Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 1 hour 11 min ago

Vuln: Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability

April 15, 2014 - 11:00pm
Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0509 Unspecified Cross Site Scripting Vulnerability

April 15, 2014 - 11:00pm
Adobe Flash Player and AIR CVE-2014-0509 Unspecified Cross Site Scripting Vulnerability
Categories:

Vuln: Udisks and Udisks2 Long Path Names Local Stack Buffer Overflow Vulnerability

April 15, 2014 - 11:00pm
Udisks and Udisks2 Long Path Names Local Stack Buffer Overflow Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability

April 15, 2014 - 11:00pm
Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability

April 15, 2014 - 11:00pm
Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
Categories:

Vuln: Xen Linux netback CVE-2014-2580 Remote Denial of Service Vulnerability

April 15, 2014 - 11:00pm
Xen Linux netback CVE-2014-2580 Remote Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-2568 Information Disclosure Vulnerability

April 15, 2014 - 11:00pm
Linux Kernel CVE-2014-2568 Information Disclosure Vulnerability
Categories:

Vuln: OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability

April 15, 2014 - 11:00pm
OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability
Categories:

Vuln: OpenSSL DTLS Implementations Man in the Middle Multiple Security Bypass Vulnerabilities

April 15, 2014 - 11:00pm
OpenSSL DTLS Implementations Man in the Middle Multiple Security Bypass Vulnerabilities
Categories:

Vuln: LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability

April 15, 2014 - 11:00pm
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness

April 15, 2014 - 11:00pm
Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0507 Unspecified Buffer Overflow Vulnerability

April 15, 2014 - 11:00pm
Adobe Flash Player and AIR CVE-2014-0507 Unspecified Buffer Overflow Vulnerability
Categories:

Vuln: Samba 'pam_winbind' Configuration File Security Bypass Vulnerability

April 15, 2014 - 11:00pm
Samba 'pam_winbind' Configuration File Security Bypass Vulnerability
Categories:

Bugtraq: VUPEN Security Research - Adobe Flash ExternalInterface Use-After-Free Code Execution (Pwn2Own)

April 15, 2014 - 1:15pm
VUPEN Security Research - Adobe Flash ExternalInterface Use-After-Free Code Execution (Pwn2Own)
Categories:

Bugtraq: [SECURITY] [DSA 2903-1] strongswan security update

April 15, 2014 - 1:15pm
[SECURITY] [DSA 2903-1] strongswan security update
Categories:

Bugtraq: [security bulletin] HPSBMU02998 rev.1 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information

April 15, 2014 - 12:00pm
[security bulletin] HPSBMU02998 rev.1 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information
Categories:

Bugtraq: [security bulletin] HPSBMU02994 rev.1 - HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL, Remote Disclosure of Information

April 15, 2014 - 12:00pm
[security bulletin] HPSBMU02994 rev.1 - HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL, Remote Disclosure of Information
Categories:

Bugtraq: CVE-2013-6216 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in multiple HP products on Linux

April 15, 2014 - 12:00pm
CVE-2013-6216 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in multiple HP products on Linux
Categories:

Bugtraq: [security bulletin] HPSBMU02995 rev.2 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Di

April 15, 2014 - 12:00pm
[security bulletin] HPSBMU02995 rev.2 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure
Categories:

Bugtraq: Adobe Reader for Android exposes insecure Javascript interfaces

April 15, 2014 - 10:45am
Adobe Reader for Android exposes insecure Javascript interfaces
Categories: