105 matches found
OPENSUSE-SU-2017:2558-1 Security update for Chromium
This update to Chromium 61.0.3163.100 fixes the following vulnerabilities: - CVE-2017-5121: Out-of-bounds access in V8 - CVE-2017-5122: Out-of-bounds access in V8 - Various fixes from internal audits, fuzzing and other initiatives...
OPENSUSE-SU-2017:2557-1 Security update for Chromium
This update to Chromium 61.0.3163.100 fixes the following vulnerabilities: - CVE-2017-5121: Out-of-bounds access in V8 - CVE-2017-5122: Out-of-bounds access in V8 - Various fixes from internal audits, fuzzing and other initiatives...
SUSE-SU-2016:2828-1 Security update for X Window System client libraries
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
OPENSUSE-SU-2016:2309-1 Recommended update for chromium
Chromium was updated to 53.0.2785.113 to fix a number of security issues and bugs. The following vulnerabilities were fixed: - CVE-2016-5170: Use after free in Blink - CVE-2016-5171: Use after free in Blink - CVE-2016-5172: Arbitrary Memory Read in v8 - CVE-2016-5173: Extension resource access -...
SUSE-SU-2015:1518-1 Security update for gnutls
gnutls was updated to fix several security vulnerabilities. - fix double free in certificate DN decoding GNUTLS-SA-2015-3bsc941794,CVE-2015-6251 - fix invalid read in octet string in bundled libtasn1 bsc929414,CVE-2015-3622 - fix ServerKeyExchange signature issue GNUTLS-SA-2015-2bsc929690...
SUSE-SU-2015:1361-1 Security update for osc
This update provides osc 0.152.0 with various fixes and improvements. This security issue was fixed: - CVE-2015-0778: Shell command injection via crafted service files. bsc901643 For a comprehensive list of changes, please refer to the package's change log...
MGASA-2015-0269 Updated virtuoso-opensource package fixes security vulnerabilities
The virtuoso-opensource package has been updated to version 6.1.8 and two additional upstream patches from versions 7.1.0 and 7.2.0 with additional fixes for unspecified security issues have been added...
SUSE-SU-2015:0660-1 Security update for haproxy
This security update for haproxy provides version 1.5.4 with various fixes, improvements and one security fix. Update from version 1.4.24 to 1.5.4 = For a detailed description, please refer to the package changelog. Security Issues: CVE-2014-6269...
SUSE-SU-2015:1020-1 Security update for autofs
autofs was updated to fix one security issue. This security issue was fixed: - CVE-2014-8169: Prevent potential privilege escalation via interpreter load path for program-based automount maps bnc917977. These non-security issues were fixed: - Dont pass sloppy option for other than nfs mounts...
SUSE-SU-2015:1173-1 Recommended update for ntp
This update for ntp provides the following fixes: Respect NTPDFORCESYNCONSTARTUP also for dynamic peers. bnc887957 Fix orphan mode. bnc883859...
MGASA-2014-0227 Updated kernel-rt packages fix multiple vulnerabilities
Updated kernel-rt provides upstream 3.12.20 kernel and fixes the following security issues: The ioapicdeliver function in virt/kvm/ioapic.c in the Linux kernel through 3.14.1 does not properly validate the kvmirqdeliverytoapic return value, which allows guest OS users to cause a denial of service...
Oracle Critical Patch Update - April 2012
A Critical Patch Update is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update advisories...
Oracle Critical Patch Update Advisory - April 2010
A Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required because of interdependencies by those security patches. Critical Patch Updates are cumulative, except as noted below, but each advisory describes only th...
Oracle Critical Patch Update Advisory - January 2010
A Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required because of interdependencies by those security patches. Critical Patch Updates are cumulative, except as noted below, but each advisory describes only th...
Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances Advisory ID: cisco-sa-20070502-asa http://www.cisco.com/warp/public/707/cisco-sa-20070502-asa.shtml Revision 1.0 Last Updated 2007 May 02 1600 UTC GMT For Public Release...
Symantec AntiVirus Remote Stack Buffer Overflow Vulnerability
Description Multiple Symantec products are prone to a remote stack buffer-overflow vulnerability. This issue allows remote attackers to execute arbitrary machine code with SYSTEM-level privileges, facilitating the complete compromise of affected computers. Symantec AntiVirus Corporate Edition 10....
Microsoft Word Malformed Object Pointer Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. The issue arises because Word fails to properly handle malformed object pointers. Reports indicate that this issue can allow remote attackers to execute arbitrary code on a vulnerable computer by supplying a malicious...
[VulnWatch] Cisco Security Advisory: Cisco Call Manager Privilege Escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Call Manager Privilege Escalation Advisory ID: cisco-sa-20060118-ccmpe http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmpe.shtml Revision 1.0 ============ For Public Release 2006 January 18 1600 UTC GMT -...
Cisco Security Advisory: Vulnerabilities in Cisco IOS Secure Shell Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: ======================= Vulnerabilities in Cisco IOS Secure Shell Server ================================================ Revision 1.0 For Public Release 2005 April 06 1600 UTC GMT -...
Cisco Security Advisory: Crafted Packet Causes Reload on Cisco Routers
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Crafted Packet Causes Reload on Cisco Routers Revision 1.0 For Public Release 2005 January 26 1600 GMT - -------------------------------------------------------------------------- Contents Summary Affected Products Details...