Deno's TLS retry copies stale upgrade hook, risking plaintext traffic

Summary A flaw in Deno's Node.js tls compatibility layer could cause a TLS client to transmit application data in plaintext after a connection retry. When autoSelectFamily was enabled and the first address-family attempt failed, the socket reinitialization path reused a stale TLS upgrade hook tha...

Virtuozzo Automator 7.0 Update 2 Hotfix 13 (VA MN: 7.0.2-674)

Hotfix 13 for Virtuozzo Automator 7.0.2 provides a stability and usability fix. Vulnerability id: PVA-37631 Virtuozzo 6 nodes could appear as offline in Virtuozzo Automator 7 due to disabled support for TLS 1.0 required by VA 6 agents. As a part of the fix, the 'sslhighsecurity' parameter was add...

openSUSE Security Update : stunnel (openSUSE-2021-160)

This update for stunnel fixes the following issues : Security issue fixed : - The 'redirect' option was fixed to properly handle 'verifyChain = yes' bsc1177580. Non-security issues fixed : - Fix startup problem of the stunnel daemon bsc1178533 - update to 5.57 : - Security bugfixes - New features...

SUSE-SU-2021:0194-1 Security update for stunnel

This update for stunnel fixes the following issues: Security issue fixed: - The 'redirect' option was fixed to properly handle 'verifyChain = yes' bsc1177580. Non-security issues fixed: - Fix startup problem of the stunnel daemon bsc1178533 - update to 5.57: Security bugfixes New features - New...

openSUSE: Security Advisory for seamonkey (openSUSE-SU-2017:0356-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for seamonkey (important)

This update for Seamonkey to version 2.46 fixes security issues and bugs. The following vulnerabilities were fixed: - Fix all Gecko related security issues between 43.0.1 and 49.0.2 - CVE-2016-6354: buffer overrun in flex boo990856 The following non-security changes are included: - improve...

openSUSE Security Update : seamonkey (openSUSE-2017-189)

This update for SeaMonkey to version 2.46 fixes security issues and bugs. The following vulnerabilities were fixed : - Fix all Gecko related security issues between 43.0.1 and 49.0.2 - CVE-2016-6354: buffer overrun in flex boo990856 The following non-security changes are included : - improve...

Drop SSlv3 retry and copied CustomSSLProtocolSocketFactory.java from SAL

panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFSERVER-36250. panel The fix for CONF-24035 introduced a retry with SSLv3 if a connection fails. However, like workaround implemented i...

CentOS Update for java CESA-2011:1380 centos5 i386

Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2011:1380 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...