Feed aggregator

Vuln: JBIG-KIT LibJbig Image File Handling CVE-2013-6369 Remote Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - April 13, 2014 - 11:00pm
JBIG-KIT LibJbig Image File Handling CVE-2013-6369 Remote Buffer Overflow Vulnerability
Categories:

next-20140414: linux-next

Linux Kernel Updates - April 13, 2014 - 9:00pm
Version:next-20140414 (linux-next) Released:2014-04-14

3.15-rc1: mainline

Linux Kernel Updates - April 13, 2014 - 4:18pm
Version:3.15-rc1 (mainline) Released:2014-04-13 Source:linux-3.15-rc1.tar.xz PGP Signature:linux-3.15-rc1.tar.sign Patch:patch-3.15-rc1.xz

ESA-2014-026: EMC Documentum Content Server Information Disclosure Vulnerability

BugTraq Latest Security Advisories - April 11, 2014 - 1:58pm

Posted by Security Alert on Apr 11

ESA-2014-026: EMC Documentum Content Server Information Disclosure Vulnerability

EMC Identifier: ESA-2014-026

CVE Identifier: CVE-2014-0642

Severity Rating: CVSS v2 Base Score: 4 (AV:N/AC:L/Au:S/C:P/I:N/A:N)

Affected products:
• All EMC Documentum Content Server versions of 7.1
• All EMC Documentum Content Server versions of 7.0
• All EMC Documentum Content Server versions of 6.7 SP2
• All EMC Documentum Content...
Categories:

Bugtraq: Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue

Security Focus Latest Security Advisories - April 11, 2014 - 1:45pm
Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue
Categories:

ESA-2012-032: RSA BSAFE® Micro Edition Suite Security Up date for BEAST (Browser Exploit Against SSL/TLS) attacks

BugTraq Latest Security Advisories - April 11, 2014 - 1:25pm

Posted by Security Alert on Apr 11

ESA-2012-032: RSA BSAFE® Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks

EMC Identifier: ESA-2012-032

CVE Identifier: CVE-2011-3389

Severity Rating: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:P/I:N/A:N)

Affected Products:
All versions of RSA BSAFE Micro Edition Suite (MES) except 4.0.5 and 3.2.6, all platforms

Unaffected Products:
RSA BSAFE MES 4.0.5, 3.2.6

Summary:
RSA BSAFE Micro Edition Suite...
Categories:

ESA-2014-003: RSA® Data Loss Prevention Improper Session Management Vulnerability

BugTraq Latest Security Advisories - April 11, 2014 - 1:11pm

Posted by Security Alert on Apr 11

ESA-2014-003: RSA® Data Loss Prevention Improper Session Management Vulnerability

EMC Identifier: ESA-2014-003

CVE Identifier: CVE-2014-0624

Severity Rating: CVSS v2 Base Score: 3.5 (AV:L/AC:H/Au:S/C:P/I:P/A:P)

Affected Products:
RSA Data Loss Prevention 9.0
RSA Data Loss Prevention 9.5
RSA Data Loss Prevention 9.6

Unaffected Products:
RSA Data Loss Prevention 9.6-SP2

Summary:
RSA® Data Loss Prevention versions up to 9.6 SP1 contain...
Categories:

ESA-2014-019: RSA BSAFE® Micro Edition Suite Certificate Chain Processing Vulnerability

BugTraq Latest Security Advisories - April 11, 2014 - 12:38pm

Posted by Security Alert on Apr 11

ESA-2014-019: RSA BSAFE® Micro Edition Suite Certificate Chain Processing Vulnerability

EMC Identifier: ESA-2014-019

CVE Identifier: CVE-2014-0636

Severity Rating: CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)

Affected Products:
RSA BSAFE Micro Edition Suite (MES) all 4.0.x versions prior to 4.0.5 and all 3.2.x version prior to 3.2.6

Unaffected Products:
RSA BSAFE MES 3.2.6, 4.0.5 and higher

Summary:
RSA BSAFE MES 3.2.6, 4.0.5...
Categories:

Bugtraq: CVE-2014-2384 - Invalid Pointer Dereference in VMware Workstation and Player

Security Focus Latest Security Advisories - April 11, 2014 - 12:30pm
CVE-2014-2384 - Invalid Pointer Dereference in VMware Workstation and Player
Categories:

Bugtraq: SEC Consult SA-20140411-0 :: Multiple vulnerabilities in Plex Media Server

Security Focus Latest Security Advisories - April 11, 2014 - 12:30pm
SEC Consult SA-20140411-0 :: Multiple vulnerabilities in Plex Media Server
Categories:

Bugtraq: [security bulletin] HPSBMU02995 rev.1 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, Performance Center, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of In

Security Focus Latest Security Advisories - April 11, 2014 - 12:30pm
[security bulletin] HPSBMU02995 rev.1 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, Performance Center, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information
Categories:

Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue

BugTraq Latest Security Advisories - April 11, 2014 - 12:22pm

Posted by Vulnerability Lab on Apr 11

Document Title:
===============
Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1256

Video: http://www.vulnerability-lab.com/get_content.php?id=1257

Release Date:
=============
2014-04-11

Vulnerability Laboratory ID (VL-ID):
====================================
1256

Common Vulnerability Scoring...
Categories:

Bugtraq: [SECURITY] [DSA 2900-1] jbigkit security update

Security Focus Latest Security Advisories - April 11, 2014 - 11:15am
[SECURITY] [DSA 2900-1] jbigkit security update
Categories:

CVE-2014-2384 - Invalid Pointer Dereference in VMware Workstation and Player

BugTraq Latest Security Advisories - April 11, 2014 - 9:47am

Posted by Portcullis Advisories on Apr 11

Vulnerability title: Invalid Pointer Dereference in VMware Workstation
and Player
CVE: CVE-2014-2384
Vendor: VMware
Product: Workstation, Player
Affected version: VMware WorkStation v10.0.1 build-1379776 and VMware
Player v6.0.1 build-1379776
Fixed version: N/A
Reported by: Kyriakos Economou

Details:

The vmx86.sys (32 & 64-bit) kernel mode driver shared by various VMware
Windows products such as VMware Workstation and VMWare Player, allows...
Categories:

SEC Consult SA-20140411-0 :: Multiple vulnerabilities in Plex Media Server

BugTraq Latest Security Advisories - April 11, 2014 - 8:59am

Posted by SEC Consult Vulnerability Lab on Apr 11

SEC Consult Vulnerability Lab Security Advisory < 20140411-0 >
=======================================================================
title: Multiple vulnerabilities
product: Plex Media Server
vulnerable version: confirmed in 0.9.9.10
fixed version: none
impact: High
homepage: http://www.plex.tv
found: 2014-02-06
by: Stefan Viehböck...
Categories:

Bugtraq: [ MDVSA-2014:076 ] a2ps

Security Focus Latest Security Advisories - April 11, 2014 - 8:45am
[ MDVSA-2014:076 ] a2ps
Categories:

Bugtraq: OWASP ZAP 2.3.0

Security Focus Latest Security Advisories - April 11, 2014 - 8:45am
OWASP ZAP 2.3.0
Categories:

[security bulletin] HPSBMU02995 rev.1 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, Performance Center, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

BugTraq Latest Security Advisories - April 11, 2014 - 8:16am

Posted by security-alert on Apr 11

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04236102

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04236102
Version: 1

HPSBMU02995 rev.1 - HP Software HP Service Manager, Asset Manager, UCMDB
Browser, Executive Scorecard, Server Automation, Diagnostics, LoadRunner,
Performance Center, "HeartBleed" OpenSSL...
Categories:

[SECURITY] [DSA 2900-1] jbigkit security update

BugTraq Latest Security Advisories - April 11, 2014 - 8:06am

Posted by Moritz Muehlenhoff on Apr 11

-------------------------------------------------------------------------
Debian Security Advisory DSA-2900-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 10, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : jbigkit
CVE ID : CVE-2013-6369

Florian Weimer of...
Categories:

[ MDVSA-2014:076 ] a2ps

BugTraq Latest Security Advisories - April 11, 2014 - 7:56am

Posted by security on Apr 11

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:076
http://www.mandriva.com/en/support/security/
_______________________________________________________________________

Package : a2ps
Date : April 10, 2014
Affected: Business Server 1.0
_______________________________________________________________________

Problem Description:

Updated a2ps...
Categories: