Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 54 min 21 sec ago

Vuln: Oracle Java SE CVE-2014-0428 Remote Security Vulnerability

April 21, 2014 - 11:00pm
Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2013-5888 Local Security Vulnerability

April 21, 2014 - 11:00pm
Oracle Java SE CVE-2013-5888 Local Security Vulnerability
Categories:

Vuln: OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability

April 21, 2014 - 11:00pm
OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-0411 Remote Security Vulnerability

April 21, 2014 - 11:00pm
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
Categories:

Vuln: Google Chrome Prior to 34.0.1847.116 Multiple Security Vulnerabilities

April 21, 2014 - 11:00pm
Google Chrome Prior to 34.0.1847.116 Multiple Security Vulnerabilities
Categories:

Vuln: Oracle Java SE CVE-2014-0368 Remote Security Vulnerability

April 21, 2014 - 11:00pm
Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
Categories:

Vuln: LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability

April 21, 2014 - 11:00pm
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-0076 Information Disclosure Weakness

April 21, 2014 - 11:00pm
OpenSSL CVE-2014-0076 Information Disclosure Weakness
Categories:

Bugtraq: [SECURITY] CVE-2013-2251: Apache Archiva Remote Command Execution

April 21, 2014 - 7:30am
[SECURITY] CVE-2013-2251: Apache Archiva Remote Command Execution
Categories:

Bugtraq: [security bulletin] HPSBMU03012 rev.1 - HP Insight Management VCEM Web Client SDK (VCEMSDK) running OpenSSL, Remote Disclosure of Information

April 21, 2014 - 7:30am
[security bulletin] HPSBMU03012 rev.1 - HP Insight Management VCEM Web Client SDK (VCEMSDK) running OpenSSL, Remote Disclosure of Information
Categories:

Bugtraq: [security bulletin] HPSBMU02995 rev.4 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Di

April 21, 2014 - 7:30am
[security bulletin] HPSBMU02995 rev.4 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure
Categories:

Bugtraq: Remote Command Injection in Ruby Gem sfpagent 0.4.14

April 21, 2014 - 7:30am
Remote Command Injection in Ruby Gem sfpagent 0.4.14
Categories:

Bugtraq: [security bulletin] HPSBMU02995 rev.3 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Di

April 21, 2014 - 6:15am
[security bulletin] HPSBMU02995 rev.3 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure
Categories:

Bugtraq: [security bulletin] HPSBMU02998 rev.2 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS)

April 21, 2014 - 6:15am
[security bulletin] HPSBMU02998 rev.2 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS)
Categories:

Bugtraq: [security bulletin] HPSBGN03010 rev.1 - HP Software Server Automation, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

April 21, 2014 - 6:15am
[security bulletin] HPSBGN03010 rev.1 - HP Software Server Automation, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information
Categories:

Bugtraq: [ MDVSA-2014:079 ] json-c

April 21, 2014 - 6:15am
[ MDVSA-2014:079 ] json-c
Categories:

Vuln: Apache Tomcat CVE-2014-0033 Session Fixation Vulnerability

April 20, 2014 - 11:00pm
Apache Tomcat CVE-2014-0033 Session Fixation Vulnerability
Categories:

Vuln: Apache Tomcat CVE-2013-4590 XML External Entity Information Disclosure Vulnerability

April 20, 2014 - 11:00pm
Apache Tomcat CVE-2013-4590 XML External Entity Information Disclosure Vulnerability
Categories:

Vuln: X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability

April 20, 2014 - 11:00pm
X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
Categories:

Vuln: X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability

April 20, 2014 - 11:00pm
X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
Categories: