OPENSUSE-SU-2021:1393-1 Security update for virtualbox

This update for virtualbox fixes the following issues: Version bump to 6.1.28 released October 19 2021 by Oracle This is a maintenance release. The following items were fixed and/or added: - VMM: Fixed guru meditation while booting nested-guests accessing debug registers under certain conditions ...

CLSA-2021-1633442879 Fix of CVE: CVE-2020-26116, CVE-2020-8492, CVE-2018-20852, CVE-2020-27619

Add Oracle Linux distribution in platform.py - CVE-2018-20852: Prefix dot in domain for proper subdomain validation - CVE-2020-8492: Python allows an HTTP server to conduct Regular Expression Denial of Service ReDoS attacks against a client - CVE-2020-26116: http.client allows CRLF injection if...

SUSE-RU-2021:3162-1 Recommended update for SUSE Manager 4.2.2 Release Notes

This update for SUSE Manager 4.2.2 Release Notes provides the following additions: Release notes for SUSE Manager: - Update to 4.2.2 SUSE Manager is now able to manage Rocky Linux 8 clients Tech Preview: Inter-Server Sync V2 Bugs mentioned bsc1171483, bsc1173143, bsc1181223, bsc1186281, bsc118633...

Hotfix XS82E033 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. Information About this Hotfix Component| Details ---|--- Prerequisite| None Post-update tasks| None Content live patchable| No Baselines for Live Patch| N/A Revision History| Published on Sep 09, 2021...

OPENSUSE-SU-2021:1114-1 Security update for virtualbox

This update for virtualbox fixes the following issues: Version bump to 6.1.26 released July 28 2021 by Oracle This is a maintenance release. The following items were fixed and/or added: - VMSVGA: fixed VM screen artifacts after restoring from saved state bug 20067 - Storage: Fixed audio endiannes...

OPENSUSE-SU-2021:1092-1 Security update for virtualbox

This update for virtualbox fixes the following issues: Version bump to 6.1.24 released July 20 2021 by Oracle This is a maintenance release. The following items were fixed and/or added: - Storage: Fixed starting a VM if a device is attached to a VirtIO SCSI port higher than 30 bug 20213 - Storage...

OPENSUSE-SU-2021:0165-1 Security update for virtualbox

This update for virtualbox fixes the following issues: Version update to 6.1.18 released January 19 2021 This is a maintenance release. The following items were fixed and/or added: - Nested VM: Fixed hangs when executing SMP nested-guests under certain conditions on Intel hosts bug 19315, 19561 -...

Fedora 33 : chromium (2020-4e8e48da22)

Update to 86.0.4240.183. Fixes the following security issues: CVE-2020-16004 CVE-2020-16005 CVE-2020-16006 CVE-2020-16008 CVE-2020-16009 Also disables the very verbose output going to stdout. ---- Update to Chromium 86. A few big things here : 1. Upstream has made hardware accelerated video suppo...

OPENSUSE-SU-2020:0925-1 Security update for Virtualbox

Virtualbox was updated to 6.0.22 released May 15 2020 by Oracle This is a maintenance release. The following items were fixed and/or added: Guest Additions: Build problems fix with Oracle Linux 8.2 Red Hat compatible kernel / Red Hat Enterprise Linux 8.2 / CentOS 8.2 bug 19391 Guest...

Agent Tesla Panel Remote Code Execution Exploit

This Metasploit module exploits a command injection vulnerability within the Agent Tesla control panel, in combination with an SQL injection vulnerability and a PHP object injection vulnerability, to gain remote code execution on affected hosts. Panel versions released prior to September 12, 2018...

python3 security update

3.6.8-13.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-13 - Security fix for CVE-2019-16056 Resolves: rhbz1750774 3.6.8-12 - Add support for OpenSSL FIPS mode - Fix faulthandler stack size Resolves: rhbz1732908 3.6.8-11 - Security fix for CVE-2018-20852 Resolves:...

AttackSurfaceMapper - A Tool That Aims To Automate The Reconnaissance Process

Attack Surface Mapper is a reconnaissance tool that uses a mixture of open source intellgence and active techniques to expand the attack surface of your target. You feed in a mixture of one or more domains, subdomains and IP addresses and it uses numerous techniques to find more targets. It...

openSUSE Security Update : gdb (openSUSE-2019-2493)

This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...

eMerge E3 Access Controller 4.6.07 - Remote Code Execution Exploit

Exploit Title: eMerge E3 Access Controller 4.6.07 - Remote Code Execution Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 4.6.07 Tested on: NA CVE : CVE-2019-7265 Advisory:...

VMware Carbon Black Cloud Adds Linux Support for Enterprise EDR

VMware Carbon Black is proud to unveil another major operating system expansion for our cloud-native endpoint protection platform EPP. CB ThreatHunter, our enterprise endpoint detection and response EDR solution on the VMware Carbon Black Cloud platform has expanded its support to include Red Hat...

EggShell - iOS/macOS/Linux Remote Administration Tool

EggShell is a post exploitation surveillance tool written in Python. It gives you a command line session with extra functionality between you and a target machine. EggShell gives you the power and convenience of uploading/downloading files, tab completion, taking pictures, location tracking, shel...

Automated Wireless Attack Tool: WiFite

Wifite is a Python script for auditing wireless networks which aims to be the “set it and forget it” wireless auditing tool. What’s new in Wifite 2? Less bugs Cleaner process management. Does not leave processes running in the background the old wifite was bad about this. No longer “one monolithi...

Qualys Cloud Suite 8.10.2 New Features

This new patch release of the Qualys Cloud Suite, version 8.10.2, includes updates to shared platform features, a new role for user management, and expanded Policy Compliance platform support. Feature Highlights Qualys Cloud Platform Limit number of external scanners – You can now limit the numbe...

Dr0p1t Framework 1.3 - A Framework That Creates An Advanced FUD Dropper With Some Tricks

Have you ever heard about trojan droppers ? In short dropper is type of trojans that downloads other malwares and Dr0p1t gives you the chance to create a stealthy dropper that bypass most AVs and have a lot of tricks! Features Generated executable properties: The executable size is smaller compar...

Introducing Linux Support for FakeNet-NG: FLARE’s Next Generation Dynamic Network Analysis Tool

Introduction In 2016, FLARE introduced FakeNet-NG, an open-source network analysis tool written in Python. FakeNet-NG allows security analysts to observe and interact with network applications using standard or custom protocols on a single Windows host, which is especially useful for malware...