25 matches found
Updated apache packages fix security vulnerabilities
HTTP response splitting. CVE-2024-42516 SSRF with modheaders setting Content-Type header. CVE-2024-43204 modssl error log variable escaping. CVE-2024-47252 modproxyhttp2 denial of service. CVE-2025-49630 modssl access control bypass with session resumption. CVE-2025-23048 modssl TLS upgrade attac...
2024-08 Dynamic Cumulative Update for Windows 10 Version 21H2 for ARM64-based Systems (KB5041580)
ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...
2024-07 Dynamic Cumulative Update for Windows 10 Version 22H2 for ARM64-based Systems (KB5040427)
ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...
Authorization Bypass
JBoss Application Server is the base package for JBoss Enterprise Application Platform, providing the core server components. The Java Naming and Directory Interface JNDI Java API allows Java software clients to locate objects or services in an application server. The Java Authorization Contract...
Description of the Security Only update for .NET Framework 4.5.2 for Windows 8.1 and Server 2012 R2 (KB 4470491)
Description of the Security Only update for .NET Framework 4.5.2 for Windows 8.1 and Server 2012 R2 KB 4470491 Applies to: Microsoft .NET Framework 4.5.2 Summary This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsoft .NET...
Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows 7 SP1 and Server 2008 R2 SP1 (KB 4470641)
Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows 7 SP1 and Server 2008 R2 SP1 KB 4470641 Applies to: Microsoft .NET Framework 3.5 Summary This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsof...
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 (KB 4457029)
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 KB 4457029 Summary This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when .NET Framework processes untrusted input. An attacker who successfully...
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 (KB 4344172)
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 KB 4344172 Summary This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant environments. The...
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 (KB 4095518)
Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 KB 4095518 Summary This update resolves a vulnerability in Microsoft .NET Framework that could cause denial of service when .NET Framework and .NET core components process XML documents incorrectly. An attack...
Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 (KB 4096494)
Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 KB 4096494 Summary This update resolves a vulnerability in Microsoft .NET Framework that could cause denial of service when .NET Framework and .NET core components process XML documents incorrectly. An...
MS16-035: Description of the security update for the .NET Framework 4.6 in Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1 and 4.6.1 in Windows 7 SP1 and Windows Server 2008 R2 SP1: March 8, 2016
MS16-035: Description of the security update for the .NET Framework 4.6 in Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1 and 4.6.1 in Windows 7 SP1 and Windows Server 2008 R2 SP1: March 8, 2016 November 8, 2016 A detection change was made to account for...
MS16-035: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: March 8, 2016
MS16-035: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: March 8, 2016 November 8, 2016 A detection change was made to account for the .NET Framework 4.6.1 hotfix rollup for customers who were not being correctly...
MS16-091: Description of the security update for the .NET Framework 3.5 in Windows Server 2012: July 12, 2016
MS16-091: Description of the security update for the .NET Framework 3.5 in Windows Server 2012: July 12, 2016 View products that this article applies to. Summary This update resolves a vulnerability in the Microsoft .NET Framework. The vulnerability could cause information disclosure if an attack...
MS16-041: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: April 12, 2016
MS16-041: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: April 12, 2016 View products that this article applies to. Summary This...
RHEL 5 : java-1.7.0-ibm (RHSA-2016:0100) (SLOTH)
Updated java-1.7.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
RHEL 5 : ntp (RHSA-2014:2025)
Updated ntp packages that fix several security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Scientific Linux Security Update : firefox on SL5.x, SL6.x i386/x86_64 (20130514)
Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2013-0801, CVE-2013-1674, CVE-2013-1675, CVE-2013-1676,...
SuSE 10 Security Update : ZMD (ZYPP Patch Number 7857)
This update of ZMD fixes the following issues : - use the certificates from openssl-certs. bnc723034 - retrieve and handle susedata.xml.gz. bnc722339 - fix restart behavior on update bnc731031 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, In...
RHEL 5 : ImageMagick (RHSA-2010:0652)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2010:0652 advisory. ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple image formats. An integer overflow fla...
CentOS 4 / 5 : firefox (CESA-2009:0436)
Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime...