Fedora 14 : libpng10-1.0.55-1.fc14 (2011-8867)

This update fixes a 1-byte uninitialized memory reference in pngformatbuffer. It allows attackers to cause a denial of service crash via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message. This is CVE-2011-2501. Also fixed in this...

[SECURITY] [DSA-2210-2] tiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2210-2 [email protected] http://www.debian.org/security/ Luciano Bello June 25, 2011 http://www.debian.org/security/faq -...

Avoiding the Privacy Apocalypse

Google has been criticized widely for its privacy practices, and some of the harshest critiques have come from outside privacy advocates. In this video, Simon Davies and Gus Hosein of Privacy International discuss the ways in which companies such as Google that have large amounts of user data can...

Android phones vulnerable to hackers !

Android phones vulnerable to hackers ! Handsets using Google's operating system can allow hackers to access calendars, contacts and private pictures, they claim. Only the latest phones have had the data leak plugged, meaning 99.7 per cent of Android handsets are vulnerable. 'We wanted to know if ...

[SECURITY] [DSA 2235-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2235-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 10, 2011 http://www.debian.org/security/faq -...

Internal Affairs may be next target for #Anonymous !

There's confusion tonight as to whether international cyber vandals have tried to hack websites run by the Department of Internal Affairs. A group called Anonymous has threatened to attack internal affairs because it operates a filter that identifies child porn websites - which the cyber activist...

Bsnl India Helpdesk Admin panel Hacked !

Bsnl India Helpdesk Admin panel Hacked ! Here in above pic a Indian Hackers Group "The Blackroot" Access to the Admin panel of Bsnl India Help-desk. Lol , Nothing is Secure, technical support by Bsnl also have Technical Problems ;- News Source : Facebook...

New Adobe Under Zero-Day Attack !

Adobe today released an advisory to warn about a remote code execution vulnerability in Flash Player, which also affects Adobe Reader and Acrobat. This critical vulnerability has been assigned CVE-2011-0609. Currently seen attacks work through a malicious SWF file which is embedded inside an Exce...

Common Security Mistakes Can Lead to Major Compromises

SAN FRANCISCO–Security is hard and getting it right all the time is nearly impossible. But many of the mistakes that people make are simple, avoidable ones that can lead to serious intrusions and major network compromises. “Maintaining network defenses by hand is difficult,” Mike Lloyd, chief...

web Thunder remote arbitrary file reading vulnerability-vulnerability warning-the black bar safety net

web Thunderbolt in the design and implementation problems, leading to a malicious attacker can read the install web Thunder user on the machine any files web Thunderbolt in the present machine there is a webserver, and the binding at 0. 0. 0. 0, while for the web request processing is not...

Mandriva Update for libalsa2 MDVA-2010:227 (libalsa2)

Check for the Version of libalsa2 OpenVAS Vulnerability Test Mandriva Update for libalsa2 MDVA-2010:227 libalsa2 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Mandriva Update for libalsa2 MDVA-2010:227 (libalsa2)

Check for the Version of libalsa2 OpenVAS Vulnerability Test Mandriva Update for libalsa2 MDVA-2010:227 libalsa2 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

MDVA-2010:227 : libalsa2

This is a bugfix and maintenance update bundle that addresses various issues in a number of packages. Some thread-related problems were found in the libalsa2 library that could cause segmentation faults in some audio applications one example being phonon when used with gstreamer output and...

With the FindBugs code analysis vulnerability-vulnerability warning-the black bar safety net

Static analysis tools promise without developer effort will be able to find out the code has some defects. Of course, if you have years of writing experience, you will know that these promises are not necessarily fulfilled. Nevertheless, a good static analysis tool is still in the Toolbox...

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7083)

Mozilla Firefox has been updated to version 3.5.10, fixing various bugs and security issues. - Security researcher Amit Klein reported that it was possible to reverse engineer the value used to seed Math.random. Since the pseudo-random number generator was only seeded once per browsing session,...

Fedora 14 : Django-1.2.3-1.fc14 (2010-14745)

' Today the Django team has released Django 1.2.3, which remedies several issues with the recent 1.2.2 package. This package corrects the following problems : - The patch applied for the security issue covered in Django 1.2.2 caused issues with non-ASCII responses using CSRF tokens. This has been...

Characters mapped to U+FFFD in 8 bit encodings cause subsequent character to vanish — Mozilla

Security researcher O. Andersen reported that undefined positions within various 8 bit character encodings are mapped to the sequence U+FFFD which when displayed causes the immediately following character to disappear from the text run. This could potentially contribute to XSS problems on sites...

openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0358-2)

Mozilla Firefox was updated to version 3.5.10, fixing various bugs and security issues. MFSA 2010-33 / CVE-2008-5913: Security researcher Amit Klein reported that it was possible to reverse engineer the value used to seed Math.random. Since the pseudo-random number generator was only seeded once...

Mandriva Update for espeak MDVA-2010:168 (espeak)

Check for the Version of espeak OpenVAS Vulnerability Test Mandriva Update for espeak MDVA-2010:168 espeak Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Microsoft to Fix IE 8 XSS Filter Security Problems

On the heels of a Black Hat EU presentation that exposed security problems with the cross-site scripting XSS filter in Internet Explorer 8, Microsoft plans to ship an update to the filter to fix what is hopefully the last remaining attack scenario. During the conference presentation, a pair of...