Security update for bind (important)

openSUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2019:1532-1 Rating: important References: 1104129 1126068 1126069 1133185 Cross-References: CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2019-6465 Affected Products: openSUSE Leap 42.3 An update that fixes four...

SUSE-SU-2019:1449-1 Security update for bind

This update for bind fixes the following issues: Security issues fixed: - CVE-2018-5740: Fixed a denial of service vulnerability in the 'deny-answer-aliases' feature bsc1104129. - CVE-2019-6465: Fixed an issue where controls for zone transfers may not be properly applied to Dynamically Loadable...

Fedora 27 : knot / knot-resolver (2017-7a7ea1cf50)

"Major update for Knot DNS and Knot Resolver : Knot Resolver 1.5.0 2017-11-02 ================================ Bugfixes -------- - fix loading modules on Darwin Improvements ------------ - new module tasignalquery supporting Signaling Trust Anchor Knowledge using Keytag Query RFC 8145 section 5...

SSL/TLS: Collect and Report Certificate Details

This script collects and reports the details of all SSL/TLS certificates. This data will be used by other tests to verify server certificates. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

QQ2011会话密钥泄露漏洞

腾讯QQ是在中国非常广泛使用的即时聊天工具。 Windows平台上QQ的客户端（包括QQ2010/2011等版本）在实现上存在安全漏洞，在生成会话密钥相关的临时密钥时使用了不安全的随机密钥生成算法，导致攻击者可以通过监听用户登录得到会话密钥，进而可以添加、修改、查看所有的聊天记录。 Tencent QQ 2011 Tencent QQ 2010 厂商补丁： Tencent ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://im.qq.com/qq/dlqq.shtml...

Ubuntu Update for bind9 vulnerabilities USN-1025-1

Ubuntu Update for Linux kernel vulnerabilities USN-1025-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10251.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for bind9 vulnerabilities USN-1025-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : bind9 vulnerabilities (USN-1025-1)

It was discovered that Bind would incorrectly allow a ncache entry and a rrsig for the same type. A remote attacker could exploit this to cause Bind to crash, resulting in a denial of service. CVE-2010-3613 It was discovered that Bind would incorrectly mark zone data as insecure when the zone is...

USN-1025-1: Bind vulnerabilities

It was discovered that Bind would incorrectly allow a ncache entry and a rrsig for the same type. A remote attacker could exploit this to cause Bind to crash, resulting in a denial of service. CVE-2010-3613 It was discovered that Bind would incorrectly mark zone data as insecure when the zone is...

ISC BIND 9.4-ESV < 9.4-ESV-R4 / 9.6.2 < 9.6.2-P3, 9.6-ESV < 9.6-ESV-R3 / 9.7.x < 9.7.2-P3 Multiple Vulnerabilities

Binary data 5718.prm...

Thomson SpeedTouch和BT Home Hub路由器默认WEP/WPA密钥算法漏洞

BUGTRAQ ID: 28893 BT Home Hub和Speedtouch都是家用的无线Internet路由器。 BT Home Hub和Speedtouch路由器所使用的默认WEP/WPA密钥算法是可预测的，远程攻击者可以基于一些公开信息（如MAC地址或SSID）预测出密钥，这样就可以完全入侵路由器。 对于Speedtouch路由器路由器： S/N：CP0615JT109 53 删除CC和PP值：CP0615109 将XXX值转换为16进制：CP0615313039 通过SHA-1处理：742da831d2b657fa53d347301ec610e1ebf8a3d0...