Veeam Explorer for Microsoft Exchange Javascript Execution Vulnerability

Challenge The vulnerability allows execution of arbitrary code in emails containing inline Javascript. NOTE: This has been corrected in Veeam Backup for MIcrosoft Office 365 version 3 and Veeam Backup & Replication version U4a. Cause The affected component is Veeam Explorer for Microsoft Exchange...

FAAD2 Invalid Memory Address Dereference Vulnerability

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. An invalid memory address dereference vulnerability in the sbrprocesschannel function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8 can be exploited by ...

UBUNTU-CVE-2018-20359

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

Veeam Availability Console U1 Cumulative Patch 1913

Challenge Veeam Availability Console U1 Cumulative Patch 1913. This update supersedes Veeam Availability Console U1 Cumulative Patch 1850. Cause Please confirm you are running version 2.0.2.1750 or later prior to installing this cumulative patch 1913. You can check this under Windows Programs and...

Veeam ONE compatibility patch for Veeam Backup & Replication 9.5 Update 4

Challenge After upgrading Veeam Backup & Replication servers to version 9.5 Update 4, Veeam Cloud Connect monitoring and reporting in Veeam ONE 9.5 Update 3 will stop working. Cause This issue is caused by incompatibility of Veeam Backup & Replication 9.5 Update 4 and Veeam ONE 9.5 Update 3. To...

ALPINE-CVE-2018-20196

There is a stack-based buffer overflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because the SM array is mishandled...

Veeam Backup & Replication does not start after Veeam Backup Enterprise Manager upgrade to 9.5 U4

Challenge Both Veeam Backup & Replication and Veeam Backup Enterprise Manager are installed on the same server. Veeam Backup Enterprise Manager is updated to Update 4 with instance license, while Veeam Backup & Replication is still running an older version. After Veeam Backup Enterprise Manager...

kafka: Users can perform Broker actions via crafted fetch requests, interfering with data replication and causing data lass

In Apache Kafka 0.9.0.0 to 0.9.0.1, 0.10.0.0 to 0.10.2.1, 0.11.0.0 to 0.11.0.2, and 1.0.0, authenticated Kafka users may perform action reserved for the Broker via a manually created fetch request interfering with data replication, resulting in data loss...

Certificate expiration date

Challenge The following error message appears when starting Veeam Backup and Replication console: Cause Veeam Backup and Replication self-signed certificate expires 11 months after installation. The certificate is renewed, but Veeam Backup Service still has information about the old one in the...

mysql: Server: Replication unspecified vulnerability (CPU Apr 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure wher...

mysql: Server: RBR unspecified vulnerability (CPU Oct 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: RBR. Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

mysql: Server: Replication unspecified vulnerability (CPU Jul 2019)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.7.23 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

mysql: Group Replication GCS unspecified vulnerability (CPU Apr 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Group Replication GCS. Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via XCom to compromise MySQL Server. Successful attacks ...

Moderate: Red Hat Security Advisory: rh-mysql57-mysql security update

An update for rh-mysql57-mysql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

PT-2018-3068 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to a stack-based buffer underflow in the calculate gain function, specifically in the third instance of this function in libfaad/sbr hfadj.c. This underfl...

Cloned Nimble volumes are not visible

Challenge By default, cloned Nimble Volumes are not shown in Veeam Backup and Replication UI and cannot be interacted with. However you can implement registry setting that will enable Nimble cloned volumes for interaction. Solution 1. Create the following registry value on the Veeam Backup and...

Veeam Availability Console U1 Cumulative Patch 1850

Challenge Veeam Availability Console U1 Cumulative Patch 1850. This update supersedes Veeam Availability Console U1 Cumulative Patch 1824. Cause Please confirm you are running version 2.0.2.1750 or later prior to installing this cumulative patch 1850. You can check this under Windows Programs and...

389-ds-base security, bug fix, and enhancement update

1.3.8.4-15 - Bump version to 1.3.8.4-15 - Resolves: Bug 1624004 - Fix regression in last patch 1.3.8.4-14 - Bump version to 1.3.8.4-14 - Resolves: Bug 1624004 - potential denial of service attack 1.3.8.4-13 - Bump version to 1.3.8.4-13 - Resolves: Bug 1623949 - Crash in deletepasswdPolicy when...

EulerOS Virtualization 2.5.1 : mariadb (EulerOS-SA-2018-1337)

According to the versions of the mariadb packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - mysql: Client programs unspecified vulnerability CPU Jul 2017 CVE-2017-3636 - mysql: Server: DML unspecified vulnerability CPU J...

Replication Error: The name '{vmname}' already exists.

Challenge Veeam Backup & Replication replication job fails with the following error message: Processing Error: The name 'replica' already exists. When the error above occurs within Veeam Backup & Replication the following correlating event can be found within the vSphere Events. Cause This error...