Feed aggregator

CRUCMS Crucial Networking - SQL Injection Vulnerability

BugTraq Latest Security Advisories - May 19, 2015 - 6:04am

Posted by Vulnerability Lab on May 19

Document Title:
===============
CRUCMS Crucial Networking - SQL Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1497

Release Date:
=============
2015-05-18

Vulnerability Laboratory ID (VL-ID):
====================================
1497

Common Vulnerability Scoring System:
====================================
8.2

Product & Service Introduction:...
Categories:

Bugtraq: [SECURITY] [DSA 3261-1] libmodule-signature-perl security update

[SECURITY] [DSA 3261-1] libmodule-signature-perl security update
Categories:

Bugtraq: [SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine

[SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine
Categories:

next-20150519: linux-next

Linux Kernel Updates - May 19, 2015 - 2:21am
Version:next-20150519 (linux-next) Released:2015-05-19

Vuln: Oracle Outside In Technology CVE-2015-0493 Local Heap Buffer Overflow Vulnerability

Oracle Outside In Technology CVE-2015-0493 Local Heap Buffer Overflow Vulnerability
Categories:

Vuln: Oracle Outside In Technology CVE-2015-0474 Local Security Vulnerability

Oracle Outside In Technology CVE-2015-0474 Local Security Vulnerability
Categories:

Vuln: Xen CVE-2015-2150 Denial of Service Vulnerability

Xen CVE-2015-2150 Denial of Service Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird CVE-2015-0801 Same Origin Policy Security Bypass Vulnerability

Mozilla Firefox/Thunderbird CVE-2015-0801 Same Origin Policy Security Bypass Vulnerability
Categories:

Vuln: libFLAC 'src/libFLAC/stream_decoder.c' Stack Buffer Overflow Vulnerability

libFLAC 'src/libFLAC/stream_decoder.c' Stack Buffer Overflow Vulnerability
Categories:

Vuln: Oracle Solaris CVE-2015-0471 Local Security Vulnerability

Oracle Solaris CVE-2015-0471 Local Security Vulnerability
Categories:

Vuln: OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2015-0460 Remote Security Vulnerability

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-8159 Local Privilege Escalation Vulnerability

Linux Kernel CVE-2014-8159 Local Privilege Escalation Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2015-0488 Remote Security Vulnerability

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
Categories:

[slackware-security] mozilla-thunderbird (SSA:2015-137-01)

BugTraq Latest Security Advisories - May 18, 2015 - 1:18pm

Posted by Slackware Security Team on May 18

[slackware-security] mozilla-thunderbird (SSA:2015-137-01)

New mozilla-thunderbird packages are available for Slackware 14.1 and -current
to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mozilla-thunderbird-31.7.0-i486-1_slack14.1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...
Categories:

Bugtraq: phpMyAdmin 4.4.6 Man-In-the-Middle API Github

phpMyAdmin 4.4.6 Man-In-the-Middle API Github
Categories:

Bugtraq: [SECURITY] CVE-2014-7810: Apache Tomcat Security Manager Bypass

[SECURITY] CVE-2014-7810: Apache Tomcat Security Manager Bypass
Categories:

ESA-2015-087 EMC Document Sciences xPression SQL Injection Vulnerability

BugTraq Latest Security Advisories - May 18, 2015 - 1:09pm

Posted by Security Alert on May 18

ESA-2015-087 EMC Document Sciences xPression SQL Injection Vulnerability

CVE Identifier: CVE-2015-0540

Severity Rating: CVSSv2 Base Score: 8.0 (AV:N/AC:L/Au:S/C:P/I:P/A:C)

Affected products:

• EMC Document Sciences xPression 4.2
• EMC Document Sciences xPression 4.5 SP1

Summary:

EMC Document Sciences xPression contains fixes for a SQL injection vulnerability that could potentially be exploited by
malicious users to...
Categories:

4.1-rc4: mainline

Linux Kernel Updates - May 18, 2015 - 12:13pm
Version:4.1-rc4 (mainline) Released:2015-05-18 Source:linux-4.1-rc4.tar.xz PGP Signature:linux-4.1-rc4.tar.sign Patch:patch-4.1-rc4.xz