299 matches found
Adversarial Robustness Toolbox: ART
The Adversarial Robustness Toolbox ART, an open source software library, supports both researchers and developers in defending deep neural networks against adversarial attacks, making AI systems more secure. Its purpose is to allow rapid crafting and analysis of attack and defense methods for...
SUSE-SU-2018:0663-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: Security issues fix in jdk8u161 icedtea 3.7.0bsc1076366: - CVE-2018-2579: Improve key keying case - CVE-2018-2582: Better interface invocations - CVE-2018-2588: Improve LDAP logins - CVE-2018-2599: Improve reliability of DNS lookups -...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...
Five Reasons Why I Joined Wallarm
By Johan Nordstrom The question of “what made you change jobs?” may be old, but the answer with my move to Wallarm is new and clear. I have a vision how to address the dynamic threat landscape of today and Wallarm’s innovative approach to security is in line with these ideas. In my 30 years caree...
What the Fuzz: Radamsa
What the Fuzz: Radamsa Radamsa is a test case generator for robustness testing, a.k.a. a fuzzer. It is typically used to test how well a program can withstand malformed and potentially malicious inputs. It works by reading sample files of valid data and generating interestingly different outputs...
General Purpose Fuzzer: Radamsa
Radamsa is a test case generator for robustness testing, a.k.a. a fuzzer. It is typically used to test how well a program can withstand malformed and potentially malicious inputs. It works by reading sample files of valid data and generating interestringly different outputs from them. The main...
Debian: Security Advisory (DSA-3332-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-3328-1 wordpress - security update
Bulletin has no description...
Debian DLA-58-3 : apt robustness improvements
The recent security updates to apt make apt bug 710924 1 much easier to trigger. Affected users see '416 Requested Range Not Satisfiable' errors during a apt-get update operation. With the 0.8.10.3+squeeze7 upload the fix for this error that was originally introduced in version 0.9.12 2 is now...
[SECURITY] [DLA 58-3] apt robustness improvements
Package : apt Version : 0.8.10.3+squeeze7 Debian Bug : 710924 The recent security updates to apt make apt bug 710924 1 much easier to trigger. Affected users see "416 Requested Range Not Satisfiable" errors during a apt-get update operation. With the 0.8.10.3+squeeze7 upload the fix for this erro...
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2013:1663-1)
Update to icedtea 2.4.3 bnc846999 synchronized OpenJDK 7 support with the upstream u45 b31 fixes the following issues : - S8006900, CVE-2013-3829: Add new date/time capability - S8008589: Better MBean permission validation - S8011071, CVE-2013-5780: Better crypto provider handling - S8011081,...
Ramble vulnerability mining of the file parsing-vulnerability-vulnerability warning-the black bar safety net
Blog post author: dragonltx Directory 1 - Preface 2 - file Fuzz introduction 3 - file Fuzz FY record 4 – Outlook 5 - epilogue 1 - Introduction ! ! From 2 0 1 0 year Google admitted suffered serious hack attacks, the APT advanced persistent threat will become the security circles known of...
OpenJDK: Better access restrictions (Sound, 8006328)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to...
CentOS 6 : 389-ds-base (CESA-2013:0628)
Updated 389-ds-base packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Ten Years After Gates's Memo, Effects Still Being Felt
Ten years. That’s a really long time. Think about what you were doing 10 years ago. Can you even remember? Maybe you were in college or high school, or cripes, even grade school. Or maybe you were working in security already, trying to figure out why your network kept getting overrun by viruses a...
Buffer length checks in MIME processing — Mozilla
As a follow-up to vulnerability reported in MFSA 2008-12 Mozilla has checked similar constructs in the rest of the MIME handling code. Although no further buffer overflows were found we changed several function calls to use safer versions of the string routines that will be more robust in the fac...
Multi user custom field cannot be used with the assignable user permission
If a multi user custom field is added to JIRA, and the custom field is added to the Assignable User permission, the Assign Issue operation breaks, when trying to gather the list of assignable Users. This is basically because our MultiUserCF is not specific enough and relies to much on the...
MS07-0 0 4 General overflow of the method-completion-bug warning-the black bar safety net
This article ms07-0 0 4 as an example, explores this vulnerability of the General method, to restore the ie method, as well as the heap spray technology. The topic is! by axis Date: 2007-02-13 Email: axisatph4nt0m.org MS07-0 0 4 out there for some time, I wrote an analysis paper, and for this...
TWiki ImageGalleryPlugin Shell Command Injection
According to its version number, the instance of TWiki running on the remote host is affected by a shell command injection vulnerability in the ImageGalleryPlugin component. In addition, the wording of a 'robustness' patch released by the vendor indicates this version may be affected by other inp...