openSUSE Security Update : libvirt (openSUSE-SU-2012:0347-1)

This collective update 2012/02 for Xen provides fixes for the following reports : Xen === - 649209: Fix Xen live migrations being slow - 683580: Fix hangs during boot up after the message 'Enabled directed EOI with ioapicackold on! - 691256: unable to open a connection to the XEN Hypervisor -...

openSUSE Security Update : systemd (openSUSE-2012-139)

Add fix-console-switch.patch: prevent console lockup rhb771563. - Add fix-quota.patch: correctly enable quota rhb773431. - Add passcredentials.patch: ensure compatibility with kernel 3.2 bnc743299. - Update modulesonboot.patch to not cause failed state for systemd-modules-load.service bnc741481...

openSUSE Security Update : rsyslog (openSUSE-SU-2011:0326-1)

rsyslog was updated to version 5.6.5 to fix a number of memory leaks that could crash the syslog daemon CVE-2011-1488, CVE-2011-1489, CVE-2011-1490. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...

OpenSSL Man-in-the-middle vulnerability

The Palo Alto Networks product security engineering team has completed analysis of our products' exposure to the vulnerabilities described in the OpenSSL Security Advisory dated June 5th, 2014. Of the 7 CVEs highlighted in the advisory, only CVE-2014-0224 is relevant to our software. The...

FreeBSD : mohawk -- multiple vulnerabilities (670d732a-cdd4-11e3-aac2-0022fb6fcf92)

The mohawk project reports : Segfault when parsing malformed / unescaped url, coredump when setting syslog facility. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018...

mohawk -- multiple vulnerabilities

The mohawk project reports: Segfault when parsing malformed / unescaped url, coredump when setting syslog facility...

[Nield v0.5.0] Network Interface Events Logging Daemon

nieldNetwork Interface Events Logging Daemon is a tool that receives notifications from the kernel through the netlink socket, and generates logs related to interfaces, neighbor cache ARP,NDP, IP address IPv4,IPv6, routing, FIB rules, traffic control.It can be configured using command-line option...

CVE-2013-5191

The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Guest sessions...

Information disclosure

The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Guest sessions...

CVE-2013-5191

The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Guest sessions...

CVE-2013-5191

The CVE-2013-5191 entry describes a local-information-disclosure vulnerability in the syslog implementation of Apple Mac OS X before 10.9. An attacker with access to the Guest account could read console-log messages from previous Guest sessions, revealing sensitive information. The Red Hat entry ...

Mac OS X 10.x < 10.9 Multiple Vulnerabilities (BEAST)

The remote host is running a version of Mac OS X 10.x that is prior to version 10.9. The newer version contains multiple security-related fixes for the following components : - Application Firewall - App Sandbox - Bluetooth - CFNetwork - CFNetwork SSL - Console - CoreGraphics - curl - dyld -...

CVE-2013-4258

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

DEBIAN-CVE-2013-4258

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

CVE-2013-4258

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

Format string

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

CVE-2013-4258

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

CVE-2013-4258

CVE-2013-4258 affects Network Audio System (NAS) 1.9.3. A format string vulnerability in the osLogMsg function (server/os/aulog.c) can allow remote attackers to crash NAS or possibly execute arbitrary code via format specifiers related to syslog. Public advisories note multiple vulnerabilities in...

CVE-2013-4258

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System NAS 1.9.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog...

Aanval 7.1 Build 70151 SQL Injection / Cross Site Scripting

Aanval version 7.1 build 70151 suffers from cross site scripting and remote SQL injection vulnerabilities. ----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Aanval 7.1 build 70151 ------------------------- Affected vendors:...