Lucene search
K

94 matches found

Fedora
Fedora
added 2017/06/17 7:46 p.m.44 views

[SECURITY] Fedora 26 Update: systemd-233-4.fc26

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

7.5CVSS1.3AI score0.15422EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/10/26 12:0 a.m.41 views

IBM WebSphere Application Server 7.0 < 7.0.0.39 Multiple Vulnerabilities (FREAK)

Binary data 9700.prm...

10CVSS7.7AI score0.74006EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2016/06/16 12:0 a.m.261 views

IBM Storwize SSL/TLS RC4 Stream Cipher Key Invariance (Bar Mitzvah)

According to its self-reported version number, the IBM Storwize server running on the remote host is affected by a security feature bypass vulnerability, known as Bar Mitzvah, due to improper combination of state data with key data by the RC4 cipher algorithm during the initialization phase. A...

5CVSS5.8AI score0.74006EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/12/07 12:0 a.m.70 views

Atlassian JIRA < 6.4.10 / 7.0.0-OD-02 MitM Plaintext Disclosure (Bar Mitzvah)

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to 6.4.10 or 7.0.0-OD-02. It is, therefore, potentially affected by a security feature bypass vulnerability, known as Bar Mitzvah, due to improper combination of state data with...

5CVSS5.8AI score0.74006EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/11/02 12:0 a.m.32 views

SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2015:1844-1)

glibc was updated to fix bugs and security issues. Security issues fixed : - A buffer overflow in nssdns was fixed that could lead to crashes. CVE-2015-1781, bsc927080, BZ 18287 - A denial of service attack out of memory in the NSS files backend was fixed CVE-2014-8121, bsc918187, GLIBC BZ 18007...

6.8CVSS7.7AI score0.05609EPSS
Exploits1References18
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.21 views

Oracle: Security Advisory (ELSA-2013-0132)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS6.5AI score0.00395EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/07/15 12:1 p.m.6 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

5CVSS6.7AI score0.74006EPSS
Exploits0References5
OSV
OSV
added 2015/06/11 7:3 p.m.5 views

SUSE-RU-2015:1239-1 Recommended update for freetype2

This update of freetype2 fixes a regression introduced by the security fix for CVE-2014-9671. This is not itself a security issue, it just improves on a previous one. This update is needed for LSB 5 fontconfig usage...

4.3CVSS6.2AI score0.03469EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2015/06/11 1:21 p.m.6 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

5CVSS6.7AI score0.74006EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2015/04/01 12:0 a.m.66 views

CVE-2015-2808

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

5CVSS5.4AI score0.74006EPSS
Exploits0
OSV
OSV
added 2015/03/13 12:25 p.m.4 views

SUSE-SU-2015:0805-1 Security update for cups-filters

cups-filters was updated to fix one security issue. This security issue was fixed: - CVE-2015-2265: Remote command execution in removebadchars bnc921753. This non-security issue was fixed: - LSB compliance of foomatic-rip bnc915545...

7.5CVSS6.6AI score0.02958EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.26 views

openSUSE Security Update : systemd (openSUSE-2012-139)

Add fix-console-switch.patch: prevent console lockup rhb771563. - Add fix-quota.patch: correctly enable quota rhb773431. - Add passcredentials.patch: ensure compatibility with kernel 3.2 bnc743299. - Update modulesonboot.patch to not cause failed state for systemd-modules-load.service bnc741481...

6.3CVSS5.4AI score0.00355EPSS
Exploits0References17
Oracle linux
Oracle linux
added 2013/11/26 12:0 a.m.37 views

pacemaker security, bug fix, and enhancement update

1.1.10-14 - Log: crmd: Supply arguments in the correct order Resolves: rhbz996850 - Fix: Invalid formatting of log message causes crash Resolves: rhbz996850 1.1.10-13 - Fix: cman: Start clvmd and friends from the init script if enabled 1.1.10-12 - Fix: Consistently use 'Slave' as the role for...

4.3CVSS6.3AI score0.02996EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/09/24 12:0 a.m.33 views

Fedora Update for systemd FEDORA-2013-17203

Check for the Version of systemd OpenVAS Vulnerability Test Fedora Update for systemd FEDORA-2013-17203 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.6CVSS6.4AI score0.00303EPSS
Exploits0References2
Fedora
Fedora
added 2013/09/21 8:38 a.m.26 views

[SECURITY] Fedora 19 Update: systemd-204-15.fc19

systemd is a system and service manager for Linux, compatible with SysV and LSB init scripts. systemd provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux cgroups,...

6.9CVSS1.3AI score0.00303EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.50 views

Oracle Linux 5 : httpd (ELSA-2013-0130)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0130 advisory. - add security fix for CVE-2008-0456 - add security fix for CVE-2012-2687 850794 Tenable has extracted the preceding description block directly from th...

4.3CVSS7.8AI score0.6477EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2013/01/21 12:0 a.m.44 views

CentOS Update for httpd CESA-2013:0130 centos5

Check for the Version of httpd OpenVAS Vulnerability Test CentOS Update for httpd CESA-2013:0130 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.3CVSS7.7AI score0.6477EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2013/01/17 12:0 a.m.41 views

Scientific Linux Security Update : httpd on SL5.x i386/x86_64 (20130108)

Input sanitization flaws were found in the modnegotiation module. A remote attacker able to upload or create files with arbitrary names in a directory that has the MultiViews options enabled, could use these flaws to conduct cross-site scripting and HTTP response splitting attacks against users...

4.3CVSS7.4AI score0.6477EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2013/01/17 12:0 a.m.56 views

CentOS 5 : httpd (CESA-2013:0130)

Updated httpd packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give...

4.3CVSS7.6AI score0.6477EPSS
Exploits4References5
Cent OS
Cent OS
added 2013/01/09 8:52 p.m.110 views

httpd, mod_ssl security update

CentOS Errata and Security Advisory CESA-2013:0130 Updated httpd packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common...

4.3CVSS7AI score0.6477EPSS
Exploits4References7
Rows per page
Query Builder