Unit Converter - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Unit Converter published at the 'play' market has multiple vulnerabilities...

Qualcomm Adreno GPU MSM Driver Query Heap Overflow Vulnerability

A heap overflow vulnerability exists in the Qualcomm Adreno GPU MSM Driver, which can be exploited by an attacker to execute arbitrary code in the context of an application, which could also result in a denial of service...

UBUNTU-CVE-2016-3874

CORE/HDD/src/wlanhddwext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus 5X devices does not properly validate the arguments array, which allows attackers to gain privileges via a crafted application that sends a WEUNITTESTCMD command, aka Android internal bug 29944562 and...

Error: "1816 (0x718) ERROR_NOT_ENOUGH_QUOTA - Unknown error" when trying to join XenServer to a Domain

If you are trying to add a Resource pool to to a specific OU in Active Directory you will get theerror : "Could not enable external authentication: 1816 0x718 ERRORNOTENOUGHQUOTA - Unknown error"...

CVE-2016-7112

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions V1.03; Firmware variant IEC 104...

CVE-2016-7112

CVE-2016-7112 is an Authentication Bypass vulnerability in the Siemens EN100 Ethernet module used with SIPROTEC 4/Compact and related equipment. Affected firmware variants PROFINET IO, Modbus TCP, DNP3 TCP, and IEC 104 in all SIPROTEC 4/Compact deployments allow remote attackers with access to th...

[SECURITY] Fedora 23 Update: rubygem-actionpack-4.2.3-6.fc23

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 24 Update: rubygem-actionpack-4.2.5.2-3.fc24

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 25 Update: rubygem-actionpack-5.0.0.1-2.fc25

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Design/Logic Flaw

The Aggregated MAC Protocol Data Unit AMPDU implementation on Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.121.0 and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service device reload via a crafted AMPDU header, aka Bug ID CSCuz56288...

Unable to Communicate With Hypervisor When Using XenDesktop Setup Wizard

Unable to Communicate with Hypervisor when using XenDesktop Setup Wizard. Logs display, "object reference not set to instance of an object" When running XenDesktop Setup Wizard, error states, "cannot connect to hypervisor" Logs shows an error when checking a particular hosting unit. Checked Host...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20160802)

To see the complete list of bug fixes, users are directed to the related Knowledge Article : Security Fixes : - A flaw was found in the Linux kernel's keyring handling code, where in keyrejectandlink an uninitialised variable would eventually lead to arbitrary free address which could allow...

New Trojan SpyNote Installs Backdoor on Android Devices

A new Android Trojan called SpyNote has been identified by researchers who warn that attacks are forthcoming. The Trojan, found by Palo Alto Networks’ Unit 42 team, has not been spotted in any active campaigns, but it is now widely available on the Dark Web and that it will soon be used in a wave...

[SECURITY] Fedora 23 Update: kf5-kunitconversion-5.24.0-1.fc23

KDE Frameworks 5 Tier 2 addon for unit conversions...

[SECURITY] Fedora 24 Update: kf5-kunitconversion-5.24.0-1.fc24

KDE Frameworks 5 Tier 2 addon for unit conversions...

PowerWare Ransomware Masquerades as Locky to Intimidate Victims

A new variant of the PowerWare ransomware is stealing street creds from the Locky strain of ransomware in an attempt to spoof the malware family. A new sample of PowerWare found by Palo Alto Networks’ Unit 42 reveals the ransomware’s quickly evolving tactics. According to researchers, a new versi...

The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.

A one-unit shift error in the isrtsprequestorreply function in the epan/dissectors/packet-rtsp.c file of the RTSP dissector in Wireshark allows malicious actors operating remotely to trigger a service failure abrupt termination of the application’s operation by using a specially crafted packet th...

CVE-2016-5234

Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100, when an unspecified service is enabled, allows remote attackers to execute arbitrary code via a...

CVE-2016-5234

Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100, when an unspecified service is enabled, allows remote attackers to execute arbitrary code via a...

CVE-2016-5234

CVE-2016-5234 describes a buffer overflow in Huawei VP9660/VP9650/VP9630 MCUs and RSE6500 videoconference devices. A crafted packet enables remote code execution when an unspecified service is enabled, with devices running software before V500R002C00SPC200 (MCUs) or before V500R002C00SPC100 (RSE6...