Fedora 15 : asterisk-1.8.3-1.fc15 (2011-2360)

The Asterisk Development Team has announced the release of Asterisk 1.8.3. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/ The release of Asterisk 1.8.3 resolves several issues reported by the community and would have not been possible...

CVE-2010-4438

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service JMS...

CVE-2010-4438

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service JMS...

Buffer overflow

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service JMS...

CVE-2010-4438

Removed by vendor...

CVE-2010-4438

CVE-2010-4438 relates to a local privilege escalation in Oracle GlassFish Server (notably GlassFish 2.x/3.0.1 and JMS components). The OpenVAS entries confirm a GlassFish privilege-escalation vulnerability with CVSS base 5.7 (local access, partial confidentiality/integrity impact, complete availa...

CVE-2010-4438

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service JMS...

kernel: ipc/compat*.c: reading uninitialized stack memory

The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the 1 compatsyssemctl, 2 compatsysmsgctl, and 3 compatsysshmctl functions in...

kernel: ipc/compat*.c: reading uninitialized stack memory

The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the 1 compatsyssemctl, 2 compatsysmsgctl, and 3 compatsysshmctl functions in...

CVE-2011-0314

Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 allows remote authenticated users to execute arbitrary code or cause a denial of service queue manager crash by inserting an invalid message into the queue...

plugin: enable QUEUE_ALL_USERS_TRUSTED for Submit/Hold/Release/Remove ops

The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid MRG 1.3 recommends that Condor should be configured so that the MRG Management Console cumin can submit jobs for users, which creates a trusted channel with insufficient access control that allows local users with...

plugin: enable QUEUE_ALL_USERS_TRUSTED for Submit/Hold/Release/Remove ops

The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid MRG 1.3 recommends that Condor should be configured so that the MRG Management Console cumin can submit jobs for users, which creates a trusted channel with insufficient access control that allows local users with...

Oracle Database Multiple Vulnerabilities (October 2010 CPU)

The remote Oracle database server is missing the October 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Enterprise Manager Console - Java Virtual Machine - Change Data Capture - OLAP - Job Queue - XDK - Core RDBMS - Perl...

CVE-2010-2411

Unspecified vulnerability in the Job Queue component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYS.DBMSIJOB...

Design/Logic Flaw

Unspecified vulnerability in the Job Queue component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYS.DBMSIJOB...

CVE-2010-2411

Unspecified vulnerability in the Job Queue component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYS.DBMSIJOB...

CVE-2010-2411

CVE-2010-2411 affects Oracle Database Server (11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5) with a vulnerability in SYS.DBMS_IJOB that allows remote authenticated users to impact confidentiality, integrity and availability. The vulnerability is listed in the Oracle October 2010 CPU, which fix...

targets-traceroute NSE Script

Inserts traceroute hops into the Nmap scanning queue. It only functions if Nmap's --traceroute option is used and the newtargets script argument is given. Script Arguments newtargets If specified, adds traceroute hops onto Nmap scanning queue. max-newtargets See the documentation for the target...

DEBIAN-CVE-2010-2534

The NetworkSyncCommandQueue function in network/networkcommand.cpp in OpenTTD before 1.0.3 does not properly clear a pointer in a linked list, which allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted request, related to the client command queue...

Fedora Update for beanstalkd FEDORA-2010-9656

Check for the Version of beanstalkd OpenVAS Vulnerability Test Fedora Update for beanstalkd FEDORA-2010-9656 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...