Feed aggregator

3.2.65: longterm

Linux Kernel Updates - December 14, 2014 - 11:24am
Version:3.2.65 (longterm) Released:2014-12-14 Source:linux-3.2.65.tar.xz PGP Signature:linux-3.2.65.tar.sign Patch:patch-3.2.65.xz (Incremental) ChangeLog:ChangeLog-3.2.65

2.6.32.65: longterm

Linux Kernel Updates - December 13, 2014 - 9:16am
Version:2.6.32.65 (longterm) Released:2014-12-13 Source:linux-2.6.32.65.tar.xz PGP Signature:linux-2.6.32.65.tar.sign Patch:patch-2.6.32.65.xz (Incremental) ChangeLog:ChangeLog-2.6.32.65

Vuln: Oracle Java SE CVE-2014-4216 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 13, 2014 - 12:00am
Oracle Java SE CVE-2014-4216 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4220 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 13, 2014 - 12:00am
Oracle Java SE CVE-2014-4220 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4263 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 13, 2014 - 12:00am
Oracle Java SE CVE-2014-4263 Remote Security Vulnerability
Categories:

ESA-2014-173: RSA® Authentication Manager Unvalidated Re direct Vulnerability

BugTraq Latest Security Advisories - December 12, 2014 - 11:38am

Posted by Security Alert on Dec 12

ESA-2014-173: RSA® Authentication Manager Unvalidated Redirect Vulnerability

EMC Identifier: ESA-2014-173

CVE Identifier: CVE-2014-2516

Severity Rating: CVSS v2 Base Score: 5.8 (AV:N/AC:M/Au:N/C:P/I:P/A:N)

Affected Products:
• RSA Authentication Manager 8.1
• RSA Authentication Manager 8.0

Unaffected Products:
• RSA Authentication Manager 7.1
• RSA Authentication Manager 6.1

Summary:
A potential...
Categories:

ESA-2014-163: RSA Archer® GRC Platform Multiple Vulnerab ilities

BugTraq Latest Security Advisories - December 12, 2014 - 11:28am

Posted by Security Alert on Dec 12

ESA-2014-163: RSA Archer® GRC Platform Multiple Vulnerabilities

EMC Identifier: ESA-2014-163

CVE Identifier: See below for individual identifiers

Severity Rating: View details below for individual CVSSv2 scores

Affected Products:
RSA Archer GRC Platform version 5.x

Summary:
RSA Archer GRC 5.5.1.1 Platform contains fixes for multiple security vulnerabilities that could potentially be
exploited by malicious users to compromise the...
Categories:

ESA-2014-164: EMC Isilon InsightIQ Cross-Site Scripting Vulnerability

BugTraq Latest Security Advisories - December 12, 2014 - 11:18am

Posted by Security Alert on Dec 12

ESA-2014-164: EMC Isilon InsightIQ Cross-Site Scripting Vulnerability

EMC Identifier: ESA-2014-164

CVE Identifier: CVE-2014-4628

Severity Rating: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

Affected products:
• EMC Isilon InsightIQ 3.0.1
• EMC Isilon InsightIQ 3.0.0
• EMC Isilon InsightIQ 2.5.2
• EMC Isilon InsightIQ 2.5.1
• EMC Isilon InsightIQ 2.5.0
• EMC Isilon InsightIQ 2.1.0
•...
Categories:

Bugtraq: [security bulletin] HPSBUX03162 SSRT101767 rev.3 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack

Security Focus Latest Security Advisories - December 12, 2014 - 11:00am
[security bulletin] HPSBUX03162 SSRT101767 rev.3 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack
Categories:

Bugtraq: [SECURITY] [DSA 3099-1] dbus security update

Security Focus Latest Security Advisories - December 12, 2014 - 11:00am
[SECURITY] [DSA 3099-1] dbus security update
Categories:

Bugtraq: APPLE-SA-2014-12-11-1 Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2

Security Focus Latest Security Advisories - December 12, 2014 - 11:00am
APPLE-SA-2014-12-11-1 Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2
Categories:

next-20141212: linux-next

Linux Kernel Updates - December 12, 2014 - 2:30am
Version:next-20141212 (linux-next) Released:2014-12-12

[security bulletin] HPSBUX03162 SSRT101767 rev.3 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack

BugTraq Latest Security Advisories - December 12, 2014 - 2:28am

Posted by security-alert on Dec 12

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04492722

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04492722
Version: 3

HPSBUX03162 SSRT101767 rev.3 - HP-UX Running OpenSSL, Remote Denial of
Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack

NOTICE: The information in this Security Bulletin should be acted upon...
Categories:

Docker 1.3.3 - Security Advisory [11 Dec 2014]

BugTraq Latest Security Advisories - December 12, 2014 - 2:19am

Posted by Eric Windisch on Dec 12

Docker 1.3.3 has been released to address several vulnerabilities and is immediately available for all supported
platforms: https://docs.docker.com/installation/

This release addresses vulnerabilities which could be exploited by a malicious Dockerfile, image, or registry to
compromise a Docker host, modify images, or spoof official repository images. Note that today we also saw the release
of Docker 1.4.0, also containing these fixes. While...
Categories:

[SECURITY] [DSA 3099-1] dbus security update

BugTraq Latest Security Advisories - December 12, 2014 - 2:11am

Posted by Florian Weimer on Dec 12

-------------------------------------------------------------------------
Debian Security Advisory DSA-3099-1 security () debian org
http://www.debian.org/security/ Florian Weimer
December 11, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : dbus
CVE ID : CVE-2014-7824

Simon McVittie...
Categories:

Bugtraq: ResourceSpace Multiple Cross Site Scripting, and HTML and SQL Injection Vulnerabilities

Security Focus Latest Security Advisories - December 12, 2014 - 1:15am
ResourceSpace Multiple Cross Site Scripting, and HTML and SQL Injection Vulnerabilities
Categories:

Bugtraq: [SECURITY] [DSA 3098-1] graphviz security update

Security Focus Latest Security Advisories - December 12, 2014 - 1:15am
[SECURITY] [DSA 3098-1] graphviz security update
Categories:

Bugtraq: [SECURITY] [DSA 3096-1] pdns-recursor security update

Security Focus Latest Security Advisories - December 12, 2014 - 1:15am
[SECURITY] [DSA 3096-1] pdns-recursor security update
Categories:

Vuln: Oracle Java SE CVE-2014-4264 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 12, 2014 - 12:00am
Oracle Java SE CVE-2014-4264 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4268 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 12, 2014 - 12:00am
Oracle Java SE CVE-2014-4268 Remote Security Vulnerability
Categories: