Red Hat Security Advisory 2015-0065-01 - After May 29 2015, as per the life-cycle support policy for Red Hat Satellite, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite versions 5.5 or older.
c8785a509fb6da94c156517ecbd1c6e2d078e9d8a8f8f59602466f482bf0afccRed Hat Security Advisory 2015-0062-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's SCTP implementation handled malformed or duplicate Address Configuration Change Chunks. A remote attacker could use either of these flaws to crash the system. A flaw was found in the way the Linux kernel's SCTP implementation handled the association's output queue. A remote attacker could send specially crafted packets that would cause the system to use an excessive amount of memory, leading to a denial of service.
8fa532cd06dd1de77f51800bacc2dca0088c3a79227e555b52246b1c77aa5100Red Hat Security Advisory 2015-0068-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions. Multiple improper permission check issues were discovered in the JAX-WS, and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.
e25b209100a8178e4b52abff2325cd38a3a19ddfbe4661f42428af0ff4a622ecThe signature check of FRITZ!Box firmware images is flawed. Malicious code can be injected into firmware images without breaking the RSA signature. The code will be executed either if a manipulated firmware image is uploaded by the victim or if the victim confirms an update on the webinterface during a MITM attack.
b874a9011fb2ca0d221ff39d36dbb4e90c05998298389c0f0392ad2528babfbearticleFR CMS version 3.0.5 suffers from a remote SQL injection vulnerability.
cf0e954b5df6aa5ec410aaab404196e221790b3b12e65427bddab5a4f981b512HP Security Bulletin HPSBUX03235 SSRT101750 1 - A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.
4c2686d9217959c611f3652b5055b42e3e093e294f4e49a09149130e42581ce7Debian Linux Security Advisory 3134-1 - A vulnerability has been discovered in the web interface of sympa, a mailing list manager. An attacker could take advantage of this flaw in the newsletter posting area, which allows sending to a list, or to oneself, any file located on the server filesystem and readable by the sympa user.
0a5dda35ab510484992841f6529d9f958b414cb05e6c1281ba8d8255ee84b90aOS X 10.9.5 IOKit IntelAccelerator suffers from a null pointer dereference vulnerability. This is the proof of concept exploit released by Google.
4eb96b629d8eab7927b29a5ec7a9f92753cd3f849943a9328dda80e152688d6aOS X 10.10 IOKit IntelAccelerator suffers from a null pointer dereference vulnerability. This is the proof of concept exploit released by Google.
57e374097b155cf315fefccfe8009fda73846c7ab656b687d836fb54d450f253Exif Pilot version 4.7.2 SEH-based buffer overflow exploit.
5117c0bf1833397b5724a6e62d92a06d4545cab17646d109905ba7c4d8ebbd49articleFR CMS version 3.0.5 suffers from a remote shell upload vulnerability.
d22f88190e4b7574ddc03829fdb82d0a8e70d366f3680baa8810712c85962c4dPhotoSync version 1.1.3 suffers from a command injection vulnerability.
5abcb1cd75bd59aeb57996761ca95b4e509dc474bc01ddc164dee199ccc8913bMalwareBytes Anti-Exploit versions 1.03.1.1220 and 1.04.1.1012 suffer from a denial of service vulnerability.
3259b673e5b298e7ac53c957351c5819f461a0171a4f1b0766bfbac1cfbdacdfLizardSquad DDoS Stresser suffers from cross site scripting and session tampering vulnerabilities.
1ff93fc317417f1380a911d0977330fb8af6154bb3f6ca14db3906347d68b233RedaxScript version 2.1.0 suffers from a privilege escalation vulnerability.
ea96760481778fcaff1aee09260459c4410b1166d06bad6701d84ab80171a475Sites powered by Mangallam suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
2dff9868fab679c3c939511848689f5c99e54b6440ca99d829a1786baa56930a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed