Ubuntu Security Notice 3644-1 - It was discovered that the Security component of OpenJDK did not correctly perform merging of multiple sections for the same file listed in JAR archive file manifests. An attacker could possibly use this to modify attributes in a manifest without invalidating the signature. Francesco Palmarini, Marco Squarcina, Mauro Tempesta, and Riccardo Focardi discovered that the Security component of OpenJDK did not restrict which classes could be used when deserializing keys from the JCEKS key stores. An attacker could use this to specially craft a JCEKS key store to execute arbitrary code. Various other issues were also addressed.
da85077bce5ffaf12b06fc7b23e6cb9ec18575e068ff9522ebf87774d77786ce
Micro Focus Security Bulletin MFSBGN03807 1 - A potential security vulnerability has been identified with Service Manager. The vulnerability could be exploited to perform SQL Injection against the Service Manager Web Tier which may lead to unauthorized disclosure of data. Revision 1 of this advisory.
82766721c687200a7ee36c4bffe8c0c773c31f9c18454bedb1ad525cea77824e
Slackware Security Advisory - New mariadb packages are available for Slackware 14.1 and 14.2 to fix security issues.
7c02cc03bc3d676a35e0ab978351194250114e9d9a3b8b6b80153246f7118af3
rldns is an open source lightweight DNS server for linux, netbsd, freebsd, and openbsd. Runs on x86 and x86_64 architectures.
3ef0107cfa51f2818c05a51cce9b22d87404ba178c87f4441cf3b73f5957e175
62 bytes small Linux/x86 read /etc/passwd shellcode.
389aa75d5c7fbc333382f156f8440bcdae54b44d4089a046fda1ca8ab2e58131
Dell Touchpad ApMsgFwd.exe suffers from a denial of service vulnerability.
0984679858dd4ce1447712625af7aab87b019fd0799a5a76d529e5170b87e2a9
PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
8fb9ac2f477dcfda1a39263061545a6eec9f82527ce56a9205b8137e23099f56
Debian Linux Security Advisory 4199-1 - Several security issues have been found in the Mozilla Firefox web may lead to the execution of arbitrary code or denial of service.
4c4279ea148803f813497a40913141a51472a4ca00d939b04d7dd80a94743f45