Feed aggregator

[security bulletin] HPSBGN03286 rev.1 - HP LoadRunner, Buffer Overflow

BugTraq Latest Security Advisories - May 20, 2015 - 8:05am

Posted by security-alert on May 20

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04594015

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04594015
Version: 1

HPSBGN03286 rev.1 - HP LoadRunner, Buffer Overflow

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2015-05-19
Last Updated: 2015-05-19

Potential...
Categories:

Bugtraq: WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability

WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3175-2] kfreebsd-9 security update

[SECURITY] [DSA 3175-2] kfreebsd-9 security update
Categories:

3.12.43: longterm

Linux Kernel Updates - May 20, 2015 - 4:15am
Version:3.12.43 (longterm) Released:2015-05-20 Source:linux-3.12.43.tar.xz PGP Signature:linux-3.12.43.tar.sign Patch:patch-3.12.43.xz (Incremental) ChangeLog:ChangeLog-3.12.43

next-20150520: linux-next

Linux Kernel Updates - May 20, 2015 - 3:07am
Version:next-20150520 (linux-next) Released:2015-05-20

Vuln: OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability

OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability
Categories:

Vuln: OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
Categories:

Vuln: OpenSSL CVE-2015-0288 Denial of Service Vulnerability

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel 'btrfs/ctree.c' Local Privilege Escalation Vulnerability

Linux Kernel 'btrfs/ctree.c' Local Privilege Escalation Vulnerability
Categories:

Vuln: Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability

Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability
Categories:

Vuln: Zend Framework Multiple Information Disclosure and Security Bypass Vulnerabilities

Zend Framework Multiple Information Disclosure and Security Bypass Vulnerabilities
Categories:

Vuln: ProFTPD CVE-2015-3306 Information Disclosure Vulnerabilities

ProFTPD CVE-2015-3306 Information Disclosure Vulnerabilities
Categories:

Vuln: Apple iOS and TV Multiple Information Disclosure Vulnerabilities

Apple iOS and TV Multiple Information Disclosure Vulnerabilities
Categories:

Vuln: Apple Mac OS X Prior to 10.10.3 and iOS Prior to 8.3 Multiple Security Vulnerabilities

Apple Mac OS X Prior to 10.10.3 and iOS Prior to 8.3 Multiple Security Vulnerabilities
Categories:

Vuln: Apache Tomcat CVE-2014-0227 Chunk Request Remote Denial Of Service Vulnerability

Apache Tomcat CVE-2014-0227 Chunk Request Remote Denial Of Service Vulnerability
Categories:

APPLE-SA-2015-05-19-1 Watch OS 1.0.1

BugTraq Latest Security Advisories - May 19, 2015 - 1:38pm

Posted by Apple Product Security on May 19

APPLE-SA-2015-05-19-1 Watch OS 1.0.1

Watch OS 1.0.1 is now available and addresses the following:

Certificate Trust Policy
Available for: Apple Watch Sport, Apple Watch,
and Apple Watch Edition
Impact: Update to the certificate trust policy
Description: The certificate trust policy was updated. The complete
list of certificates may be viewed at
https://support.apple.com/kb/204873

FontParser
Available for: Apple Watch Sport, Apple Watch,...
Categories:

Bugtraq: [SECURITY] [DSA 3262-1] xen security update

[SECURITY] [DSA 3262-1] xen security update
Categories:

Bugtraq: OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities

OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities
Categories:

[security bulletin] HPSBPI03322 rev.1 - HP Access Control Software, Local Unauthorized Access

BugTraq Latest Security Advisories - May 19, 2015 - 9:43am

Posted by security-alert on May 19

UPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04649315
Version: 1

HPSBPI03322 rev.1 - HP Access Control Software, Local Unauthorized Access

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2015-05-19
Last Updated: 2015-05-19

Potential Security Impact: Local unauthorized access

Source: Hewlett-Packard Company, HP Software Security Response Team

VULNERABILITY SUMMARY
A...
Categories:

WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability

BugTraq Latest Security Advisories - May 19, 2015 - 6:51am

Posted by metacom27 on May 19

Technical Details & Description:
================================
A local dll injection vulnerability has been discovered in the official Wise-FTP v8.0.2 software.
The issue allows local attackers to inject code to vulnerable libraries to compromise the process or to gain higher
access privileges.

The windows software is vulnerable to dll hijacking attacks. The vulnerability is located in the Linkinfo.dll , mpr.dll
, netutils.dll ,...
Categories: