32 matches found
EUVD-2014-0118
Malware in sbrugna...
EUVD-2014-0068
Malware in sbrugna...
EUVD-2018-12005
Malware in sbrugna...
Security Bulletin: Security vulnerabilities have been identified in GSKIT and/or GSKit Crypto and Fork that are integrated with IBM DB2 and shipped with IBM InfoSphere BigInsights. (CVE-2015-7420, CVE-2015-7421, CVE-2016-0201)
Summary Security vulnerabilities have been identified in GSKIT and/or GSKit Crypto and Fork that are integrated with IBM DB2 and shipped with IBM InfoSphere BigInsights. Information about security vulnerabilities affecting GSKIT/ Crypto and Fork has been published in a security bulletin...
Security Bulletin: IBM BigInsights is affected by multiple vulnerabilities in IBM Db2
Summary IBM BigInsights is affected by multiple vulnerabilities in IBM Db2. Vulnerability Details CVEID: CVE-2016-0702 DESCRIPTION: OpenSSL could allow a local attacker to obtain sensitive information, caused by a side-channel attack against a system based on the Intel Sandy-Bridge...
Security Bulletin: Multiple vulnerabilities in IBM HTTP Server affects Netezza Performance Portal
Summary IBM HTTP Server is used by IBM Netezza Performance Portal. IBM Netezza Performance Portal has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-0702 DESCRIPTION: OpenSSL could allow a local attacker to obtain sensitive information, caused by a side-channel attack agains...
Security Bulletin: IBM API Connect is affected by multiple GSKit and OpenSSL vulnerabilities
Summary IBM API Connect has addressed multiple vulnerabilities in GSKit and OpenSSL. Vulnerability Details CVEID: CVE-2016-0705 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a double-free error when parsing DSA private keys. An attacker could exploit this vulnerability to...
Security Bulletin: IBM Cloud Manager with OpenStack is affected by GSKit
Summary Multiple security vulnerabilities have been identified in GSKit and GSKit-Crypto that is used by IBM Cloud Manager with OpenStack. IBM Cloud Manager with OpenStack has addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2016-0705 DESCRIPTION: OpenSSL is vulnerable to a denia...
Security Bulletin : Multiple vulnerabilities in IBM GSKit affect IBM Host On-Demand.
Summary GSKit is an IBM component that is used by Host On-Demand. GSKit that is shipped with Host On-Demand contains multiple security vulnerabilities .Host On-Demand has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2018-1426 DESCRIPTION:IBM GSKit duplicates the PRNG state acros...
Security Bulletin: IBM Security SiteProtector System is affected by GSKit vulnerabilities
Summary IBM Security SiteProtector System has addressed the following vulnerabilities in GSKit. Vulnerability Details CVEID: CVE-2018-1428 DESCRIPTION: IBM GSKit uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CVSS Base Scor...
Security Bulletin: eDiscovery Manager is affected by GSKit and GSKit-Crypto vulnerabilities
Summary eDiscovery Manager has addressed multiple GSKit and GSKit-Crypto vulnerabilities. Details of the vulnerabilities is mentioned below. Vulnerability Details CVEID: CVE-2016-0705 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a double-free error when parsing DSA private...
Security Bulletin: Vulnerabilities in GSKit 8 affect Tivoli Directory Server and IBM Security Directory Server (CVE-2015-7421, CVE-2015-7420)
Summary Vulnerabilities were discovered in GSKit 8. Tivoli Directory Server and IBM Security Directory Server use GSKit 8 and have addressed the applicable CVE's. GSKit 7 is not affected. Vulnerability Details CVEID: CVE-2015-7421 DESCRIPTION: A vulnerability in GSKit could allow a remote attacke...
Security Bulletin: Vulnerabilities in the GSKit component of Transformation Extender (CVE-2016-0201, CVE-2015-7421, CVE-2015-7420)
Summary Vulnerabilities have been addressed in the GSKit component of Transformation Extender. Vulnerability Details CVEID: CVE-2016-0201 DESCRIPTION: IBM GSKit could allow a remote attacker to obtain sensitive information, caused by a MD5 collision. An attacker could exploit this vulnerability t...
Security Bulletin: Vulnerabilities in GSKit affect IBM Data Server Client and Driver packages(CVE-2016-0201, CVE-2015-7420 and CVE-2015-7421)
Summary Vulnerabilities have been addressed in the GSKit component of IBM Data Server Client and Driver packages Vulnerability Details CVEID: CVE-2016-0201 DESCRIPTION: IBM GSKit could allow a remote attacker to obtain sensitive information, caused by a MD5 collision. An attacker could exploit th...
CVE-2018-1426
IBM GSKit IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1 duplicates the PRNG state across fork system calls when multiple ICC instances are loaded which could result in duplicate Session IDs and a risk of duplicate key material. IBM X-Force ID: 139071...
Debian DLA-235-1 : ruby1.9.1 security update
CVE-2011-0188 The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of...
DLA-235-1 ruby1.9.1 - security update
Bulletin has no description...
Debian DLA-88-1 : ruby1.8 security update
This update fixes multiple local and remote denial of service and remote code execute problems : CVE-2011-0188 Properly allocate memory, to prevent arbitrary code execution or application crash. Reported by Drew Yao. CVE-2011-2686 Reinitialize the random seed when forking to prevent CVE-2003-0900...
[SECURITY] [DLA 88-1] ruby1.8 security update
Package : ruby1.8 Version : 1.8.7.302-2squeeze3 CVE ID : CVE-2011-0188 CVE-2011-2686 CVE-2011-2705 CVE-2011-4815 CVE-2014-8080 CVE-2014-8090 This update fixes multiple local and remote denial of service and remote code execute problems: CVE-2011-0188 Properly allocate memory, to prevent arbitrary...
DLA-88-1 ruby1.8 - security update
Bulletin has no description...