CVE-2018-15320

On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, undisclosed traffic patterns may lead to denial of service conditions for the BIG-IP system. The configuration which exposes this condition is the BIG-IP self IP address which is part of a VLAN group and has the Port Lockdown setting configured with...

openSUSE Security Update : haproxy (openSUSE-2018-1229)

This update for haproxy to version 1.8.14 fixes the following issues : These security issues were fixed : - CVE-2018-14645: A flaw was discovered in the HPACK decoder what caused an out-of-bounds read in hpackvalididx that resulted in a remote crash and denial of service bsc1108683 -...

Security Bulletin: Potential MITM attack in Apache CXF used by WebSphere Application Server bundled with IBM WebSphere Application Server Patterns (CVE-2018-8039)

Summary WebSphere Application Server is shipped as a component of IBM WebSphere Application Server Patterns. Information about security vulnerabilities affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin:...

Security Bulletin: Information disclosure in WebSphere Application Server Liberty bundled with IBM WebSphere Application Server Patterns (CVE-2018-1683)

Summary WebSphere Application Server is shipped as a component of IBM WebSphere Application Server Patterns. Information about security vulnerabilities affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin:...

Security Bulletin: Weaker than expected security in WebSphere Application Server bundled with IBM WebSphere Application Server Patterns (CVE-2018-1719)

Summary WebSphere Application Server is shipped as a component of IBM WebSphere Application Server Patterns. Information about security vulnerabilities affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin:...

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affects WebSphere Application Server July 2018 CPU that is bundled with IBM WebSphere Application Server Patterns

Summary There are multiple vulnerabiltities in the IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in July 2018. Vulnerability Details For information on the IBM Java SDK that is now bundled with...

Security Bulletin: Potential spoofing attack in WebSphere Application Server bundled with IBM WebSphere Application Server Patterns (CVE-2018-1695)

Summary WebSphere Application Server is shipped as a component of IBM WebSphere Application Server Patterns. Information about security vulnerabilities affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin:...

Threat Landscape for Industrial Automation Systems in H1 2018

For many years, Kaspersky Lab experts have been uncovering and researching cyberthreats that target a variety of information systems – those of commercial and government organizations, banks, telecoms operators, industrial enterprises, and individual users. In this report, Kaspersky Lab Industria...

Explained: regular expression (regex)

Regular expression, or "regex" for short, is a mathematical term for the theory used to describe regular languages. But in computing, regexes are used to search for patterns in files and databases, and their functionality is incorporated into many modern programming languages. Regex search patter...

[SECURITY] Fedora 27 Update: blktrace-1.2.0-6.fc27

blktrace is a block layer IO tracing mechanism which provides detailed information about request queue operations to user space. This package includes both blktrace, a utility which gathers event traces from the kerne l; and blkparse, a utility which formats trace data collected by blktrace. You...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2358-1) (Foreshadow)

This update for the Linux Kernel 3.12.74-606496 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2384-1) (Foreshadow)

The SUSE Linux Enterprise 12 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-3620: Local attackers on baremetal systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacach...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2364-1) (Foreshadow)

This update for the Linux Kernel 3.12.74-606493 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2346-1) (Foreshadow)

This update for the Linux Kernel 3.12.61-5292 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2349-1) (Foreshadow)

This update for the Linux Kernel 3.12.61-52122 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2359-1) (Foreshadow)

This update for the Linux Kernel 3.12.74-606469 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2342-1) (Foreshadow)

This update for the Linux Kernel 3.12.61-52133 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2356-1) (Foreshadow)

This update for the Linux Kernel 3.12.61-52111 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2369-1) (Foreshadow)

This update for the Linux Kernel 3.12.61-52136 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2363-1) (Foreshadow)

This update for the Linux Kernel 3.12.74-606482 fixes several issues. The following security issues were fixed : - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...