Feed aggregator

Vuln: OpenText Documentum Content Server CVE-2017-7221 Incomplete Fix Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
OpenText Documentum Content Server CVE-2017-7221 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Vuln: Lenovo System Update CVE-2015-8110 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
Lenovo System Update CVE-2015-8110 Local Privilege Escalation Vulnerability
Categories:

Vuln: BlackBerry Broadcom Wi-Fi Driver CVE-2016-2433 Arbitrary Code Execution Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
BlackBerry Broadcom Wi-Fi Driver CVE-2016-2433 Arbitrary Code Execution Vulnerability
Categories:

Vuln: Sierra Wireless AirLink Raven ICSA-17-115-02 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
Sierra Wireless AirLink Raven ICSA-17-115-02 Multiple Security Vulnerabilities
Categories:

Vuln: OpenSSL CVE-2016-2177 Integer Overflow Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
Categories:

Vuln: Oracle WebCenter Sites CVE-2017-3543 Remote Security Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
Oracle WebCenter Sites CVE-2017-3543 Remote Security Vulnerability
Categories:

Vuln: Oracle FLEXCUBE Enterprise Limits and Collateral Management Local Security Vulnerability

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
Oracle FLEXCUBE Enterprise Limits and Collateral Management Local Security Vulnerability
Categories:

Vuln: Mozilla Firefox Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - April 26, 2017 - 11:00pm
Mozilla Firefox Multiple Security Vulnerabilities
Categories:

CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability

BugTraq Latest Security Advisories - April 26, 2017 - 3:06am

Posted by Chris Douglas on Apr 26

CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability

Severity: Important

Vendor: The Apache Software Foundation

Versions affected: Hadoop 2.6.x and earlier

Description:
HDFS clients interact with a servlet on the DataNode to browse the
HDFS namespace. The NameNode is provided as a query parameter that is
not validated.

Mitigation:
Users of Apache Hadoop 2.6.x and earlier should upgrade to Hadoop
2.7.0 or later.

Credit:
This issue was...
Categories:

April 2017 - Confluence - Security Advisory

BugTraq Latest Security Advisories - April 26, 2017 - 2:53am

Posted by David Black on Apr 26

CVE ID:

* CVE-2017-7415.

Product: Confluence.

Affected Confluence product versions:

6.0.0 <= version < 6.0.7

Fixed Confluence product versions:

* for 6.0.x, Confluence 6.0.7 has been released with a fix for this issue.

Summary:
This advisory discloses a critical severity security vulnerability
that was introduced in version 6.0.0 of Confluence. Versions of
Confluence starting with version 6.0.0 but less than 6.0.7 (the fixed
version...
Categories:

next-20170426: linux-next

Linux Kernel Updates - April 26, 2017 - 2:50am
Version:next-20170426 (linux-next) Released:2017-04-26

[SECURITY] [DSA 3834-1] mysql-5.5 security update

BugTraq Latest Security Advisories - April 26, 2017 - 2:37am

Posted by Salvatore Bonaccorso on Apr 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-3834-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
April 25, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : mysql-5.5
CVE ID : CVE-2017-3302 CVE-2017-3305...
Categories:

Bugtraq: KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials

Security Focus Latest Security Advisories - April 26, 2017 - 2:00am
KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials
Categories:

Bugtraq: KL-001-2017-008 : Solarwinds LEM Management Shell Arbitrary File Read

Security Focus Latest Security Advisories - April 26, 2017 - 2:00am
KL-001-2017-008 : Solarwinds LEM Management Shell Arbitrary File Read
Categories:

Bugtraq: KL-001-2017-007 : Solarwinds LEM Management Shell Escape via Command Injection

Security Focus Latest Security Advisories - April 26, 2017 - 2:00am
KL-001-2017-007 : Solarwinds LEM Management Shell Escape via Command Injection
Categories:

Vuln: Hyundai Motor America Blue Link ICSA-17-115-03 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - April 25, 2017 - 11:00pm
Hyundai Motor America Blue Link ICSA-17-115-03 Multiple Security Vulnerabilities
Categories:

Vuln: Joomla! CVE-2017-8057 Multiple Full Path Information Disclosure Vulnerabilities

Security Focus Latest Security Advisories - April 25, 2017 - 11:00pm
Joomla! CVE-2017-8057 Multiple Full Path Information Disclosure Vulnerabilities
Categories:

Vuln: OpenStack Keystone CVE-2017-2673 Security Bypass Vulnerability

Security Focus Latest Security Advisories - April 25, 2017 - 11:00pm
OpenStack Keystone CVE-2017-2673 Security Bypass Vulnerability
Categories:

Vuln: Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability

Security Focus Latest Security Advisories - April 25, 2017 - 11:00pm
Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability
Categories:

Vuln: IBM License Metric Tool and IBM BigFix Inventory CVE-2016-8962 Weak Password Security Vulnerability

Security Focus Latest Security Advisories - April 25, 2017 - 11:00pm
IBM License Metric Tool and IBM BigFix Inventory CVE-2016-8962 Weak Password Security Vulnerability
Categories: