Red Hat Security Advisory 2016-1779-01 - In accordance with the Red Hat CloudForms Support Life Cycle Policy, support for Cloudforms 3.x will end on February 28, 2017. Red Hat will not provide extended support for this product. Customers are requested to migrate to a supported Red Hat CloudForms product prior to the end of the life cycle for CloudForms 3.x. After February 28, 2017, technical support through Red Hat's Global Support Services will no longer be provided.
6c22befc34ebe4b1c03b51bbf7c25ad661bd7f118db5425b92f5744941dc05a8Ubuntu Security Notice 3072-2 - Kangjie Lu discovered an information leak in the Reliable Datagram Sockets implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. Yue Cao et al discovered a flaw in the TCP implementation's handling of challenge acks in the Linux kernel. A remote attacker could use this to cause a denial of service or inject content into an TCP stream. Various other issues were also addressed.
96d0691fb37a717dc4538398d603c1ba2926fb7655c3ca0e94e6f32b862548e3Ubuntu Security Notice 3072-1 - Kangjie Lu discovered an information leak in the Reliable Datagram Sockets implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. Yue Cao et al discovered a flaw in the TCP implementation's handling of challenge acks in the Linux kernel. A remote attacker could use this to cause a denial of service or inject content into an TCP stream. Various other issues were also addressed.
87c2db82b8e8252d7c63bb9b84f22240a7da51fef03461bf0f74053a53450993Ubuntu Security Notice 3071-2 - USN-3071-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. Kangjie Lu discovered an information leak in the Reliable Datagram Sockets implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. Various other issues were also addressed.
3566417846c77d69e8d6e988ac18f853f3f5643c015dda7a7a0b163ac03ba13eUbuntu Security Notice 3071-1 - Kangjie Lu discovered an information leak in the Reliable Datagram Sockets implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. Yue Cao et al discovered a flaw in the TCP implementation's handling of challenge acks in the Linux kernel. A remote attacker could use this to cause a denial of service or inject content into an TCP stream. Various other issues were also addressed.
390d0ea5ed263a891c9e578a8e5adc5d81a3abf7979689b597c1dbe2ca6e2c3dUbuntu Security Notice 3070-1 - A missing permission check when settings ACLs was discovered in nfsd. A local user could exploit this flaw to gain access to any file by setting an ACL. Kangjie Lu discovered an information leak in the Reliable Datagram Sockets implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. Various other issues were also addressed.
671f73e3980f6ab5eb3168e9a016890390d6371acb18fd3ee5f1267d933eeb9dFreepbx version 13.0.35 suffers from a remote SQL injection vulnerability.
f71cd00e2fd0cddbaa2279de836b448a9e77c13832747b5c8571efd07ff97030HelpDeskz versions 1.0.2 and below suffer from a remote, unauthenticated shell upload vulnerability.
9816e22386ec0f9df3beb93d610e5baa0d34a4f759bdaa9adbe1525d615e3eaePLC Wireless Router GPN2.4P21-C-CN suffers from a file disclosure vulnerability.
336237f741b3ff70e9d07462ce23b28002d32e2db135cf5faa934722fa99eda7PHP version 5.0.0 suffers from a xmldocfile() denial of service vulnerability.
0bcc951809d8bbc757db05b3c9e9177ebc25335a43389a3460b6a44b33ff7d20Advanced File Manager version 3.0 suffers from backup disclosure and cross site scripting vulnerabilities.
793881f6a0535b252753d259c2b2584d1150cca79accb89d4b197e0ef44181acPHP version 7.0 suffers from an object cloning denial of service vulnerability.
99d5e9b3760594f8032d17ff774e17acee8cbab6077fc8d293c6f62d5d29a542Goron Web Server version 2.0 suffers from cross site request forgery, cross site scripting, and denial of service vulnerabilities.
9d72c12a74b4b68a02f0385f032f5c6393f565e4439926d16005a836fbd3c94aPHP version 5.0.0 suffers from a simplexml_load_file() local denial of service vulnerability.
f7f56c7d578c979550e3037440da381a9ed6e1368c053130143eebab2f0c8dfaMEGAsync version 2.9.9 suffers from a dll hijacking vulnerability.
467b99e7de6c333211eb620208e20c59316c0ecf3e1759eeb9e0e0987e558cf1PHP version 5.0.0 suffers from a denial of service vulnerability in domxml_open_file().
1600c83298c5e9014bb21a20b3074ea6e67bb77c93ad413d58e7a39497143b1e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed