Feed aggregator

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1544 Use After Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - September 9, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1544 Use After Free Memory Corruption Vulnerability
Categories:

Vuln: PHP '/tmp/phpglibccheck' Symlink Vulnerability

Security Focus Latest Security Advisories - September 9, 2014 - 11:00pm
PHP '/tmp/phpglibccheck' Symlink Vulnerability
Categories:

Vuln: PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - September 9, 2014 - 11:00pm
PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
Categories:

Vuln: OpenSSL SRP CVE-2014-3512 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - September 9, 2014 - 11:00pm
OpenSSL SRP CVE-2014-3512 Remote Denial of Service Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-3508 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - September 9, 2014 - 11:00pm
OpenSSL CVE-2014-3508 Information Disclosure Vulnerability
Categories:

Bugtraq: [security bulletin] HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote Unauthorized Access or Disclosure of Information

Security Focus Latest Security Advisories - September 9, 2014 - 12:00pm
[security bulletin] HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote Unauthorized Access or Disclosure of Information
Categories:

Bugtraq: CVE-2014-5393 Path Traversal to Sensitive Files in Webroot in "JobScheduler"

Security Focus Latest Security Advisories - September 9, 2014 - 12:00pm
CVE-2014-5393 Path Traversal to Sensitive Files in Webroot in "JobScheduler"
Categories:

[SECURITY] [DSA 3021-1] file security update

BugTraq Latest Security Advisories - September 9, 2014 - 11:54am

Posted by Luciano Bello on Sep 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-3021-1 security () debian org
http://www.debian.org/security/ Luciano Bello
September 09, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : file
CVE ID : CVE-2014-0207 CVE-2014-0237...
Categories:

FreeBSD Security Advisory FreeBSD-SA-14:18.openssl

BugTraq Latest Security Advisories - September 9, 2014 - 11:45am

Posted by FreeBSD Security Advisories on Sep 09

=============================================================================
FreeBSD-SA-14:18.openssl Security Advisory
The FreeBSD Project

Topic: OpenSSL multiple vulnerabilities

Category: contrib
Module: openssl
Announced: 2014-09-09
Affects: All supported versions of FreeBSD.
Corrected: 2014-08-07 21:04:42 UTC...
Categories:

Cisco Security Advisory: Cisco Unified Computing System E-Series Blade Servers Cisco Integrated Management Controller SSH Denial of Service Vulnerability

BugTraq Latest Security Advisories - September 9, 2014 - 5:14am

Posted by Cisco Systems Product Security Incident Response Team on Sep 09

Cisco Unified Computing System E-Series Blade Servers Cisco Integrated Management Controller SSH Denial of Service
Vulnerability

Advisory ID: cisco-sa-20140908-ucse

Revision 1.0

For Public Release 2014 September 8 16:00 UTC (GMT)
+--------------------------------------------------------------------

Summary
=======

A vulnerability in the Cisco Integrated Management Controller (Cisco IMC) SSH module of the Cisco Unified Computing
System...
Categories:

IBM WebSphere Application Server (WAS) Integrated Solutions Console Login Page username Parameter Reflected XSS Security Vulnerability

BugTraq Latest Security Advisories - September 9, 2014 - 5:04am

Posted by main on Sep 09

INFO:
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Aug 27 2014 12:00AM
Updated: Aug 27 2014 12:00AM
Credit: G. S. McNamara, CGI Federal Emerging Technologies Security Practice (ETSP)
Vulnerable: IBM WebSphere Application Server (WAS) Integrated Solutions Console 7.0.0.19

DISCUSSION:
IBM WebSphere Application Server (WAS) contains a flaw that allows a reflected cross-site scripting (XSS) attack. This
flaw...
Categories:

[security bulletin] HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote Unauthorized Access or Disclosure of Information

BugTraq Latest Security Advisories - September 9, 2014 - 4:54am

Posted by security-alert on Sep 09

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04438404

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04438404
Version: 1

HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote
Unauthorized Access or Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as...
Categories:

Bugtraq: CVE-2014-5392 XML eXternal Entity (XXE) in "JobScheduler"

Security Focus Latest Security Advisories - September 9, 2014 - 4:30am
CVE-2014-5392 XML eXternal Entity (XXE) in "JobScheduler"
Categories:

Bugtraq: CVE-2014-5391 DOM-based Cross-Site Scripting (XSS) in "JobScheduler"

Security Focus Latest Security Advisories - September 9, 2014 - 4:30am
CVE-2014-5391 DOM-based Cross-Site Scripting (XSS) in "JobScheduler"
Categories:

Bugtraq: t2â??14 Challenge to be released 2014-09-13 10:00 EEST

Security Focus Latest Security Advisories - September 9, 2014 - 4:30am
t2â??14 Challenge to be released 2014-09-13 10:00 EEST
Categories:

next-20140909: linux-next

Linux Kernel Updates - September 9, 2014 - 2:13am
Version:next-20140909 (linux-next) Released:2014-09-09