Oracle Solaris Critical Patch Update : oct2015_SRU11_2_15_4_0

This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: NSCD. The supported version that is affected is 11.2. Easily exploitable vulnerability requiring logon to Operating...

Oracle Solaris Critical Patch Update : oct2015_SRU11_2_12_5_0

This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. Supported versions that are affected are 10 and 11.2. Easily exploitable vulnerability requiring logon to...

October 2015 Oracle Critical Patch Update

Oracle on Tuesday patched 154 vulnerabilities in 54 different products as part of its regularly scheduled Critical Patch Update. More than half of the patches, 84 to be exact, address vulnerabilities that Oracle claims may be remotely exploitable without authentication. Java SE is responsible for...

Oracle E-Business Multiple Vulnerabilities (October 2015 CPU)

The version of Oracle E-Business installed on the remote host is missing the October 2015 Oracle Critical Patch Update CPU. It is, therefore, affected by vulnerabilities in the following components : - An unspecified flaw exists in the Online Patching subcomponent in the Applications DBA. An...

Oracle WebCenter Content Server Multiple Vulnerabilities (October 2015 CPU)

The version of Oracle WebCenter Content installed on the remote host is affected by multiple vulnerabilities due to multiple unspecified flaws in the Content Server component. A remote attacker can exploit these flaws to impact integrity. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Oracle Releases Security Bulletin

Oracle has released its Critical Patch Update for October 2015 to address 154 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Oracle...

Oracle Critical Patch Update Advisory - October 2015

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

java -- multiple vulnerabilities

Oracle reports: This Critical Patch Update contains 25 new security fixes for Oracle Java SE. 24 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password...

Recently Patched Adobe Flash Versions Hit by Another Zero-day Exploit

Does Adobe Flash, the standard that animated the early Web, needs to Die? Unfortunately, Yes. Despite Adobe’s best efforts, Flash is not safe anymore for Internet security, as a recent zero-day Flash exploit has been identified. Just Yesterday Adobe released its monthly patch update that addresse...

October 2015 Adobe Acrobat Adobe Acrobat Patches

Adobe is expected next week to patch critical vulnerabilities in Acrobat and Reader. The company today gave advanced notification of the impending updates to both products. The patches will be released on Tuesday, which figures to be a busy day for system administrators given that Microsoft will...

Cybozu Garoon vulnerable to LDAP injection

Overview Cybozu Garoon is a groupware. Cybozu Garoon contains an issue in processing authentication requests, which may result in an LDAP injection vulnerability. Impact A malicious user authorized to administer uesrs in certain groups may obtain information from the authentication server or may...

Microsoft 'Accidentally' pushed 'Test patch' Update to All Windows 7 Users

A highly mysterious update that was pushed out to Windows machines globally was the result of a test that was not correctly implemented. Yes, Microsoft accidentally released a test patch KB3877432 to consumer machines running Windows 7, making users believe that the Windows Update service got...

Moderate: Red Hat Security Advisory: mariadb security update

Updated mariadb packages that fix several security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...

Important: Red Hat Security Advisory: rh-mysql56-mysql security update

Updated rh-mysql56-mysql packages that fix several security issues are now available for Red Hat Software Collections 2. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

Updated mariadb package fixes security vulnerabilities

The mariadb package has been updated to versions 5.5.44 and 10.0.20 in Mageia 4 and Mageia 5, respectively. Both fix an issue where the client is vulnerable to a man-in-the-middle attack when using the --ssl option, where the SSL/TLS protection could be disabled CVE-2015-3152. The Mageia 4 update...

DSA-3308-1 mysql-5.5 - security update

Bulletin has no description...

Critical: Red Hat Security Advisory: java-1.8.0-oracle security update

Updated java-1.8.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

Critical: Red Hat Security Advisory: java-1.7.0-oracle security update

Updated java-1.7.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give...

Oracle Database Multiple Vulnerabilities (July 2015 CPU)

The remote Oracle database server is missing the July 2015 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities in the following components : - Application Express CVE-2015-2655, CVE-2015-2585, CVE-2015-2586 - Core RDBMS CVE-2015-0468 - Java VM CVE-2015-2629 - Oracle...

Oracle Solaris Critical Patch Update : ldoms (SRU11_2_11_5_0)

The remote Solaris system is missing necessary patches to address an unspecified flaw that exists in the LDOM Manager subcomponent of Oracle VM Server for SPARC. A remote, unauthenticated attacker can exploit this, via multiple protocols, to cause a denial of service condition. %NASLMINLEVEL 7030...