13 matches found
Ubuntu: Security Advisory (USN-2449-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2014-356-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google engineers NeelMehta is how to find heart blood vulnerability-vulnerability warning-the black bar safety net
Heartbleed computer security vulnerabilityis by Google engineers NeelMehta found, has always been unwilling to accept media to interview him today for the first time to the media to say how he found this serious vulnerability; and why would go the first time to find the vulnerabilities, and he...
RHEL 6 : openssl (RHSA-2014:0376)
Updated openssl packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Vulnerability in OpenSSL - TLS heartbeat read overrun
A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64kB of memory to a connected client or server a.k.a. Heartbleed. This issue did not affect versions of OpenSSL prior to 1.0.1. Found by Neel Mehta...
Internet Bug Bounty: TLS heartbeat read overrun
A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server. Only 1.0.1 and 1.0.2-beta releases of OpenSSL are affected including 1.0.1f and 1.0.2-beta1. Thanks for Neel Mehta of Google Security for discovering th...
USN-1117-1: PolicyKit vulnerability
Neel Mehta discovered that PolicyKit did not correctly verify the user making authorization requests. A local attacker could exploit this to trick pkexec into running applications with root privileges...
Ubuntu Update for openssl vulnerability USN-1064-1
Ubuntu Update for Linux kernel vulnerabilities USN-1064-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10641.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for openssl vulnerability USN-1064-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...
[SECURITY] [DSA 2162-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2162-1 [email protected] http://www.debian.org/security/ Nico Golde February 14, 2011 http://www.debian.org/security/faq -...
Vulnerability in OpenSSL CVE-2011-0014
A buffer over-read flaw was discovered in the way OpenSSL parsed the Certificate Status Request TLS extensions in ClientHello TLS handshake messages. A remote attacker could possibly use this flaw to crash an SSL server using the affected OpenSSL functionality. Found by Neel Mehta...
Vulnerability in OpenSSL CVE-2009-3245
It was discovered that OpenSSL did not always check the return value of the bnwexpand function. An attacker able to trigger a memory allocation failure in that function could cause an application using the OpenSSL library to crash or, possibly, execute arbitrary code. Found by Martin Olsson, Neel...
Ubuntu: Security Advisory (USN-543-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[Full-disclosure] ClamAV Multiple Rem0te Buffer Overflows
Date July 25, 2005 Vulnerability ClamAV is the most widely used GPL antivirus library today. It provides file format support for virus analysis. During analysis ClamAV Antivirus Library is vulnerable to buffer overflows allowing attackers complete control of the system. These vulnerabilities can ...