CVE-2015-0796

The vulnerability CVE-2015-0796 affects the Open Build Service: versions 2.6 before 2.6.3, 2.5 before 2.5.7, and 2.4 before 2.4.8. The patch application in the source service could generate non-standard files (e.g., symlinks or device nodes), which may allow buildservice users to break confinemen...

CVE-2015-0796

In open buildservice 2.6 before 2.6.3, 2.5 before 2.5.7 and 2.4 before 2.4.8 the source service patch application could generate non-standard files like symlinks or device nodes, which could allow buildservice users to break of confinement or cause denial of service attacks on the source service...

MySQL Unspecified vulnerability-06 (Jul 2013) - Linux

MySQL is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mysql:mysql"; ifdescription...

Oracle Java SE Security Updates (oct2017-3236626) 04 - Linux

Oracle Java SE is prone to multiple vulnerabilities. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

java-1.7.0-openjdk security update

1:1.7.0.131-2.6.9.0.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.131-2.6.9.0 - Add blacklisted.certs to installation file list. - Resolves: rhbz1410612 1:1.7.0.131-2.6.9.0 - Bump to 2.6.9 and u131b00. - Remove patch application debris in fsg.sh. - Re-generate...

Oracle Database Server Unspecified Vulnerability (Oct 2016)

Oracle Database Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

a-blog cms vulnerable to cross-site scripting

Overview a-blog cms provided by appleple Inc. is a content management system CMS. a-blog cms contains a cross-site scripting vulnerability in the standard template of the comment functionality. Yuya Yoshida of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC...

rpm security update

4.4.2.3-36.0.1 - Add missing files in /usr/share/doc/ 4.8.0-36 - Fix warning when applying the patch for 1163057 4.8.0-35 - Fix race condidition where unchecked data is exposed in the file system CVE-2013-64351163057...

Microsoft Office Remote Code Execution Vulnerabilities-2885080 (Mac OS X)

This host is missing an important security update according to Microsoft Bulletin MS13-085. OpenVAS Vulnerability Test $Id: secpodms13-085macosx.nasl 4570 2016-11-18 10:17:05Z antu123 $ Microsoft Office Remote Code Execution Vulnerabilities-2885080 Mac OS X Authors: Antu Sanadi Copyright: Copyrig...

polkit security update

0.96-5 - Actually apply the patch, and modify it to apply to 0.96 - Resolves: 1006262 0.96-4.el64 - Include fix for CVE-2013-4288 - Resolves: 1006262 0.96-3.el64 - Include fixes for CVE-2011-1485 - Resolves: 692942...

IBM Rational ClearQuest Multiple Information Disclosure Vulnerabilities

This host is installed with IBM Rational ClearQuest and is prone to multiple information disclosure vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmrationalclearquestmultinfodiscvuln.nasl 6093 2017-05-10 09:03:18Z teissa $ IBM Rational ClearQuest Multiple Information Disclosure...

Oracle Java SE Java Runtime Environment Unspecified Vulnerability - (Windows)

This host is installed with Oracle Java SE and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gboraclejavaseunspecifiedvulnwin.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE Java Runtime Environment Unspecified Vulnerability - Windows Authors: Madhuri D Copyright:...

Microsoft Unauthorized Digital Certificates Spoofing Vulnerability (2728973)

This host is installed with Microsoft Windows operating system and is prone to Spoofing vulnerability. OpenVAS Vulnerability Test $Id: gbmsunauthdigitalcertspoofingvuln.nasl 8323 2018-01-08 14:50:05Z gveerendra $ Microsoft Unauthorized Digital Certificates Spoofing Vulnerability 2728973 Authors:...

Microsoft Windows Unauthorized Digital Certificates Spoofing Vulnerability (2718704)

The host is installed with Microsoft Windows operating system and is prone to digital certificates spoofing vulnerability. OpenVAS Vulnerability Test $Id: gbunauthdigitalcertspoofingvuln.nasl 5341 2017-02-18 16:59:12Z cfi $ Microsoft Windows Unauthorized Digital Certificates Spoofing Vulnerabilit...

php-pear security and bug fix update

1.9.4-4 - fix patch application for 747361 1.9.4-3 - ignore REST cache creation failures as non-root user 747361 1.9.4-2 - fix XML-Util provides 1.9.4-1 - update to 1.9.4 651897 - update XMLRPC to 1.5.4, StructuresGraph to 1.0.4, ArchiveTar to 1.3.7 1.9.1-1 - update to 1.9.1 651897 - fix...

CA Gateway Security Remote Code Execution Vulnerability

This host is installed with CA Gateway Security and is prone to remote code execution Vulnerability. OpenVAS Vulnerability Test $Id: gbcagatewaysecurityremotecodeexecutionvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ CA Gateway Security Remote Code Execution Vulnerability Authors: Rachana Shetty...

systemtap security update

1.4.6.0.1.el61.2 - remove doc/SystemTapBeginnersGuide/en-US in tarball - comment bz683569.patch in specfile 1.4-6.2 - bz716476 patch - bz716489 patch...

JVN#11424086: Password Vault Web Access vulnerable to cross-site scripting

Password Vault Web Access PVWA is a module in the Privileged Identity Management Suite that allows access via a web portal. PVWA contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the web browser of an user who is logged on. Solution Apply a patch Apply t...

Microsoft Windows Media Player DVR-MS File Code Execution

Added: 03/14/2011 CVE: CVE-2011-0042 BID: 46680 OSVDB: 71016 Background Windows Media Player is an audio and video media player for Windows platforms. Problem A file parsing error in Windows Media Player allows command execution when a user opens a specially crafted Digital Video Recording DVR-MS...

Oracle VM VirtualBox Extensions Local Privilege Escalation Vulnerability

This host is installed with Oracle VirtualBox and is local privilege escalation Vulnerability vulnerability. OpenVAS Vulnerability Test $Id: gboraclevirtualboxlocprevesclvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Oracle VM VirtualBox Extensions Local Privilege Escalation Vulnerability Author...