144 matches found
Sandsifter - The X86 Processor Fuzzer
The sandsifter audits x86 processors for hidden instructions and hardware bugs, by systematically generating machine code to search through a processor's instruction set, and monitoring execution for anomalies. Sandsifter has uncovered secret processor instructions from every major vendor;...
SUSE-SU-2018:2340-1 Security update for qemu
This update for qemu to version 2.11.2 fixes the following issues: Security issue fixed: - CVE-2018-11806: Fix heap buffer overflow issue that can happen while reassembling fragmented datagrams bsc1096223. - CVE-2018-3639: Mitigation functionality for Speculative Store Bypass issue in x86...
MGASA-2018-0302 Updated webkit2 packages fix security vulnerability
The webkit2 package has been updated to version 2.20.3, fixing several security issues and other bugs...
MGASA-2018-0116 Updated ffmpeg packages fix security vulnerability
This update provides ffmpeg version 3.3.6, which fixes several security vulnerabilities and other bugs which were corrected upstream...
MGASA-2018-0005 Updated webkit2 packages fix security vulnerabilities
The webkit2 package has been updated to version 2.18.4, fixing several security issues and other bugs...
MGASA-2017-0446 Updated ffmpeg packages fix security vulnerability
This update provides ffmpeg version 3.3.5, which fixes several security vulnerabilities and other bugs which were corrected upstream...
MGASA-2017-0425 Updated webkit2 packages fix security vulnerabilities
The webkit2 package has been updated to version 2.18.3, fixing several security issues and other bugs...
Threat Predictions for Automotive in 2018
The landscape in 2017 Modern cars are no longer just electro-mechanical vehicles. With each generation, they become more connected and incorporate more intelligent technologies to make them smarter, more efficient, comfortable and safe. The connected-car market is growing at a five-year compound...
MGASA-2017-0226 Updated wireshark packages fix security vulnerabilities
The wireshark package has been updated to version 2.2.8, which fixes several security issues where a malformed packet trace could cause it to crash or go into an infinite loop, and fixes several other bugs as well. See the release notes for details...
MGASA-2017-0219 Updated wireshark packages fix security vulnerabilities
The wireshark package has been updated to version 2.0.14, which fixes several security issues where a malformed packet trace could cause it to crash or go into an infinite loop, and fixes several other bugs as well. See the release notes for details...
SUSE-SU-2017:0601-1 Security update for compat-openssl097g
This update for compat-openssl097g fixes the following issues contained in the OpenSSL Security Advisory 26 Jan 2017 bsc1021641 Security issues fixed: - CVE-2016-8610: A remote denial of service in SSL alert handling was fixed bsc1005878 - degrade 3DES to MEDIUM in SSL2 bsc1001912 - CVE-2016-2108...
OPENSUSE-SU-2016:3307-1 Security update for MozillaThunderbird
This update to Mozilla Thunderbird 45.6.0 fixes security issues and bugs. In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. The following vulnerabilities were...
MGASA-2016-0355 Updated php packages fix security vulnerability
The php package has been updated to version 5.6.27, which fixes several security issues and other bugs. See the upstream ChangeLog for more details...
SUSE-SU-2016:2246-1 Security update for perl
This update for perl fixes the following issues: - CVE-2016-6185: xsloader looking at a 'eval' directory bsc988311 - CVE-2016-1238: searching current directory for optional modules bsc987887 - CVE-2015-8853: regex engine hanging on bad utf8 bnc976584 - CVE-2016-2381: environment dup handling bug...
SUSE-SU-2016:1944-1 Security update for libvirt
This update for libvirt fixes the following issues: Security issues fixed: - CVE-2016-5008: empty VNC password disables authentication bsc987527 Bugs fixed: - bsc970906: Fixed a race condition in xenstore event handling. - bsc952889: Change hap setting to align with Xen behavior. - Fixed 'make...
MGASA-2016-0275 Updated wireshark packages fix security vulnerability
The wireshark package has been updated to version 2.0.5, which fixes several security issues where a malformed packet trace could cause it to crash or go into an infinite loop, and fixes several other bugs as well. See the release notes for details...
MGASA-2016-0155 Updated roundcubemail packages fix security vulnerabilities
Updated roundcubemail packages fix security vulnerabilities: More security issues in the DBMail driver for the password plugin, related to CVE-2015-2181. XSS issue in SVG images handling CVE-2015-8864. Lack of protection for attachment download URLs against CSRF CVE-2016-4069. The roundcubemail...
MGASA-2016-0087 Updated drupal packages fix security vulnerabilities
Updated drupal packages fix security vulnerabilities: The drupal package has been update to version 7.43, which fixes several security issues and other bugs. See the upstream advisory and release notes for details...
SUSE-SU-2016:0265-1 Security update for java-1_7_0-openjdk
java-170-openjdk was updated to version 7u95 to fix 9 security issues. bsc962743 - CVE-2015-4871: Rebinding of the receiver of a DirectMethodHandle may allow a protected method to be accessed - CVE-2015-7575: Further reduce use of MD5 SLOTH bsc960996 - CVE-2015-8126: Vulnerability in the AWT...
SUSE-SU-2015:2384-1 Security update for xfsprogs
xfsprogs was updated to fix one security vulnerability and several bugs. - Handle unwanted data disclosure in xfsmetadump bsc939367, CVE-2012-2150...