Feed aggregator

[security bulletin] HPSBMU03321 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code

BugTraq Latest Security Advisories - 14 hours 37 min ago

Posted by security-alert on Apr 21

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04636829

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04636829
Version: 1

HPSBMU03321 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial
of Service (DoS), Execution of Arbitrary Code

NOTICE: The information in this Security Bulletin should be acted upon as
soon as...
Categories:

next-20150421: linux-next

Linux Kernel Updates - 19 hours 39 min ago
Version:next-20150421 (linux-next) Released:2015-04-21

Bugtraq: CVE-2014-7951 adb backup archive path traversal file overwrite

Security Focus Latest Security Advisories - April 20, 2015 - 4:30am
CVE-2014-7951 adb backup archive path traversal file overwrite
Categories:

[SECURITY] [DSA 3230-1] django-markupfield security update

BugTraq Latest Security Advisories - April 20, 2015 - 4:26am

Posted by Alessandro Ghedini on Apr 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-3230-1 security () debian org
http://www.debian.org/security/ Alessandro Ghedini
April 20, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : django-markupfield
CVE ID : CVE-2015-0846

James P....
Categories:

[SECURITY] [DSA 3229-1] mysql-5.5 security update

BugTraq Latest Security Advisories - April 20, 2015 - 2:48am

Posted by Salvatore Bonaccorso on Apr 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-3229-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
April 19, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : mysql-5.5
CVE ID : CVE-2015-0433 CVE-2015-0441...
Categories:

Security Audit Notes - OpenSSL v1.0.2a (latest) Issues - Advanced Information Security Corporation

BugTraq Latest Security Advisories - April 20, 2015 - 2:41am

Posted by lem . nikolas on Apr 20

-=[Advanced Information Security Corp]=-

Author: Nicholas Lemonias
Report Date: 2/4/2015
Email: lem.nikolas (at) gmail (dot) com [email concealed]

Introduction
==========
During a source-code audit of the OpenSSL v1.0.2a (Latest)
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were observed, which could
lead to a number of attacks.

Software Overview...
Categories:

Bugtraq: CVE-2014-7954 MTP path traversal vulnerability in Android

Security Focus Latest Security Advisories - April 20, 2015 - 2:00am
CVE-2014-7954 MTP path traversal vulnerability in Android
Categories:

Bugtraq: 112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable with RCE with root privileges

Security Focus Latest Security Advisories - April 20, 2015 - 2:00am
112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable with RCE with root privileges
Categories:

next-20150420: linux-next

Linux Kernel Updates - April 20, 2015 - 12:43am
Version:next-20150420 (linux-next) Released:2015-04-20

3.10.75: longterm

Linux Kernel Updates - April 19, 2015 - 3:12am
Version:3.10.75 (longterm) Released:2015-04-19 Source:linux-3.10.75.tar.xz PGP Signature:linux-3.10.75.tar.sign Patch:patch-3.10.75.xz (Incremental) ChangeLog:ChangeLog-3.10.75

3.14.39: longterm

Linux Kernel Updates - April 19, 2015 - 3:12am
Version:3.14.39 (longterm) Released:2015-04-19 Source:linux-3.14.39.tar.xz PGP Signature:linux-3.14.39.tar.sign Patch:patch-3.14.39.xz (Incremental) ChangeLog:ChangeLog-3.14.39

3.19.5: stable

Linux Kernel Updates - April 19, 2015 - 3:11am
Version:3.19.5 (stable) Released:2015-04-19 Source:linux-3.19.5.tar.xz PGP Signature:linux-3.19.5.tar.sign Patch:patch-3.19.5.xz (Incremental) ChangeLog:ChangeLog-3.19.5

CVE-2014-7953 Android backup agent code execution

BugTraq Latest Security Advisories - April 17, 2015 - 9:55am

Posted by Imre RAD on Apr 17

Android backup agent arbitrary code execution
---------------------------------------------

The Android backup agent implementation was vulnerable to privilege
escalation and race condition. An attacker with adb shell access could
run arbitrary code as the system (1000) user (or any other valid
package). The attack is tested on Android OS 4.4.4.

The main problem is inside bindBackupAgent method in the
ActivityManagerService.
This method is...
Categories:

CVE-2014-7951 adb backup archive path traversal file overwrite

BugTraq Latest Security Advisories - April 17, 2015 - 9:45am

Posted by Imre RAD on Apr 17

ADB backup archive path traversal file overwrite
------------------------------------------------

Using adb one can create a backup of his/her Android device and store it
on the PC. The backup archive is based on the tar file format.

By modifying tar headers to contain ../../ like patterns it is possible
to overwrite files owned by the system user on writeable partitions.

An example pathname in the tar header:...
Categories:

CVE-2014-7954 MTP path traversal vulnerability in Android

BugTraq Latest Security Advisories - April 17, 2015 - 9:37am

Posted by Imre RAD on Apr 17

MTP path traversal vulnerability in Android 4.4
-----------------------------------------------

doSendObjectInfo() method of the MtpServer class implemented in
frameworks/av/media/mtp/MtpServer.cpp does not validate the name
parameter of the incoming MTP packet at all.

It is possible to upload files outside of the sdcard using a specially
crafted MTP request:

root () testpc:~/mtp-test# ./mtp-mysend sdf.txt \...
Categories:

Bugtraq: Lychee 2.7.1 remote code execution

Security Focus Latest Security Advisories - April 17, 2015 - 9:00am
Lychee 2.7.1 remote code execution
Categories:

Bugtraq: Wolf CMS 0.8.2 Arbitrary File Upload Vulnerability

Security Focus Latest Security Advisories - April 17, 2015 - 9:00am
Wolf CMS 0.8.2 Arbitrary File Upload Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3228-1] ppp security update

Security Focus Latest Security Advisories - April 17, 2015 - 9:00am
[SECURITY] [DSA 3228-1] ppp security update
Categories:

112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable with RCE with root privileges

BugTraq Latest Security Advisories - April 17, 2015 - 7:45am

Posted by Pierre Kim on Apr 17

## Advisory Information

Title: 112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable
with RCE with root privileges
Advisory URL: https://pierrekim.github.io/advisories/2015-iptime-0x00.txt.asc
Date published: 2015-04-17
Vendors contacted: KrCERT, ipTIME
Release mode: Released
CVE: no current CVE

## Product Description

EFMNetworks ipTIME is the largest Korean brand of SOHO/small/middle
entreprise Routers/WiFi APs/Modems/Firewalls in...
Categories:

Bugtraq: [CVE-2014-5361][CVE-2014-5362]Landesk Management Suite RFI & CSRF Security Vulnerabilities

Security Focus Latest Security Advisories - April 17, 2015 - 7:45am
[CVE-2014-5361][CVE-2014-5362]Landesk Management Suite RFI & CSRF Security Vulnerabilities
Categories: