48 matches found
SUSE-SU-2017:1771-1 Security update for sudo
This update for sudo fixes the following issues: - A regression in the fix for the CVE-2017-1000368 that broke sudo with the 'requiretty' flag bsc1045986...
SUSE-SU-2017:1216-1 Security update for samba
This update for samba fixes the following issues: Security issue fixed: - CVE-2017-2619: symlink race permits opening files outside share directory bsc1027147. For SUSE Linux Enterprise 11 SP4 this is a re-issue of the update, a regression in the fix has been addressed bsc1036283, bso12721...
CURL-CVE-2017-7468 TLS session resumption client cert bypass (again)
libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which was established by the previous certificate or no...
Debian DLA-407-1 : prosody security update
The flaw allows a malicious server to impersonate the vulnerable domain to any XMPP domain whose domain name includes the attacker's domain as a suffix. For example, 'bber.example' would be able to connect to 'jabber.example' and successfully impersonate any vulnerable server on the network. This...
USN-2431-2: MAAS regression
USN-2431-1 fixed vulnerabilities in modwsgi. The security update exposed an issue in the MAAS package, causing a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that modwsgi incorrectly handled errors when setting up the...
Microsoft Reissues MS13-066 Windows Server Patch
Microsoft has re-released one of the August security patches for Windows Server 2008 in order to fix a regression issue that would cause some servers to stop working. The MS13-066 patch was released again Monday after Microsoft discovered the problem last week. The patch in the MS13-066 update...
Ubuntu Update for dbus USN-1576-2
Ubuntu Update for Linux kernel vulnerabilities USN-1576-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN15762.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for dbus USN-1576-2 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...
Fedora Core 3 : enscript-1.6.1-28.0.3 (2005-092)
This update fixes a regression introduced by the last update. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...