CVE-2019-17335

The CVE-2019-17335 issue affects TIBCO Spotfire Analytics Platform for AWS Marketplace (v10.6.0) and TIBCO Spotfire Server (7.11.7 and older; 7.12.0–7.14.0; 10.0.0–10.6.0). The data access layer could allow an attacker with library save privileges to access data cached from a data source or part ...

CVE-2019-17335 TIBCO Spotfire Server Exposes User-Specific Cached Data To Others Users

The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains multiple vulnerabilities that theoretically allow an attacker access to data cached from a data source, or a portion of a data source, that the attacke...

DEBIAN-CVE-2014-8178

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands...

The vulnerability of the reassembly function for SSL package modules in Cisco Firepower System Software allows a intruder to trigger a service failure.

The vulnerability of the package rebuilding function of the Secure Sockets Layer SSL module in Cisco Firepower System Software allows for uncontrolled resource consumption. Exploiting this vulnerability can enable a malicious actor to cause service interruptions remotely...

qpid-proton: TLS Man in the Middle Vulnerability

A cryptographic weakness was discovered in qpid-proton's use of TLS. If the qpid-proton client was used without client certificates, it would accept an anonymous cipher offered by the server. A man-in-the-middle attacker could use this to silently intercept traffic that should have been encrypted...

[SECURITY] Fedora 30 Update: libuv-1.33.1-1.fc30

libuv is a new platform layer for Node. Its purpose is to abstract IOCP on Windows and libev on Unix systems. We intend to eventually contain all plat form differences in this library...

Lenovo Power Management Driver CVE-2019-6192 Local Buffer Overflow Vulnerability

Description Lenovo Power Management Driver is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. Attackers can exploit this issue to cause denial of service conditions. Due to the natur...

[SECURITY] Fedora 31 Update: libuv-1.33.1-1.fc31

libuv is a new platform layer for Node. Its purpose is to abstract IOCP on Windows and libev on Unix systems. We intend to eventually contain all plat form differences in this library...

Network security simplified with Amazon VPC Ingress Routing and Trend Micro

Today, Amazon Web Services AWS announced the availability of a powerful new service, Amazon Virtual Private Cloud Amazon VPC Ingress Routing. As a Launch Partner for Amazon VPC Ingress Routing, we at Trend Micro are proud to continue to innovate alongside AWS to provide solutions to...

Important: Red Hat Security Advisory: SDL security update

An update for SDL is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

DEBIAN-CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

Denial Of Service(DoS)

Simple DirectMedia Layer SDL is vulnerable to denial of service DoS. The vulnerability is due to the possibility of heap buffer overflow in BlitNtoN in video/SDLblitN.c when called from SDLSoftBlit in video/SDLblit.c...

FIDL: FLARE’s IDA Decompiler Library

IDA Pro and the Hex Rays decompiler are a core part of any toolkit for reverse engineering and vulnerability research. In a previous blog post we discussed how the Hex-Rays API can be used to solve small, well-defined problems commonly seen as part of malware analysis. Having access to a...

UBUNTU-CVE-2019-13680

Inappropriate implementation in TLS in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof client IP address to websites via crafted TLS connections...

Important: Red Hat Security Advisory: SDL security update

An update for SDL is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

UBUNTU-CVE-2019-10214

The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launc...

The vulnerability of the libpq library in the PostgreSQL database management system allows a hacker to execute a type of “man-in-the-middle” attack.

The vulnerability of the libpq library in the PostgreSQL database management system is related to the lack of mandatory use of TLS connections. Exploiting this vulnerability allows a remote attacker to execute a “man-in-the-middle” type attack...

[SECURITY] Fedora 29 Update: libmp4v2-2.1.0-0.19.trunkREV507.fc29

The libmp4v2 library provides an abstraction layer for working with files using the mp4 container format. This library is developed by mpeg4ip project and is an exact copy of the library distributed in the mpeg4ip package...

[SECURITY] Fedora 31 Update: libmp4v2-2.1.0-0.19.trunkREV507.fc31

The libmp4v2 library provides an abstraction layer for working with files using the mp4 container format. This library is developed by mpeg4ip project and is an exact copy of the library distributed in the mpeg4ip package...

UBUNTU-CVE-2013-4584

Perdition before 2.2 may have weak security when handling outbound connections, caused by an error in the STARTTLS IMAP and POP server. ssloutgoingciphers not being applied to STARTTLS connections...