[SECURITY] Fedora 18 Update: sssd-1.9.4-2.fc18

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...

DEBIAN-CVE-2011-3148

Stack-based buffer overflow in the assembleline function in modules/pamenv/pamenv.c in Linux-PAM aka pam before 1.1.5 allows local users to cause a denial of service crash and possibly execute arbitrary code via a long string of white spaces at the beginning of the /.pamenvironment file...

Design/Logic Flaw

The intu-help-qb aka Intuit Help System Async Pluggable Protocol handlers in HelpAsyncPluggableProtocol.dll in Intuit QuickBooks 2009 through 2012, when Internet Explorer is used, provide different responses to remote requests depending on whether a ZIP pathname is valid, which allows remote...

CVE-2012-2420

CVE-2012-2420 affects Intuit QuickBooks 2009–2012 where the HelpAsyncPluggableProtocol.dll (intu-help-qb) handlers used with Internet Explorer may accidentally disclose sensitive information. The issue arises when processing a URI containing a percent character as its last or second-to-last chara...

Fedora Update for python-paste-script FEDORA-2012-2413

Check for the Version of python-paste-script OpenVAS Vulnerability Test Fedora Update for python-paste-script FEDORA-2012-2413 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...

[SECURITY] Fedora 15 Update: python-paste-script-1.7.5-4.fc15

Paster is pluggable command-line frontend, including commands to setup pack age file layouts Built-in features: Creating file layouts for packages. For instance a setuptools-ready file layout. Serving up web applications, with configuration based on paste.deploy...

Fedora Update for pam_yubico FEDORA-2011-15580

Check for the Version of pamyubico OpenVAS Vulnerability Test Fedora Update for pamyubico FEDORA-2011-15580 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Fedora Update for pam FEDORA-2011-16390

Check for the Version of pam OpenVAS Vulnerability Test Fedora Update for pam FEDORA-2011-16390 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Intuit Help System Heap Corruption / Memory Leak

Intuit Help System Protocol URL Heap Corruption and Memory Leak Derek Soeder [email protected] Reported to [email protected] on March 15, 2012; vendor did not respond. Reported to CERT on March 22, 2012; vendor did not respond. Responsible disclosure failed with error code 10060. Published:...

Application Security With Apache Shiro : Java security framework

Application Security With Apache Shiro : Java security framework Are you frustrated when you try to secure your applications? Do you feel existing Java security solutions are difficult to use and only confuse you further? Les Hazlewood is the Apache Shiro PMC Chair and co-founder and CTO of...

Fedora Update for pam FEDORA-2011-16365

Check for the Version of pam OpenVAS Vulnerability Test Fedora Update for pam FEDORA-2011-16365 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

sssd: DoS in sssd PAM responder can prevent logins

The pamparseindatav2 function in src/responder/pam/pamsrvcmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service infinite loop, crash, and login prevention via a crafted packet...

[SECURITY] Fedora 14 Update: sssd-1.5.7-1.fc14

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...

[SECURITY] Fedora 15 Update: sssd-1.5.7-1.fc15

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...

[SECURITY] Fedora 15 Update: logwatch-7.3.6-66.20110203svn25.fc15

Logwatch is a customizable, pluggable log-monitoring system. It will go through your logs for a given period of time and make a report in the areas that you wish with the detail that you wish. Easy to use - works right out of the package on many systems...

DEBIAN-CVE-2010-3435

The 1 pamenv and 2 pammail modules in Linux-PAM aka pam before 1.1.2 use root privileges during read access to files and directories that belong to arbitrary user accounts, which might allow local users to obtain sensitive information by leveraging this filesystem activity, as demonstrated by a...

Fedora Update for sssd FEDORA-2011-0364

Check for the Version of sssd OpenVAS Vulnerability Test Fedora Update for sssd FEDORA-2011-0364 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

[SECURITY] Fedora 13 Update: libuser-0.56.16-1.fc13.2

The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included...

[SECURITY] Fedora 14 Update: libuser-0.56.18-3.fc14

The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included...

[SECURITY] Fedora 14 Update: sssd-1.5.0-2.fc14

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...