Challenge 1. When using backup to tape on a source job containing .vrb files, the jobs may fail with the error: MediaPool not found id: 00000000-0000-0000-0000-000000000000. 2. When enabling incremental mode in backup to tape, .vrb files will be transfered to tape. Cause This is a known issue...

Knot DNS 1.5.2 Incremental Zone Transfer (IXFR) DoS

The remote host is running Knot DNS version 1.5.2. It is, therefore, affected by an error that could allow certain Incremental Zone Transfer IXFR messages to crash the server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid78890; scriptversion"1.4"; scriptcvsdate"Dat...

Forward Incremental – Animation of Method and Retention

Purpose This article is intended to document how Forward Incremental works, and how its retention is enforced. Solution There are two distinct methods of Forward Incremental: Forever Forward Incremental Forward Incremental with Periodic Fulls Forever Forward Incremental For more information...

Scientific Linux Security Update : qemu-kvm on SL6.x i386/x86_64 (20140819)

Two integer overflow flaws were found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use either of these flaws to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on...

RHEL 6 : qemu-kvm (RHSA-2014:1075)

Updated qemu-kvm packages that fix two security issues and three bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

qemu security update

CentOS Errata and Security Advisory CESA-2014:1075 Updated qemu-kvm packages that fix two security issues and three bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS ba...

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update

Updated qemu-kvm-rhev packages that fix two security issues and one bug are now available for Red Hat Enterprise Virtualization. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Moderate: Red Hat Security Advisory: qemu-kvm security and bug fix update

Updated qemu-kvm packages that fix two security issues and three bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

Direct Object Reference - User Information Disclosure

A direct object reference vulnerability exists on the answers.atlassian.com platform which allows for malicious users to obtain the email address of any given ID. Additionally since the ID's are incremental, it would be possible for an attacker to gain the email addresses of every single Atlassia...

Direct Object Reference - User Information Disclosure

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Cloud. Using Confluence Server? See the corresponding bug report|http://jira.atlassian.com/browse/CONFSERVER-46864. panel A direct object reference vulnerability exists on the answers.atlassian.com platform which allows for malicious...

Etsy Feature Flags Keep Marketplace Online and Secure

BOSTON – Etsy is one of the Web’s biggest marketplaces. Its developers may be one of Web’s busiest teams. Proudly, the vintage and homemade goods online store, will push code to production upwards of 50 times a day. And, according to Kenneth Lee, senior product security engineer, they do so with...

[SECURITY] Fedora 20 Update: imapsync-1.584-2.fc20

imapsync is a tool for facilitating incremental recursive IMAP transfers from one mailbox to another. It is useful for mailbox migration, and reduces the amount of data transferred by only copying messages that are not present on both servers. Read, unread, and deleted flags are preser ved, and t...