MySQL Cluster 7.2.x < 7.2.33 / 7.3.x < 7.3.21 / 7.4.x < 7.4.19 / 7.5.x < 7.5.10 Denial of Service Vulnerability

The version of MySQL Cluster running on the remote host is 7.2.x prior to 7.2.33, 7.3.x prior to 7.3.21, 7.4.x prior to 7.4.19 or 7.5.x prior to 7.5.10. It is, therefore, affected by a denial of service vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster:...

Microsoft Warns of Unpatched IE Browser Zero-Day That's Under Active Attacks

Internet Explorer is dead, but not the mess it left behind. Microsoft earlier today issued an emergency security advisory warning millions of Windows users of a new zero-day vulnerability in Internet Explorer IE browser that attackers are actively exploiting in the wild — and there is no patch ye...

Oracle Solaris Critical Patch Update : jan2020_SRU11_4_17_3_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Consolidation Infrastructure. The supported version that is affected is 11. Difficult to exploit vulnerability allows low privileged...

MySQL 5.6.x < 5.6.47 Multiple Vulnerabilities (Jan 2020 CPU)

The version of MySQL running on the remote host is 5.6.x prior to 5.6.47. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the January 2020 Critical Patch Update advisory: - Unspecified vulnerability in the optimizer component o...

Oracle Solaris Critical Patch Update : jan2020_SRU11_4_16_4_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network...

Oracle Identity Manager Multiple Vulnerabilities (Jan 2020 CPU)

The remote host is missing the January 2020 Critical Patch Update for Oracle Identity Manager. It is, therefore, affected by multiple vulnerabilities: - Easily exploitable vulnerability allows an unauthenticated remote attacker to compromise Identity Manager. Successful attacks of this...

Oracle Solaris Critical Patch Update : jan2020_SRU11_4_15_5_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: SMB Server. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon t...

MySQL 5.7.x < 5.7.29 Multiple Vulnerabilities (Jan 2020 CPU)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.29. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the January 2020 Critical Patch Update advisory: - Vulnerability in the MySQL Server product of Oracle...

FreeBSD : MySQL -- Multiple vulerabilities (a6cf65ad-37d2-11ea-a1c7-b499baebfeaf)

Oracle reports : This Critical Patch Update contains 17 new security fixes for Oracle MySQL. 5 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials. C Tenable Network Security, Inc. The descriptive te...

Oracle Business Intelligence Publisher Multiple Vulnerabilities (Jan 2020 CPU)

The version of Oracle Business Intelligence Publisher running on the remote host is 11.1.1.9.x prior to 11.1.1.9.200114 or 12.2.1.3.x prior to 12.2.1.3.200114 or 12.2.1.4.x prior to 12.2.1.4.200114. It is, therefore, affected by multiple vulnerabilities as noted in the January 2020 Critical Patch...

Multiple vulnerabilities fixed in MySQL

Oracle has fixed several vulnerabilities in the MySQL connector, MySQL server and MySQL client. By exploiting the vulnerabilities, a malicious person with access to the the network read or manipulate data in the database or cause a denial-of-service. Oracle released updates to fix the...

Oracle Ties Previous All-Time Patch High with January Updates

Oracle has patched 334 vulnerabilities across all of its product families in its January 2020 quarterly Critical Patch Update CPU. Out of these, 43 are critical/severe flaws carrying CVSS scores of 9.1 and above. The CPU ties for Oracle’s previous all-time high for number of patches issued, in Ju...

MySQL -- Multiple vulerabilities

Oracle reports: This Critical Patch Update contains 17 new security fixes for Oracle MySQL. 5 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials...

Oracle Critical Patch Update Advisory - January 2020

A Critical Patch Update is a collection of patches for multiple security vulnerabilities. These patches are usually cumulative, but each advisory describes only the security patches added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update advisories should be...

Oracle January 2020 Critical Patch Update Multiple Vulnerabilities

Description Oracle has released advance notification regarding the January 2020 Critical Patch Update CPU to be released on January 14, 2020. The update addresses 333 vulnerabilities affecting the following software: Oracle Database Server, versions 12.2.0.1, 18c, 19c Oracle Communications Design...

openSUSE: Security Advisory for nginx (openSUSE-SU-2019:2120-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

PT-2019-5046 · Php +1 · Php +1

Name of the Vulnerable Software and Affected Versions: PHP versions 7.2.x through 7.2.25 PHP versions 7.3.x through 7.3.12 PHP version 7.4.0 Description: The issue is related to the link function in PHP, which accepts filenames with embedded 0 byte and treats them as terminating at that byte. Thi...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20191114)

Security Fixes : - hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write CVE-2019-0155 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid131056; scriptversion"1.5";...

Oracle Business Intelligence Publisher Multiple Vulnerabilities (Jul 2016 CPU)

The version of Oracle Business Intelligence Publisher running on the remote host is 11.1.1.7.x prior to 11.1.1.7.160719, 11.1.1.9.x prior to 11.1.1.9.160719, or 12.2.1.0.x prior to 12.2.1.0.160719. It is, therefore, affected by multiple vulnerabilities as noted in the July 2016 Critical Patch...

Important: patch

Issue Overview: doedscript in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.CVE-2018-20969 GNU patch through 2.7.6 is vulnerab...