[SECURITY] Fedora 21 Update: patch-2.7.4-1.fc21

The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file patching th...

[SECURITY] Fedora 21 Update: patch-2.7.3-1.fc21

The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file patching th...

CVE-2014-3227

dpkg 1.15.9, 1.16.x before 1.16.14, and 1.17.x before 1.17.9 expect the patch program to be compliant with a need for the "C-style encoded filenames" feature, but is supported in environments with noncompliant patch programs, which triggers an interaction error that allows remote attackers to...

DEBIAN-CVE-2014-3227

dpkg 1.15.9, 1.16.x before 1.16.14, and 1.17.x before 1.17.9 expect the patch program to be compliant with a need for the "C-style encoded filenames" feature, but is supported in environments with noncompliant patch programs, which triggers an interaction error that allows remote attackers to...

Directory traversal

dpkg 1.15.9, 1.16.x before 1.16.14, and 1.17.x before 1.17.9 expect the patch program to be compliant with a need for the "C-style encoded filenames" feature, but is supported in environments with noncompliant patch programs, which triggers an interaction error that allows remote attackers to...

Oracle Addresses 17 Bugs with Java Update

Oracle has pushed an update to its popular Java SE platform by patching 17 vulnerabilities, all which could allow an attacker to remotely exploit a machine without authentication. In the patch update, five apply to client and server versions of Java SE. Eleven of the patches apply to client...

Fedora Update for patch FEDORA-2011-1272

Check for the Version of patch OpenVAS Vulnerability Test Fedora Update for patch FEDORA-2011-1272 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

[SECURITY] Fedora 13 Update: patch-2.6.1-8.fc13

The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file patching th...

Brad Arkin on Adobe's Quarterly Patch Updates, the JBIG2 Flaw and Secure Software Development

Dennis Fisher talks with Brad Arkin, director of product security and privacy at Adobe, about the company’s new quarterly patch release program, its Secure Product Lifecycle and how the JBIG2 flaw spurred major changes at Adobe. Download Subscribe to the Digital Underground podcast on Podcast aud...

Novell Groupwise WebAccess GWINTER.EXE远程缓冲区溢出漏洞

Novell GroupWise是Novell基于WEB的应用服务程序。 Novell Groupwise WebAccess处理HTTP请求存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 问题存在于监听TCP 7205和7211的GWINTER.exe进程中，在处理HTTP BASIC验证请求时，拷贝用户提供的BASE64数据到固定大小的堆栈缓冲区，发送至少336字节会由于调用有漏洞的base64decode调用而造成基于堆栈的缓冲区溢出，可以应用程序权限执行任意指令。 Novell Groupwise 7.0 Novell Groupwise 7.0.0 SP1...

Sun Java System Directory Server未初始化指针远程内存破坏漏洞

Sun Java System Directory Server是一款由Sun公司开发的LDAP服务器。 Sun Java System Directory Server存在设计错误，远程攻击者可以利用漏洞对服务程序进行拒绝服务攻击。 问题存在于针对部分失败查询类型的清理代码中，可导致服务器调用free，并从未初始化内存中获取地址，非法内存的引用可导致拒绝服务攻击。 Sun Java System Directory Server 5.2 可参考如下补丁程序： http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-...