Lucene search
+L

92 matches found

Tenable Nessus
Tenable Nessus
added 2014/12/19 12:0 a.m.42 views

CentOS 6 / 7 : jasper (CESA-2014:2021)

Updated jasper packages that fix three security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS7.5AI score0.18501EPSS
Exploits0References5
securityvulns
securityvulns
added 2014/12/08 12:0 a.m.61 views

[oCERT-2014-009] JasPer input sanitization errors

2014-009 JasPer input sanitization errors Description: The JasPer project is an open source implementation for the JPEG-2000 codec. The library is affected by two heap-based buffer overflows which can lead to arbitrary code execution. The vulnerability is present in functions jpcdeccpsetfromcox a...

7.5CVSS1.1AI score0.18404EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.27 views

Oracle Linux 6 / 7 : libvncserver (ELSA-2014-1826)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1826 advisory. - Fix CVE-2014-6051 integer overflow in screen size handling bug 1157668 - Fix CVE-2014-6052 NULL pointer dereference in framebuffer setup bug...

7.5CVSS8.7AI score0.08272EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2014/11/11 9:16 p.m.41 views

Moderate: Red Hat Security Advisory: kdenetwork security update

Updated kdenetwork packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...

6.5CVSS7.7AI score0.0783EPSS
Exploits0References5
Cent OS
Cent OS
added 2014/11/11 6:36 p.m.82 views

libvncserver security update

CentOS Errata and Security Advisory CESA-2014:1826 Updated libvncserver packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS ba...

7.5CVSS7.9AI score0.08272EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2014/11/11 6:25 p.m.40 views

Moderate: Red Hat Security Advisory: libvncserver security update

Updated libvncserver packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

7.5CVSS7.9AI score0.08272EPSS
Exploits1References6
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.47 views

[oCERT-2014-005] LPAR2RRD input sanitization errors

2014-005 LPAR2RRD input sanitization errors Description: LPAR2RRD is a performance monitoring and capacity planning software for IBM Power Systems. LPAR2RRD generates historical, future trends and nearly "real-time" CPU utilization graphs of LPAR's and shared CPU usage. Insufficient input...

0.6AI score0.06188EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/08/09 12:0 a.m.31 views

e2fsprogs -- buffer overflow if s_first_meta_bg too big

Theodore Ts'o reports: If sfirstmetabg is greater than the of number block group descriptor blocks, then reading or writing the block group descriptors will end up overruning the memory buffer allocated for the descriptors. The finding is credited to a vulnerability report from Jose Duart of Goog...

4.6CVSS7.4AI score0.00897EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/04/03 8:18 p.m.48 views

Important: Red Hat Security Advisory: ruby193-libyaml security update

Updated ruby193-libyaml packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.8CVSS7.3AI score0.09312EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2014/04/02 7:50 p.m.42 views

Important: Red Hat Security Advisory: libyaml security update

Updated libyaml packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 3. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severi...

6.8CVSS7.3AI score0.09312EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2014/04/02 7:50 p.m.50 views

Important: Red Hat Security Advisory: libyaml security update

Updated libyaml packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 4. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severi...

6.8CVSS7.3AI score0.09312EPSS
Exploits2References3
FreeBSD
FreeBSD
added 2014/03/11 12:0 a.m.42 views

LibYAML input sanitization errors

oCERT reports: The LibYAML project is an open source YAML 1.1 parser and emitter written in C. The library is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is caused by lack of proper expansion for the string passed to the...

6.8CVSS8AI score0.09264EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.46 views

Oracle Linux 4 : php (ELSA-2012-0071)

From Red Hat Security Advisory 2012:0071 : Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, whi...

6.4CVSS8.1AI score0.83911EPSS
Exploits21References6
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.36 views

Oracle Linux 5 : ruby (ELSA-2012-0070)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0070 advisory. - Properly initialize the random number generator when forking new process ruby-1.8.7-CVE-2011-3009.patch - Related: rhbz768829 Tenable has extracted t...

7.8CVSS7.8AI score0.04246EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 6 : ruby (ELSA-2012-0069)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-0069 advisory. - Address CVE-2011-4815 'DoS excessive CPU use via hash meet-in-the-middle attacks oCERT-2011-003' ruby-1.8.7-p352-CVE-2011-4815.patch Tenable has extracted the...

7.8CVSS7.7AI score0.04246EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.44 views

RHEL 5 / 6 : jbossweb (RHSA-2012:0074)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0074 advisory. - tomcat: Multiple weaknesses in HTTP DIGEST authentication CVE-2011-1184, CVE-2011-5062, CVE-2011-5063, CVE-2011-5064 - tomcat: securit...

5CVSS6AI score0.80318EPSS
Exploits8References15
RedHat Linux
RedHat Linux
added 2012/12/21 3:13 a.m.56 views

Moderate: Red Hat Security Advisory: Fuse Management Console 7.1.0 update

Fuse Management Console 7.1.0, which fixes one security issue, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score...

5.3CVSS6.3AI score0.05044EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2012/12/21 3:12 a.m.44 views

Moderate: Red Hat Security Advisory: Fuse MQ Enterprise 7.1.0 update

Fuse MQ Enterprise 7.1.0, which fixes one security issue, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whi...

5.3CVSS6.3AI score0.05044EPSS
Exploits1References4
securityvulns
securityvulns
added 2012/12/03 12:0 a.m.97 views

[oCERT-2012-001] multiple implementations denial-of-service via MurmurHash algorithm collision

2012-001 multiple implementations denial-of-service via MurmurHash algorithm collision Description: A variety of programming languages suffer from a denial-of-service DoS condition against storage functions of key/value pairs in hash data structures, the condition can be leveraged by exploiting...

5CVSS5AI score0.02249EPSS
Exploits0
RubySec
RubySec
added 2012/11/23 12:0 a.m.39 views

CVE-2012-5370 jruby: Murmur hash function collisions (oCERT-2012-001)

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS5.3AI score0.02249EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder