BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 39 min 10 sec ago

several issues in SQLite (+ catching up on several other bugs)

April 14, 2015 - 8:19pm

Posted by Michal Zalewski on Apr 15

SQLite is probably the most popular embedded database in use today; it
is also known for being very well-tested and robust.

Because of its versatility, SQLite sometimes finds use as the
mechanism behind SQL-style query APIs that are exposed between
privileged execution contexts and less-trusted code. One example of
this is the WebDB / WebSQL mechanism available in some browsers; in
this setting, vulnerabilities in the SQLite parser can open up...
Categories:

whitepaper: Identifier based XSSI attacks

April 14, 2015 - 8:10pm

Posted by Takeshi Terada on Apr 15

Hello list members,

We released a new technical whitepaper titled:
"Identifier based XSSI attacks"

CVE numbers:
CVE-2014-6345, CVE-2014-7939

URL:
http://www.mbsd.jp/Whitepaper/xssi.pdf

Introduction:
-------------------------------
Cross Site Script Inclusion (XSSI) is an attack technique (or a
vulnerability) that enables attackers to steal data of certain types
across origin boundaries, by including target data using SCRIPT tag in...
Categories:

[SYSS-2015-015] Panda Gold Protection 2015 - Authentication Bypass

April 14, 2015 - 8:02pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-015
Product: Panda Gold Protection 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS GmbH)...
Categories:

[SYSS-2015-014] Panda Global Protection 2015 - Authentication Bypass

April 14, 2015 - 7:54pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-014
Product: Panda Global Protection 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS...
Categories:

[SYSS-2015-013] Panda Antivirus Pro 2015 - Authentication Bypass

April 14, 2015 - 7:47pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-013
Product: Panda Antivirus Pro 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS GmbH)...
Categories:

[SYSS-2015-012] Panda Internet Security 2015 - Authentication Bypass

April 14, 2015 - 7:40pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-012
Product: Panda Internet Security 2015
Vendor: Panda Security
Affected Version(s): 15.0.1
Tested Version(s): 15.0.1
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS...
Categories:

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

April 14, 2015 - 7:33pm

Posted by lem . nikolas on Apr 15

-=[Advanced Information Security Corporation]=-

Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference

Author: Nicholas Lemonias
Advisory Date: 14/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 / 2.4.12 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were...
Categories:

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

April 14, 2015 - 7:24pm

Posted by Nicholas Lemonias. on Apr 15

-=[Advanced Information Security Corporation]=-

Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference

Author: Nicholas Lemonias
Advisory Date: 14/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 / 2.4.12 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were...
Categories:

[CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document

April 14, 2015 - 7:16pm

Posted by Daniel Regalado on Apr 15

Product: Hancom Office Hwp 2014
Vendor: Hancom - www.hancom.com
Versions Affected (32 bits only):

HanWord Viewer 2007 (Korean)
HanWord Viewer 2010 ­ 8.5.6.1158 (English)
HwpViewer 2014 VP- 9.1.0.2186 (English)
Hwp 2014 VP - 9.0.0.1405 (English/Korean)
Version Not vulnerable:
Hwp 2014 VP - 9.1.0.2342 (English/Korean)
Credits:
Daniel Regalado, FireEye
Dan Caselden, FireEye

MITRE CVE: 2015-2810

Timeline:...
Categories:

[security bulletin] HPSBOV03318 rev.1 - HP SSL for OpenVMS, Remote Denial of Service (DoS) and other Vulnerabilities

April 13, 2015 - 2:08pm

Posted by security-alert on Apr 13

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04635715

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04635715
Version: 1

HPSBOV03318 rev.1 - HP SSL for OpenVMS, Remote Denial of Service (DoS) and
other Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...
Categories:

[security bulletin] HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code

April 13, 2015 - 1:59pm

Posted by security-alert on Apr 13

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04629160

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04629160
Version: 2

HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7
(WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote
Elevation of Privilege, Execution of Code

NOTICE: The...
Categories:

Apache HTTPD 2.4.12, 2.2.29 Security Audit - Advanced Information Security Corp

April 13, 2015 - 9:27am

Posted by lem . nikolas on Apr 13

-=[Advanced Information Security Corp]=-

Author: Nicholas Lemonias
Advisory Date: 13/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were observed, which could
possibly lead to some attacks.

Software Overview
===============

The Apache...
Categories:

Apache HTTPD 2.4.12/ 2.2.29 Security Audit Notes - Advanced Information Security Corp

April 13, 2015 - 9:19am

Posted by Nicholas Lemonias. on Apr 13

-=[Advanced Information Security Corp]=-

Author: Nicholas Lemonias
Advisory Date: 13/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were observed, which could
possibly lead to some attacks.

Software Overview
===============

The Apache...
Categories:

Ruxcon 2015 Call For Presentations

April 13, 2015 - 9:13am

Posted by cfp on Apr 13

Ruxcon 2015 Call For Presentations
Melbourne, Australia, October 24-25
CQ Function Centre

http://www.ruxcon.org.au

The Ruxcon team is pleased to announce the first round of Call For Presentations for Ruxcon 2015.

This year the conference will take place over the weekend of the 24th and 25th of October at the CQ Function Centre,
Melbourne, Australia.

The deadline for submissions is the 30th of June, 2015.

.[x]. About Ruxcon .[x].

Ruxcon is...
Categories:

[SECURITY] [DSA 3224-1] libx11 security update

April 13, 2015 - 9:02am

Posted by Moritz Muehlenhoff on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3224-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libx11
CVE ID : CVE-2013-7439

Abhishek Arya...
Categories:

[SECURITY] [DSA 3223-1] ntp security update

April 13, 2015 - 8:54am

Posted by Alessandro Ghedini on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3223-1 security () debian org
http://www.debian.org/security/ Alessandro Ghedini
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ntp
CVE ID : CVE-2015-1798 CVE-2015-1799
Debian Bug...
Categories:

[SECURITY] [DSA 3222-1] chrony security update

April 13, 2015 - 8:47am

Posted by Alessandro Ghedini on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3222-1 security () debian org
http://www.debian.org/security/ Alessandro Ghedini
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chrony
CVE ID : CVE-2015-1821 CVE-2015-1822...
Categories:

[SECURITY] [DSA 3221-1] das-watchdog security update

April 13, 2015 - 8:39am

Posted by Salvatore Bonaccorso on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3221-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : das-watchdog
CVE ID : CVE-2015-2831
Debian Bug...
Categories:

Safari iOS/OS X/Windows cookie access vulnerability

April 13, 2015 - 8:31am

Posted by Jouko Pynnonen on Apr 13

OVERVIEW
==========

The 4/8/2015 security updates from Apple included a patch for a Safari
cross-domain vulnerability. An attacker could create web content
which, when viewed by a target user, bypasses some of the normal
cross-domain restrictions to access or modify HTTP cookies belonging
to any website.

Most websites which allow user logins store their authentication
information (usually session keys) in cookies. Access to these cookies
would...
Categories:

[SECURITY] [DSA 3220-1] libtasn1-3 security update

April 13, 2015 - 8:23am

Posted by Salvatore Bonaccorso on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3220-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
April 11, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libtasn1-3
CVE ID : CVE-2015-2806

Hanno Boeck...
Categories: