AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
a2eb1883cafaad056fbe43ee1e8ae09fd36caa30a0bc8edfea5d47bd67c464f8Red Hat Security Advisory 2021-0497-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and memory leak vulnerabilities.
ebd9f4194d3e935da06d0e637af11162893635850a13479603f1f3c5ff0462cbRed Hat Security Advisory 2021-0495-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector, the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.4.1 serves as a replacement for Red Hat JBoss Web Server 5.4.0, and includes bug fixes, enhancements, and component upgrades, which are documented in the Release Notes, linked to in the References. Issues addressed include information leakage and null pointer vulnerabilities.
509af1d66234eeb0b945b2480eb44b7ab50abe8dbfb702cd95c57736319e552bRed Hat Security Advisory 2021-0494-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector, the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.4.1 serves as a replacement for Red Hat JBoss Web Server 5.4.0, and includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References. Issues addressed include information leakage and null pointer vulnerabilities.
1ce6ce10981c92ecfd2b190416f912213353234425c047f7f03ebe8cae8093d3Red Hat Security Advisory 2021-0491-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 11 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a null pointer vulnerability.
c3379ab9a117abe29d53d392163c491e114d7a9fd1909a7d4bf216974ecc360cRed Hat Security Advisory 2021-0489-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 11 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a null pointer vulnerability.
a945ce31cc7b279b0c850f7a926f2d2282fbe9067693ba741b3aa6b34abba1feBackdoor.Win32.BackAttack.18 malware suffers from a missing authentication vulnerability that can allow for remote screenshots, system restart, and more.
f1d1181c7b20a45dade4acd19939dbe503d5a1101652d99916a11ccf32e27c23Red Hat Security Advisory 2021-0485-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling, denial of service, and use-after-free vulnerabilities.
59bfe9bc5d59d5769fb91cdff0a5c374847be24b19e139ee52443c1687ee41acOnline Marriage Registration System (OMRS) version 1.0 remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman in June of 2020.
0b988c57a1f19668b972345f07ad174bcbd8fba23062032536f90e7035468ee9Red Hat Security Advisory 2021-0488-01 - Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release adds the new Apache HTTP Server 2.4.37 Service Pack 6 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 5 and includes bug fixes and enhancements. Issues addressed include a null pointer vulnerability.
fb1cf902853d367b655b03bfff146db5836033f18cf8a6aa748e54b1b7a8ea94Ubuntu Security Notice 4733-1 - Yiğit Can Yılmaz discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution.
158f7ba2fb87eb719b1d798898ffd8f23c73117e4da0501b9180597cbb825711Ubuntu Security Notice 4732-1 - It was discovered that SQLite incorrectly handled certain sub-queries. An attacker could use this issue to cause SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code.
1c4a93fd7335512973baefa8ff4f2c53f258a7a1ec39d3e8003f05386b6c4418Red Hat Security Advisory 2021-0486-01 - This release adds the new Apache HTTP Server 2.4.37 Service Pack 6 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 5 and includes bug fixes and enhancements. Issues addressed include a null pointer vulnerability.
70a9190493201fc49a86dd51df355a7c71f6906fb4de3bc80814b00dd3856cbbUbuntu Security Notice 4731-1 - It was discovered that JUnit 4 contains a local information disclosure vulnerability. An attacker could possibly use this issue to obtain sensitive information.
491862f8a74201dbf19ccc62e5b85e8ea6ae9d328bae8efd42ba893dc7df4f6cUbuntu Security Notice 4730-1 - It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in an SRS address.
ee90191636f48c043fa2919f3ba6fecddbe050ae790ffd2952948b073c557357Red Hat Security Advisory 2021-0476-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.103 and .NET Runtime 5.0.3. Issues addressed include a denial of service vulnerability.
efb98e6a661b761429ed5b832557aae16f703c086f53d65b65a278f1d093044fRed Hat Security Advisory 2021-0474-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 2.1.521 and .NET Core Runtime 2.1.25. Issues addressed include a denial of service vulnerability.
36305433f54eb18ab83d71c2712e571aa309c3d7eaa34ea6b51202b8e46be05fOpenlitespeed WebServer version 1.7.8 remote command injection exploit. Original discovery of command injection in this version is attributed to cm0s from SunCSR in January of 2021.
60f1f051bd798dab7089a4bee09f5a1d2479058f12087a17278967d49b845cf1Red Hat Security Advisory 2021-0470-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 2.1.521 and .NET Core Runtime 2.1.25. Issues addressed include a denial of service vulnerability.
d37efab5111ea654de1db6d5d5fc71ce1d7406c2f2725148daa7743e5cb9af86Red Hat Security Advisory 2021-0472-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 3.1.112 and .NET Core Runtime 3.1.12. Issues addressed include a denial of service vulnerability.
a20b4f57b11c7ab690c45ea972eecb3554687031aa004ff52cdadd69e117199bRed Hat Security Advisory 2021-0473-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.103 and .NET Runtime 5.0.3. Issues addressed include a denial of service vulnerability.
ee76eef1fe5126f8f1bc7eb18b69d3dac003550c6bc52b66a3c212d40356010bRed Hat Security Advisory 2021-0471-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 3.1.112 and .NET Core Runtime 3.1.12. Issues addressed include a denial of service vulnerability.
bec960c06d0a2598d345fca72c3cce98396783bc052b4eaacc8a5f1c52d3eb9bUbuntu Security Notice 4729-1 - Joakim Hindersson discovered that Open vSwitch incorrectly parsed certain network packets. A remote attacker could use this issue to cause a denial of service, or possibly alter packet classification.
d6aa8d2ce2b458dc221d2d94f1e4db47db34c99d24465cc1b519cfa3cc28f287Backdoor.Win32.Augudor.a malware suffers from a code execution vulnerability.
9ea94d39200a50f8a70a8edc2d711b64cd27c932ffce9d43b1f8d33b414ae1d7PEEL Shopping version 9.3.0 suffers from a persistent cross site scripting vulnerability.
9f247fef76893d4274aea008dd5de74ed53ceee2287b1545b4111c962a5b314d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed