java security update

CentOS Errata and Security Advisory CESA-2012:0729 Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring Syste...

Important: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Critical: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. VID 94c0ac4f-9388-11e1-b242-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID 94c0ac4f-9388-11e1-b242-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Code injection

The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to read arbitrary files or cause a denial of service resource consumption via unspecified vectors...

CVE-2012-2927

The CVE-2012-2927 vulnerability applies to Atlassian Jira with the TM Software Tempo Plugin. The Tempo Plugin versions affected are: 6.4.3.1 and earlier in the 6.5.x line prior to 6.5.0.2, and 7.x prior to 7.0.3. The issue is that the plugin does not properly restrict the capabilities of third‑pa...

Google Chrome Multiple Denial of Service Vulnerabilities - May 12 (Windows)

The host is installed with Google Chrome and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultdosvulnmay12win.nasl 5912 2017-04-10 09:01:51Z teissa $ Google Chrome Multiple Denial of Service Vulnerabilities - May 12 Windows Authors: Rachana...

Google Chrome Multiple Denial of Service Vulnerabilities - May 12 (Mac OS X)

The host is installed with Google Chrome and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultdosvulnmay12macosx.nasl 5940 2017-04-12 09:02:05Z teissa $ Google Chrome Multiple Denial of Service Vulnerabilities - May 12 Mac OS X Authors:...

Google Chrome Multiple Denial of Service Vulnerabilities (May 2012) - Windows

Google Chrome is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Fixes Five Bugs in Chrome 18

Google has fixed five security vulnerabilities in its Chrome browser, including three high-severity flaws. One of the less-severe vulnerabilities fixed in Chrome 18 is a race condition in the browser’s sandbox. This round of patches in Chrome is one of the rare occasions when the company didn’t...

FreeBSD : chromium -- multiple vulnerabilities (94c0ac4f-9388-11e1-b242-00262d5ed8ee)

Google Chrome Releases reports : 106413 High CVE-2011-3078: Use after free in floats handling. Credit to Google Chrome Security Team Marty Barbella and independent later discovery by miaubiz. 117627 Medium CVE-2011-3079: IPC validation failure. Credit to PinkiePie. 121726 Medium CVE-2011-3080: Ra...

CVE-2012-1521

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

Design/Logic Flaw

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2012-1521

Removed by vendor...

CVE-2012-1521

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2012-1521

CVE-2012-1521: A use-after-free in the XML parser affected Google Chrome prior to 18.0.1025.168, enabling remote denial of service or other impact via unknown vectors. The vulnerability is addressed by the Chrome update to 18.0.1025.168 or newer.

[SECURITY] Fedora 16 Update: expat-2.1.0-1.fc16

This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parse...

CVE-2012-1521

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

Google Chrome < 18.0.1025.168 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 18.0.1025.168 and is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to floating element handling and the xml parser. CVE-2011-3078, CVE-2012-1521, CVE-2011-3081 - A validation...