Security Bulletin: Multiple vulnerabilities in OpenSource NTP affects IBM Netezza Host Management

Summary OpenSource NTP is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2017-6462 DESCRIPTION: NTP is vulnerable to a denial of service, caused by a buffer overflow in the legacy Datum Programmable Time Server...

Security Bulletin: IBM Netezza SQL Extensions is vulnerable to an OpenSource PCRE Vulnerability (CVE-2015-8380, CVE-2015-8382, CVE-2015-8391)

Summary The PCRE pcreexec buffer overflow vulnerabilities affect IBM Netezza SQL Extensions Toolkit. Vulnerability Details CVEID: CVE-2015-8380 DESCRIPTION: PCRE is vulnerable to a heap-based buffer overflow, caused by the improper handling of a pattern with a \01 string by the pcreexec function...

Security Bulletin: Vulnerability in Samba affects IBM Netezza Host Management

Summary OpenSource Samba is used by IBM Netezza Host Mangement. IBM Netezza Host Management has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2017-2619 DESCRIPTION: Samba could allow a remote authenticated attacker to launch a symlink attack, caused by a race condition A local...

CentOS 7 : kde-settings / kde-workspace / kdelibs / kmag / virtuoso-opensource (CESA-2019:2141)

An update for kde-workspace, kde-settings, kdelibs, kmag, and virtuoso-opensource is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

CVE-2019-15560

The Reviews Module before 2019-06-14 for OpenSource Table allows SQL injection in database/index.js...

CVE-2019-15560

The Reviews Module before 2019-06-14 for OpenSource Table allows SQL injection in database/index.js...

Sql injection

The Reviews Module before 2019-06-14 for OpenSource Table allows SQL injection in database/index.js...

CVE-2019-15560

CVE-2019-15560 affects OpenSource Table’s Reviews Module, prior to 2019-06-14. The root cause is an SQL injection in database/index.js, enabling potentially unauthenticated network-based exploitation with high to critical impact (CVSS v2: 7.5; CVSS v3: 9.8). References indicate a patch discussion...

CVE-2019-15560

The Reviews Module before 2019-06-14 for OpenSource Table allows SQL injection in database/index.js...

kde-workspace security and bug fix update

kdelibs 6:4.14.8-10 - Do not fork konsole process when opening terminal from apps using dolphin-part Resolves: bz1710362 6:4.14.8-9 - Do not fork konsole process when opening terminal from apps using dolphin-part Resolves: bz1710362 6:4.14.8-8 - Disable JAR repack script to avoid multilib...

RHEL 7 : kde-workspace (RHSA-2019:2141)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:2141 advisory. The K Desktop Environment KDE is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Deskt...

Mail.ru: Открытые сорцы

gitlab repository with opensource projects was available from external network on geekbrains.ru subdomain. While no sensitive information was leaked, decision was made to limit the access to eliminate possible risks in future...

CVE-2019-7437

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting XSS via the Search field...

CVE-2019-7437

CVE-2019-7437 affects PHP Scripts Mall Opensource Classified Ads Script 3.2.2 and is a reflected Cross-Site Scripting (XSS) vulnerability triggered via the Search field. The connected sources consistently describe the issue as a reflected XSS flaw in the search input, with no additional details o...

Debian DSA-4374-1 : qtbase-opensource-src - security update

Several issues were discovered in qtbase-opensource-src, a cross-platform C++ application framework, which could lead to denial-of-service via application crash. Additionally, this update fixes a problem affecting vlc, where it would start without a GUI. C Tenable Network Security, Inc. The...

[SECURITY] [DSA 4374-1] qtbase-opensource-src security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4374-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 28, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4374-1] qtbase-opensource-src security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4374-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 28, 2019 https://www.debian.org/security/faq -...

DSA-4374-1 qtbase-opensource-src - security update

Bulletin has no description...

Sn0Int - Semi-automatic OSINT Framework And Package Manager

sn0int is a semi-automatic OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. sn0int is enumerating attack surface by semi-automatically processing public information and mapping the result...

Debian: Security Advisory (DSA-4374-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...