Scientific Linux Security Update : selinux-policy on SL5.x i386/x86_64

In accordance with the Scientific Linux errata policy, we are pushing out this selinux-policy bug fix as a security errata http://www.scientificlinux.org/documentation/faq/errata The selinux-policy packages contain the rules that govern how confined processes run on the system. These updated...

Google Chrome < 20.0.1132.43 Multiple Vulnerabilities

Binary data 800967.prm...

CVE-2012-2816

Google Chrome before 20.0.1132.43 on Windows does not properly isolate sandboxed processes, which might allow remote attackers to cause a denial of service process interference via unspecified vectors...

libpng: Multiple vulnerabilities

Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several programs, including web browsers and potentially server processes. Description Multiple vulnerabilities have been discovered in libpng: The “embeddedprofilelen” function in pngwutil...

[SECURITY] Fedora 16 Update: qemu-0.15.1-5.fc16

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...

CVE-2011-3090

Race condition in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker processes...

Race condition

Race condition in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker processes...

CVE-2011-3090

CVE-2011-3090 is referenced in openSUSE openSUSE-SU-2012:0656-1 as part of a Chromium v8 update. It indicates a race condition with worker processes in Chromium/Chrome prior to the patch, potentially enabling denial-of-service or other unspecified impact. The remediation in the linked patch is to...

CVE-2011-3090

Removed by vendor...

gkrellm-info NSE Script

Queries a GKRellM service for monitoring information. A single round of collection is made, showing a snapshot of information at the time of the request. Example Usage nmap -p 19150 --script gkrellm-info Script Output PORT STATE SERVICE 19150/tcp open gkrellm | gkrellm-info: | Hostname: ubu1110 |...

Ubuntu Update for lightdm USN-1382-1

Ubuntu Update for Linux kernel vulnerabilities USN-1382-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13821.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for lightdm USN-1382-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

HP-UX PHSS_42328 : s700_800 11.X OV NNM9.00 NNM 9.0x Patch 5

s700800 11.X OV NNM9.00 NNM 9.0x Patch 5 : The remote HP-UX host is affected by multiple vulnerabilities : - Apotential security vulnerability has been identified with HP Network Node Manager I NNMi on HP-UX, Linux, Solaris, and Windows. The vulnerability could be remotely exploited resulting in...

HP-UX PHSS_41983 : HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access (HPSBMA02659 SSRT100440 rev.2)

s700800 11.X OV NNM9.10 NNM 9.1x Patch 1 : A potential vulnerability has been identified with HP Network Node Manager i NNMi for HP-UX, Linux, Solaris, and Windows. The vulnerability could be remotely exploited resulting in unauthorized access to NNMi processes. %NASLMINLEVEL 70300 C Tenable...

NASA Computers Hacked Repeatedly in Last Two Years

NASA has been hit repeatedly by hackers during the last two years – including an incident where attackers compromised systems at the agency’s Jet Propulsion Laboratory. The situation was revealed in testimony Feb. 29 by NASA Inspector General Paul Martin before the House Science, Space and...

Apache 2.2.x Scoreboard本地安全限制绕过漏洞

BUGTRAQ ID: 51407 CVE ID: CVE-2012-0031 Apache HTTP Server是Apache软件基金会的一个开放源代码的网页服务器，可以在大多数电脑操作系统中运行，由于其跨平台和安全性被广泛使用，是最流行的Web服务器端软件之一。 Apache HTTP Server中的子进程可以更改scoreboard共享内存段的内存类型记录，这会被利用造成父进程关闭时无效的释放操作，使本地攻击者可绕过某些安全限制。 0 Apache 2.2.x 厂商补丁： Apache Group ------------...

Debian DSA-2376-2 : ipmitool - insecure PID file

It was discovered that OpenIPMI, the Intelligent Platform Management Interface library and tools, used too wide permissions PID file, which allows local users to kill arbitrary processes by writing to this file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 2376-2] ipmitool security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2376-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 31, 2011 http://www.debian.org/security/faq -...

DSA-2376-2 ipmitool - insecure pid file

Bulletin has no description...

DSA-2376-1 ipmitool - insecure pid file

Bulletin has no description...

Mandriva Update for ipmitool MDVSA-2011:196 (ipmitool)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...