389 security update

CentOS Errata and Security Advisory CESA-2014:1031 Updated 389-ds-base packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base...

389-ds: unauthenticated information disclosure

It was found that when replication was enabled for each attribute in Red Hat Directory Server / 389 Directory Server, which is the default configuration, the server returned replicated metadata when the directory was searched while debugging was enabled. A remote attacker could use this flaw to...

389-ds: unauthenticated information disclosure

It was found that when replication was enabled for each attribute in Red Hat Directory Server / 389 Directory Server, which is the default configuration, the server returned replicated metadata when the directory was searched while debugging was enabled. A remote attacker could use this flaw to...

“Invalid Credentials” Error Adding a Hyper-V Host Using a Local Account

Article Applicability This article relates to an error that only occurs when Veeam Backup & Replication is deployed on a Windows machine. With the Veeam Software Appliance, to add a Hyper-V host using credentials, it requires that both the appliance and the Windows machine are added to the same...

How to restore vCenter Server without a vCenter Server

Challenge The vCenter Server is not available and the vCenter Server VM needs to be restored. Solution To restore the vCenter Server, you will need to add one of the individual ESXi hosts to Veeam Backup & Replication, allowing you to target that host directly to restore the vCenter VM. Possible...

PT-2014-7231 · Oracle +6 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 5.5.38 and earlier Oracle MySQL Server versions 5.6.19 and earlier MariaDB affected versions not specified Description: The issue affects the availability of the system, allowing remote authenticated users to...

Job Fails to Start Due to Timeout Caused by Desktop Heap Allocation Failure

Article Applicability The timeout error displayed in Veeam Backup & Replication can be caused by various factors. This article explicitly addresses a scenario where the Windows OS experiences a 'heap allocation' failure. Please note that the solution provided in this article is only applicable if...

Using the vSphere MOB (Managed Object Browser) to Troubleshoot Snapshot Creation

Purpose This article documents the procedure for manually creating a vSphere VM snapshot using the Managed Object Browser MOB. Solution Start by identifying the Managed Object Reference-ID MORef-ID of the VM for which the snapshot will be created. If the VM is being protected by Veeam Backup &...

[SECURITY] Fedora 20 Update: couchdb-1.6.0-9.fc20

Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API. Among other features, it provides robust, incremental replication with bi-directional conflict detection and resolution, and is queryable and indexable using a...

[SECURITY] Fedora 19 Update: couchdb-1.6.0-9.fc19

Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API. Among other features, it provides robust, incremental replication with bi-directional conflict detection and resolution, and is queryable and indexable using a...

Veeam Backup & Replication - SQL Backup Guide: Using Microsoft SQL Server Agent With Application - Aware Image Processing

This guide was created to assist you with successfully backing up, and restoring, Microsoft SQL databases...

Dolibarr CMS 3.5.3 - Multiple Security Vulnerabilities

Exploit for php platform in category web applications Vulnerability Name: SQL injection Severity: Critical URL: http://localhost/dolibarr/user/fiche.php Affected Users: All authenticated users Issue details: The "entity" parameter appears to be vulnerable to SQL injection attacks. A single quote...

Seemingly malformed PNG file will cause JIRA to OOM within seconds

.atlassian.net was chain-OOM-ing earlier today. jworley was able to narrow it down to an image attachment on a particular issue. It's only a 300KB PNG file a screenshot from an Android device but it causes JIRA to OOM almost immediately. I've been able to replicate that behaviour on my jira-dev...

Seemingly malformed PNG file will cause JIRA to OOM within seconds

.atlassian.net was chain-OOM-ing earlier today. jworley was able to narrow it down to an image attachment on a particular issue. It's only a 300KB PNG file a screenshot from an Android device but it causes JIRA to OOM almost immediately. I've been able to replicate that behaviour on my jira-dev...

Locations to Check for Incorrect Username/Password Issues

Challenge Jobs fail with an error message indicating an incorrect user name or password. An account associated with Veeam is being locked out in Active Directory. Solution Below are the locations where accounts are configured within Veeam Backup & Replication and Backup Enterprise Manager...

openSUSE Security Update : postgresql91 (openSUSE-SU-2013:0627-1)

postgresql was updated to version 9.1.9 bnc812525 : - CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with '-' could be crafted to damage or destroy files within the server's data directory, even if the request is...

openSUSE Security Update : phpMyAdmin (openSUSE-2012-135)

update to 3.4.10.1 fix for bnc747841 - security XSS in replication setup, see PMASA-2012-1 - 3.4.10.0 2012-02-14 - bug 3460090 interface TextareaAutoSelect feature broken - patch 3375984 export PHP Array export might generate invalid php code - bug 3049209 import Import from ODS ignores cell that...

openSUSE Security Update : postgresql92 (openSUSE-SU-2013:0628-1)

postgresql was updated to version 9.2.4 bnc812525 : - CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with '-' could be crafted to damage or destroy files within the server's data directory, even if the request is...

mysql: unspecified vulnerability related to RBR (CPU April 2014)

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR...

mysql: unspecified DoS related to Replication (CPU April 2014)

Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication...