EUVD-2003-0540

Malware in sbrugna...

CVE-2024-13974

A business logic vulnerability in the Up2Date component of Sophos Firewall older than version 21.0 MR1 20.0.1 can lead to attackers controlling the firewall’s DNS environment to achieve remote code execution...

Sophos Firewall 安全漏洞

Sophos Firewall is a firewall from Sophos UK. A security vulnerability exists in Sophos Firewall versions prior to 21.0 MR1 that stems from a business logic issue in the Up2Date component that could allow an attacker to take control of the DNS environment and execute remote code...

Vulnerabilities fixed in Sophos UTM Up2Date

Sophos has fixed multiple vulnerabilities in Up2Date for Sophos UTM. A malicious party could potentially abuse it to cause a Denial-of-Service or to perform a execute a Cross-Site Scripting XSS attack. Such an attack can result in the execution of arbitrary script code in the browser used to visi...

Vulnerabilities fixed in Sophos UTM Up2Date

Sophos has fixed multiple vulnerabilities in Up2Date for Sophos UTM. The vulnerabilities allow a remote malicious person potentially able to cause a denial-of-service or gain access gain access to sensitive information. Sophos has released updates to fix the vulnerabilities in Sophos UTM Up2Data...

Scientific Linux Security Update : up2date on SL3.x i386/x86_64

previously, up2date did not check if it was running on a KVM-based virtualized instance of Scientific Linux 3.0.9. With this update, up2date now checks for and supports running in fully-virtualized environments. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C...

gstreamer-plugins security update

0.8.5-1.0.1.EL.3 - Update release to address ULN up2date 0.8.5-1.EL.3 - Add patches for CVE-2006-4192 and CVE-2011-1574 Related: rhbz 696507...

Critical: Red Hat Security Advisory: flash-plugin - End Of Life

This update disables Adobe Flash Player 9 on Red Hat Enterprise Linux 4, as it contains multiple security flaws and should no longer be used. The Red Hat Security Response Team has rated this update as having critical security impact. The flash-plugin package contains a Mozilla Firefox compatible...

CVE-2010-1439

yum-rhn-plugin in Red Hat Network Client Tools aka rhn-client-tools on Red Hat Enterprise Linux RHEL 5 and Fedora uses world-readable permissions for the /var/spool/up2date/loginAuth.pkl file, which allows local users to access the Red Hat Network profile, and possibly prevent future security...

gnutls security update

1.0.20-4.0.1.el48.7 - Bump release to resolve ULN up2date issue 1.0.20-4.7 - fix crash in the gnutls-cli tool needed for testing 1.0.20-4.5 - fix safe renegotiation in SSL3 protocol 1.0.20-4.4 - implement safe renegotiation - CVE-2009-3555 533125...

RedHat Security Advisory RHSA-2009:1337

The remote host is missing updates announced in advisory RHSA-2009:1337. The gfs2-utils package provides the user-space tools necessary to mount, create, maintain, and test GFS2 file systems. Multiple insecure temporary file use flaws were discovered in GFS2 user level utilities. A local attacker...

RedHat Security Advisory RHSA-2009:1193

The remote host is missing updates to the Linux kernel announced in advisory RHSA-2009:1193. For details on the issues addressed in this update, please visit the referenced security advisories. Users should upgrade to these updated packages, which contain backported patches to correct these issue...

RedHat Security Advisory RHSA-2008:0002

The remote host is missing updates announced in advisory RHSA-2008:0002. OpenVAS Vulnerability Test $Id: RHSA20080002.nasl 6683 2017-07-12 09:41:57Z cfischer $ Description: Auto-generated from advisory RHSA-2008:0002 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

gstreamer-plugins security update

0.8.5-1.0.1.EL.2 - Update release to address ULN up2date 0.8.5-1.EL.2 - Add patch for CVE-2009-0397 Related: rhbz 483217...

RedHat Security Advisory RHSA-2009:0015

The remote host is missing updates announced in advisory RHSA-2009:0015. The IBM 1.6.0 Java release includes the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit. This update fixes several vulnerabilities in the IBM Java 2 Runtime Environment and the IBM Java 2 Software...

CentOS 3 / 4 : sysreport (CESA-2005:502)

An updated sysreport package that fixes an information disclosure flaw is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team Sysreport is a utility that gathers information about a system's hardware and configuration. The information...

CVE-2005-1760

sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges...

security flaw

sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges...

RHEL 2.1 : up2date (RHSA-2003:177)

Updated versions of the rhnregister and up2date packages are now available. The new packages include many bug fixes, and a few new features. The rhnregister and up2date packages contain the software necessary to take advantage of Red Hat Network functionality. The up2date package incorporates...

RHEL 2.1 : up2date (RHSA-2003:268)

New versions of the up2date and rhnregister clients are available and are required for continued access to Red Hat Network. The rhnregister and up2date packages contain the software necessary to take advantage of Red Hat Network functionality. This erratum includes an updated RHNS-CA-CERT file,...