123 matches found
openSUSE Security Update : git-annex (openSUSE-2017-986)
This update for git-annex fixes the following issues : - CVE-2017-12976: Disallow hostname starting with a dash, which would get passed to ssh and be treated an option. This could be used by an attacker who provides a crafted repository url to cause the victim to execute arbitrary code via...
Fedora Update for php-horde-turba FEDORA-2017-449b22158f
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for chromium FEDORA-2017-c2e1dc46a1
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : tiff (openSUSE-2017-281)
This update for tiff fixes the following issues : - CVE-2017-5225: A crafted TIFF image could cause a crash and potential code execution when processed by the 'tiffcp' utility bsc1019611. Also a regression from the version update to 4.0.7 was fixed in handling TIFFTAGFAXRECVPARAMS. bsc1022103 Thi...
RedHat Update for firefox RHSA-2017:0190-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for gd FEDORA-2017-2717b02630
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 23 : php-horde-horde (2016-5763cacac0)
horde 5.2.12 - jan SECURITY: Add CSRF protection tokens to portal layout forms Reported by Florian Kllich. - jan Fix double loading of hooks.php. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted ...
Debian DSA-3602-1 : php5 - security update
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.22, which includes additional bug fixes. Please refer to the upstream changelog for mor...
openSUSE Security Update : libressl (openSUSE-2016-604)
This libressl update to version 2.2.7 fixes the following issues : Security issues fixed : - Fix multiple vulnerabilities in libcrypto relating to ASN.1 and encoding. boo978492, boo977584 - CVE-2015-3194: Certificate verify crash with missing PSS parameter boo957815 - CVE-2015-3195: X509ATTRIBUTE...
Fedora 22 : ansible1.9-1.9.6-1.fc22 (2016-28ff51a3f5)
Update to 1.9.6. Fixes bug 1327744 as well as CVE-2016-3096 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora Update for cryptopp FEDORA-2016-96
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : php-ZendFramework-1.12.16-1.fc21 (2015-f1e18131bc)
Update to 1.12.16 - fixes CVE-2015-5161: http://framework.zend.com/security/advisory/ZF2015-06 - fixes CVE-2015-5723: http://framework.zend.com/security/advisory/ZF2015-07 - removed services: DeveloperGarden, Technorati Note that Tenable Network Security has extracted the preceding description...
CentOS Update for gnutls CESA-2016:0012 centos7
Check the version of gnutls SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882357";...
Slackware 13.37 / 14.0 / 14.1 / current : blueman (SSA:2015-356-01)
New blueman packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2015-356-01. The text itself is...
Fedora 21 : phpMyAdmin-4.4.14.1-1.fc21 (2015-15386)
phpMyAdmin 4.4.14.1 2015-09-08 ================================ - security reCaptcha bypass Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 22 : firefox-37.0.2-2.fc22 / xulrunner-37.0.2-1.fc22 (2015-6629)
Update to new upstream - 37.0.2 Bookmark rebuild - Bug 1210474 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora 20 : krb5-1.11.5-18.fc20 (2015-2382)
Security fix for CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423 Security fix for CVE-2014-5351 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as muc...
mod_dav_svn, subversion security update
CentOS Errata and Security Advisory CESA-2015:0165 Updated subversion packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores,...
openSUSE Security Update : apache2 (openSUSE-SU-2013:0245-1)
httpd-2.2.x-bnc798733-SNIignorecase.diff: ignore case when checking against SNI server names. bnc798733 - httpd-2.2.x-bnc777260-CVE-2012-2687-modnegotiationfilenamexss.diff Escape filename for the case that uploads are allowed with untrusted user's control over filenames and modnegotiation...
openSUSE Security Update : gimp (openSUSE-SU-2012:1623-1)
Add gimp-CVE-2012-5576.patch: fix memory corruption vulnerability when reading XWD files bnc791372, bgo687392, CVE-2012-5576. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-842...