SUSE: Security Advisory (SUSE-SU-2023:0005-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Multiple Security Vulnerabilities Affect IBM Cloud Transformation Advisor

Summary IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities. Vulnerability Details CVEID:CVE-2021-35517 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service, caused by an out of memory error when allocating large amounts of memory. By persuading a...

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2022

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.2-IF012 and 21.0.3-IF010. Vulnerability Details CVEID:CVE-2021-43138 DESCRIPTION: Async could allow a remote attacker to...

CVE-2020-27739

A Weak Session Management vulnerability in Citadel WebCit through 926 allows unauthenticated remote attackers to hijack recently logged-in users' sessions. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread...

CVE-2020-27740

Citadel WebCit through 926 allows unauthenticated remote attackers to enumerate valid users within the platform. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread...

CVE-2020-27742

An Insecure Direct Object Reference vulnerability in Citadel WebCit through 926 allows authenticated remote attackers to read someone else's emails via the msgconfirmmove template. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" threa...

Photon OS 3.0: Openssh PHSA-2019-3.0-0045

An update of the openssh package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0045. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Mozilla Firefox Multiple Security Vulnerabilities

Description Mozilla Firefox is prone to the following security vulnerabilities: 1. Multiple security-bypass vulnerabilities 2. A security vulnerability Attackers can exploit these issues to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks...

Siemens SINEMA Remote Connect Server ICSA-19-260-02 Multiple Security Vulnerabilities

Description Siemens SINEMA Remote Connect Server is prone to following security vulnerabilities: 1. Multiple security vulnerabilities 2. An information-disclosure vulnerability 3. A cross-site-request forgery vulnerability An attacker may leverage these issues to obtain potentially sensitive...

Security vulnerabilities fixed in Firefox ESR 45.9 — Mozilla

A use-after-free vulnerability in SMIL animation functions occurs when pointers to animation elements in an array are dropped from the animation controller while still in use. This results in a potentially exploitable crash. A use-after-free vulnerability occurs during transaction processing in t...

Security update for Mozilla Thunderbird (important)

Mozilla Thunderbird was updated to 38.5.0 to fix multiple security issues. The following vulnerabilities were fixed: boo959277 CVE-2015-7201: Miscellaneous memory safety hazards CVE-2015-7210: Use-after-free in WebRTC when datachannel is used after being destroyed CVE-2015-7212: Integer overflow...

SUSE SLED11 Security Update : flash-player (SUSE-SU-2015:1960-1)

The flash-player package was updated to fix the following security issues : - Security update to 11.2.202.548 bsc954512 : - APSB15-28, CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-766...

openSUSE Security Update : Linux Kernel (openSUSE-2015-302)

The Linux kernel was updated to fix bugs and security issues : Following security issues were fixed: CVE-2015-2830: A flaw was found in the way the Linux kernels 32-bit emulation implementation handled forking or closing of a task with an int80 entry. A local user could have potentially used this...

Websense Triton multiple security vulnerabilities

Crossite scripting, authentication bypass, commands injection...

Schrack MICROCONTROL multiple security vulnerabilities

Multiple bugs in web interface...

Halon Security Router (SR) 3.2-winter-r1 - Multiple Security Vulnerabilities

No description provided by source. ADVISORY INFORMATION Advisory Name: Multiple Security Vulnerabilities in Halon Security Router Date published: 2014-04-07 Vendors contacted: Halon Security http://www.halon.se Researcher: Juan Manuel Garcia http://www.linkedin.com/in/juanmagarcia VULNERABILITIES...

Updated kernel-tmb packages fix multiple bugs and vulnerabilities

Updated kernel-tmb provides upstream 3.12.20 kernel and fixes the following security issues: Buffer overflow in the completeemulatedmmio function in arch/x86/kvm/ x86.c in the Linux kernel before 3.13.6 allows guest OS users to execute arbitrary code on the host OS by leveraging a loop that...

Microsoft SharePoint Server multiple security vulnerabilities

Code execution, crossite scripting...

Barracuda Firewall multiple security vulnerabilities

Crossite scripting, protection bypass...

Cisco Linksys WRT54GL multiple security vulnerabilities

Code execution, crossite scripting, crossite request forgery...