[ MDVSA-2014:191 ] perl-XML-DT

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:191 http://www.mandriva.com/en/support/security/ Package : perl-XML-DT Date : September 29, 2014 Affected: Business Server 1.0 Problem Description: Updated perl-XML-DT package fixes security vulnerability: T...

CVE-2014-7277 Stored Server XSS in ZyXEL SBG-3300 Security Gateway

Vulnerability Title: Stored Server XSS in ZyXEL SBG-3300 Security Gateway Date: 02/10/2014 CVE-ID: CVE-2014-7277 Product: ZyXEL SBG3300-N series Vendor: www.zyxel.com Affected Firmware: Latest version at the time of disclosure V1.00AADY.4C0 and below tested Patch: Unpatched Authored by: Mirko...

Ultra Electronics / AEP Networks SSL VPN security vulnerabilities

SQL injection, directory traversal...

libvirt security vulnerabilities

DoS vulnerabilities...

[SECURITY] [DSA 3040-1] rsyslog security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3040-1 [email protected] http://www.debian.org/security/ September 30, 2014 http://www.debian.org/security/faq -...

CVE-2014-7278 DoS in ZyXEL SBG-3300 Security Gateway

Vulnerability Title: DoS in ZyXEL SBG-3300 Security Gateway Date: 02/10/2014 CVE-ID: CVE-2014-7278 Product: ZyXEL SBG3300-N series Vendor: www.zyxel.com Affected Firmware: Latest version at the time of disclosure V1.00AADY.4C0 and below tested Patch: Unpatched Authored by: Mirko Casadei Disclosur...

[security bulletin] HPSBGN03117 rev.1 - HP Remote Device Access: Virtual Customer Access System (vCAS) running Bash Shell, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04467807 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04467807 Version: 1 HPSBGN03117 rev....

Ultra Electronics / AEP Networks - SSL VPN (Netilla / Series A / Ultra Protect) Vulnerabilities

Ultra Electronics / AEP Networks - SSL VPN Netilla / Series A / Ultra Protect Vulnerabilities http://www.osisecurity.com.au/advisories/ultra-aep-netilla-vulnerabilities Release Date: 02-Oct-2014 Software: Ultra Electronics - Series A...

Google Chrome / Chromium multiple security vulnerabilities

Restrictions bypass, memroy corruptions, information leakage, URL spoofing...

[USN-2366-1] libvirt vulnerabilities

========================================================================== Ubuntu Security Notice USN-2366-1 September 30, 2014 libvirt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives:...

[security bulletin] HPSBST02958 rev.1 - HP MPIO Device Specific Module Manager, Local Execution of Arbitrary Code with Privilege Elevation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04048122 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04048122 Version: 1 HPSBST02958 rev....

[ MDVSA-2014:195 ] libvirt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:195 http://www.mandriva.com/en/support/security/ Package : libvirt Date : October 3, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...

NEW VMSA-2014-0010 - VMware product updates address critical Bash security vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VMware Security Advisory Advisory ID: VMSA-2014-0010 Synopsis: VMware product updates address critical Bash security vulnerabilities Issue date: 2014-09-30 Updated on: 2014-09-30 Initial Advisory CVE numbers: CVE-2014-6271, CVE-2014-7169, CVE-2014-718...

elasticsearch weak CORS policy

Crossite requests to local network are possible...

[security bulletin] HPSBHF03119 rev.2 - HP DreamColor Professional Display running Bash Shell, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04468293 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04468293 Version: 2 HPSBHF03119 rev....

net-snmp DoS

snmptrapd NULL pointer dereference...

SmarterTools Smarter Track 6-10 - Information Disclosure Vulnerability

Document Title: =============== SmarterTools Smarter Track 6-10 - Information Disclosure References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1298 Tracking ID: 088-1B879F0C-0A22 Release Date: ============= 2014-09-22 Vulnerability Laboratory ID VL-ID:...

WWW File Share Pro v7.0 - Denial of Service Vulnerability

Document Title: =============== WWW File Share Pro v7.0 - Denial of Service Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1310 Video: http://www.vulnerability-lab.com/getcontent.php?id=1309 http://cwe.mitre.org/data/definitions/121.html...

libvncserver multiple security vulnerabilities

Buffer overflows, memory corruptions, DoS...

nginx information leakage

Invalid cached session reusage...

ChatSecure IM v2.2.4 iOS - Persistent Web Vulnerability

Document Title: =============== ChatSecure IM v2.2.4 iOS - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1317 Release Date: ============= 2014-09-10 Vulnerability Laboratory ID VL-ID: ==================================== 13...

Glype proxy cookie jar path traversal allows code execution

------------------------------------------------------------------------ Glype proxy cookie jar path traversal allows code execution ------------------------------------------------------------------------ Securify, September 2014...

[USN-2351-1] nginx vulnerability

========================================================================== Ubuntu Security Notice USN-2351-1 September 22, 2014 nginx vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Glype proxy local address filter bypass

------------------------------------------------------------------------ Glype proxy local address filter bypass ------------------------------------------------------------------------ Securify, September 2014 ------------------------------------------------------------------------ Abstract...

wireshark multiple security vulnerabilities

Multiple memory corruptions and DoS conditions on dufferent formats...

USB&WiFi Flash Drive v1.3 iOS - Code Execution Vulnerability

Document Title: =============== USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1316 Release Date: ============= 2014-09-15 Vulnerability Laboratory ID VL-ID: ===================================...

Linux kernel multiple security vulnerabilities

SCTP DoS, ALSA multiple DoS and information leakage, autofs DoS...

[ MDVSA-2014:184 ] net-snmp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:184 http://www.mandriva.com/en/support/security/ Package : net-snmp Date : September 24, 2014 Affected: Business Server 1.0 Problem Description: Updated net-snmp packages fix security vulnerabilities: A remo...

Cisco IOS multiple security vulnerabilities

Multiple DoS conditions...

[ MDVSA-2014:188 ] wireshark

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:188 http://www.mandriva.com/en/support/security/ Package : wireshark Date : September 25, 2014 Affected: Business Server 1.0 Problem Description: Updated wireshark packages fix security vulnerabilities: RTP...

GS Foto Uebertraeger v3.0 iOS - File Include Vulnerability

Document Title: =============== GS Foto Uebertraeger v3.0 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1325 Release Date: ============= 2014-09-22 Vulnerability Laboratory ID VL-ID: ====================================...

Glype filtering bypass

Access by decimal addresses is possible. Directory traversal...

Briefcase 4.0 iOS - Code Execution & File Include Vulnerability

Document Title: =============== Briefcase 4.0 iOS - Code Execution & File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1319 Release Date: ============= 2014-09-11 Vulnerability Laboratory ID VL-ID:...

Perl stack overflow

Buffer overflow on recursion...

libgadu certificate check bypass

Server certificate is not checked...

[ MDVSA-2014:185 ] libgadu

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:185 http://www.mandriva.com/en/support/security/ Package : libgadu Date : September 24, 2014 Affected: Business Server 1.0 Problem Description: Updated libgadu packages fix security vulnerability: Libgadu...

Photorange v1.0 iOS - File Include Web Vulnerability

Document Title: =============== Photorange v1.0 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1318 Release Date: ============= 2014-09-07 Vulnerability Laboratory ID VL-ID: ==================================== 1318...

LSE Leading Security Experts GmbH - LSE-2014-06-10 - Perl CORE - Deep Recursion Stack Overflow

=== LSE Leading Security Experts GmbH - Security Advisory LSE-2014-06-10 === Perl CORE - Deep Recursion Stack Overflow ----------------------------------------- Affected Versions ================= Perl v5.20.1 and below Issue Overview ============== Vulnerability Type: Stack Overflow Technical...

Mozilla NSS library RSA siagnature forgery

Signature validation bypass due to invalid length check in ASN.1 record...

Apple iOS v7.1.2 - Merge Apps Service Local Bypass Vulnerability

Document Title: =============== Apple iOS v7.1.2 - Merge Apps Service Local Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1280 Video: http://www.vulnerability-lab.com/getcontent.php?id=1281 Vulnerability Magazine:...

[USN-2359-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2359-1 September 23, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Glype proxy privacy settings can be disabled via CSRF

------------------------------------------------------------------------ Glype proxy privacy settings can be disabled via CSRF ------------------------------------------------------------------------ Securify, September 2014 ------------------------------------------------------------------------...

[oCERT-2014-007] libvncserver multiple issues

2014-007 libvncserver multiple issues Description: Virtual Network Computing VNC is a graphical sharing system based on the Remote Frame Buffer RFB protocol. The LibVNCServer project, an open source library for implementing VNC compliant communication, suffers from a number of bugs that can be...

Re: [oss-security] CVE-2014-6271: remote code execution through bash

On Wed, Sep 24, 2014 at 04:05:51PM +0200, Florian Weimer wrote: Stephane Chazelas discovered a vulnerability in bash, related to how environment variables are processed: trailing code in function definitions was executed, independent of the variable name. In many common configurations, this...

Re: [oss-security] CVE-2014-6271: remote code execution through bash

Florian Weimer: Chet Ramey, the GNU bash upstream maintainer, will soon release official upstream patches. http://ftp.gnu.org/pub/gnu/bash/bash-3.0-patches/bash30-017 http://ftp.gnu.org/pub/gnu/bash/bash-3.1-patches/bash31-018 http://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-052...

[oss-security] Re: CVE-2014-6271: remote code execution through bash

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITRE is currently using CVE-2014-7169 to track the report of the incomplete patch, i.e., incorrect function parsing that's present in builds that are up-to-date with the http://ftp.gnu.org/gnu/bash/bash-4.3-patches/bash43-025 changes. We realize that...

[USN-2353-1] APT vulnerability

========================================================================== Ubuntu Security Notice USN-2353-1 September 23, 2014 apt vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

apt multiple security vulnerabilities

Protection bypass, restrictions bypass...

Re: [oss-security] CVE-2014-6271: remote code execution through bash

On Wed, Sep 24, 2014 at 12:08:46PM -0400, Chet Ramey wrote: On 9/24/14, 11:16 AM, Solar Designer wrote: I see no good workaround. You're correct; there is not a good workaround. Since there are publicly available patches for all bash versions back 15 years or so, though, the best path forward is ...

Re: [oss-security] CVE-2014-6271: remote code execution through bash

Tavis Ormandy just tweetet this: https://twitter.com/taviso/status/514887394294652929 The bash patch seems incomplete to me, function parsing is still brittle. e.g. $ env X=' a=' sh -c "echo date"; cat echo -- Hanno Bock http://hboeck.de/ mail/jabber: [email protected] GPG: BBB51E42...