Oracle Linux 4 : gstreamer-plugins (ELSA-2009-0270)

From Red Hat Security Advisory 2009:0270 : Updated gstreamer-plugins packages that fix one security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The gstreamer-plugins package contains...

Oracle Linux 3 / 4 : php (ELSA-2007-0155)

From Red Hat Security Advisory 2007:0155 : Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language...

Updated java-1.7.0-openjdk packages fix multiple security vulnerabilities

Multiple flaws were discovered in the ImagingLib and the image attribute, channel, layout and raster processing in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption CVE-2013-2470, CVE-2013-2471, CVE-2013-2472...

gnutls security update

2.8.5-10.2 - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch 966754...

RHEL 6 : qemu-kvm (RHSA-2011:1801)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1801 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space component for...

Slackware Advisory SSA:2007-110-01 Slackware 11.0 x11-6.9.0 patch fix

The remote host is missing an update as announced via advisory SSA:2007-110-01. OpenVAS Vulnerability Test $Id: esoftslkssa200711001.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

IBM Lotus Expeditor请求标头欺骗安全限制绕过漏洞

BUGTRAQ ID: 54163 CVE ID: CVE-2012-0191 IBM Lotus Expeditor之前名为IBM WebSphere Everyplace Deployment，是用于创建、部署和维护各种应用的管理客户端。 IBM Lotus Expeditor 6.2 FP5+Security Pack之前的6.1.x和6.2.x版本中的Web容器没有正确执行请求的访问控制，在实现上存在安全限制绕过漏洞，可允许远程攻击者通过特制的请求标头，绕过某些安全限制。 0 IBM Lotus Expeditor 厂商补丁： IBM ---...

CentOS 5 : postgresql (CESA-2012:1036)

Updated postgresql packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

PHP Group Releases New Versions, But Patch Doesn't Fix CVE-2012-1823 Bug

UPDATE–The developers of PHP have released new versions of the scripting language to fix a remotely exploitable vulnerability announced earlier this week that enables an attacker to pass command-line arguments to the PHP binary. The flaw has been in the code for more than eight years and The PHP...

New Apache Reverse Proxy Issue Uncovered

A new reverse proxy issue affecting Apache HTTP server can be used by attackers to access internal systems if certain rules are improperly configured, a security researcher said. Prutha Parikh, vulnerability signature engineer at Qualys, blogged that she uncovered the issue while creating a...

[slackware-security] libpng

New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/libpng-1.4.8-i486-1slack13.37.txz: Upgraded. Fixed uninitializ...

kernel security update

2.6.32-71.18.2.el6 - fs sunrpc: Correct a misapplied patch J. Bruce Fields 678094 678146...

MITKRB5-SA-2011-001 kpropd denial of service [CVE-2010-4022]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2011-001 MIT krb5 Security Advisory 2011-001 Original release: 2011-02-08 Last update: 2011-02-08 Topic: kpropd denial of service CVE-2010-4022 CVSSv2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:H/RL:OF/RC:C CVSSv2 Base Score: 5 Access Vector:...

Fedora 13 : xpdf-3.02-16.fc13 (2010-16662)

apply xpdf-3.02pl5 security patch to fix CVE-2010-3702, CVS-2010-3704 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

RedHat Update for kernel RHSA-2010:0718-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2010:0718-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

MDVA-2010:166 : php-eaccelerator

It was discovered php-eaccelerator-0.9.6 did not work properly with openbasedir for php-5.3.2. This advisory upgrades php-eaccelerator to 0.9.6.1 which solves this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix...

MDVA-2010:002 : rpmstats

rpmstats in 2010.0 displays strange characters for some last modified file names, this is easy noticed on Drakstats. This updated package fixes this bug 56176. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on...

Solaris Update for KU Place Holder 143056-01

Check for the Version of KU Place Holder OpenVAS Vulnerability Test Solaris Update for KU Place Holder 143056-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Solaris Update for Macromedia Flash Player Plugin 125333-08

Check for the Version of Macromedia Flash Player Plugin OpenVAS Vulnerability Test Solaris Update for Macromedia Flash Player Plugin 125333-08 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for Asian CCK locales 120414-25

Check for the Version of Asian CCK locales OpenVAS Vulnerability Test Solaris Update for Asian CCK locales 120414-25 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...