Important: Red Hat Security Advisory: openstack-packstack and openstack-puppet-modules security and bug fix update

Updated openstack-packstack and openstack-puppet-modules packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring...

Zend Framework Session Validators Security Bypass Vulnerability

Zend Framework ZF is an open source PHP5 development framework for developing web programs and services. A session authenticator security restriction bypass vulnerability exists in the implementation of Zend Framework, which can be exploited by an attacker to bypass certain security restrictions...

Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)

2.5.4 2014-09-03 - security 11832 CVE-2014-6072 fabpot - security 11831 CVE-2014-5245 stof - security 11830 CVE-2014-4931 aitboudad, Jeremy Derusse - security 11829 CVE-2014-6061 damz, fabpot - security 11828 CVE-2014-5244 nicolas-grekas, larowlan - bug 10197 FrameworkBundle PhpExtractor bugfix a...

[SECURITY] Fedora 11 Update: konq-plugins-4.4.0-3.fc11

Some additional plugins that interact with konqueror adblock: AdBlock plugin akregator: Add feeds directly to akregator kdepim is needed autorefresh: Refresh websites after a specifig period babelfish: Translate a website with babelfish crashes: Crash monitor dirfilter: Filter the current directo...

[SECURITY] Fedora 12 Update: konq-plugins-4.4.0-3.fc12

Some additional plugins that interact with konqueror adblock: AdBlock plugin akregator: Add feeds directly to akregator kdepim is needed autorefresh: Refresh websites after a specifig period babelfish: Translate a website with babelfish crashes: Crash monitor dirfilter: Filter the current directo...

PYSEC-2009-5

schema.py in FormEncode for Python python-formencode 1.0 does not apply the chainedvalidators feature, which allows attackers to bypass intended access restrictions via unknown vectors...

DEBIAN-CVE-2008-6547

schema.py in FormEncode for Python python-formencode 1.0 does not apply the chainedvalidators feature, which allows attackers to bypass intended access restrictions via unknown vectors...

Fedora 9 : python-formencode-1.0.1-1.fc9 (2008-6312)

The formencode package helps create validators that can check and manipulate user input before passing it to the rest of the program. Version 1.0 silently ignored one class of validators chainedvalidators that run over a set of user input rather than individual pieces. Version 1.0.1 fixes that so...

[Full-disclosure] PacSec Hype Security Team: CGI.pm param injection

====================================================================== PacSec Hype Security Team param injection in CGI.pm and inheritors allows SQL injection and manipulation of data bypassing many perl web form validators ======================================================================...