Säkerhet

HP Security Bulletin HPSBHF03646 1

Packet storm - ons, 2016-09-21 19:24
HP Security Bulletin HPSBHF03646 1 - Potential security vulnerabilities in NTP have been addressed with HPE Comware 7 (CW7) network products. The vulnerabilities could be exploited remotely resulting in Denial of Service (DoS) or other impacts affecting integrity. Revision 1 of this advisory.
Kategorier: Säkerhet

Slackware Security Advisory - irssi Updates

Packet storm - ons, 2016-09-21 19:23
Slackware Security Advisory - New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.
Kategorier: Säkerhet

Ubuntu Security Notice USN-3085-1

Packet storm - ons, 2016-09-21 19:22
Ubuntu Security Notice 3085-1 - It was discovered that the GDK-PixBuf library did not properly handle specially crafted bmp images, leading to a heap-based buffer overflow. If a user or automated system were tricked into opening a specially crafted bmp file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. It was discovered that the GDK-PixBuf library contained an integer overflow when handling certain images. If a user or automated system were tricked into opening a crafted image file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. Various other issues were also addressed.
Kategorier: Säkerhet

Symantec Outdated RAR Decomposer

Packet storm - ons, 2016-09-21 16:45
Symantec Antivirus includes RAR unpacking memory corruption issues that can lead to remote code execution.
Kategorier: Säkerhet

Microsoft Office PowerPoint 2010 Invalid Pointer Reference

Packet storm - ons, 2016-09-21 16:44
Microsoft PowerPoint 2010 suffers from an invalid pointer dereference vulnerability.
Kategorier: Säkerhet

WordPress W3 Total Cache 0.9.4.1 Cross Site Scripting

Packet storm - ons, 2016-09-21 03:11
WordPress W3 Total Cache (w3tc) plugin versions 0.9.4.1 and below suffer from a cross site scripting vulnerability.
Kategorier: Säkerhet

Apple Security Advisory 2016-09-20-6

Packet storm - tis, 2016-09-20 20:32
Apple Security Advisory 2016-09-20-6 - The tvOS 10 advisory has been released to describe issues relating to memory corruption, code execution, and more.
Kategorier: Säkerhet

Exponent CMS 2.3.9 Blind SQL Injection

Packet storm - tis, 2016-09-20 20:32
Exponent CMS versions 2.3.9 and below suffer from a remote blind SQL injection vulnerability.
Kategorier: Säkerhet

Debian: 3650-1: libgcrypt20: Summary

Linux Security - mån, 2016-08-22 20:30
Kategorier: Säkerhet

Debian: 3649-1: gnupg: Summary

Linux Security - mån, 2016-08-22 20:30
Kategorier: Säkerhet