Red Hat Security Advisory 2016-1132-01 - MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaDB uses PCRE, a Perl-compatible regular expression library, to implement regular expression support in SQL queries. Security Fix: It was found that the MariaDB client library did not properly check host names against server identities noted in the X.509 certificates when establishing secure connections using TLS/SSL. A man-in-the-middle attacker could possibly use this flaw to impersonate a server to a client.
16f38212bccb8010e708385b790d7d201292446b0a15ee643f9c173716e06293HP Security Bulletin HPSBGN03610 1 - Security vulnerabilities in the OpenSSL library could potentially impact HPE IceWall products resulting in Remote arbitrary code execution or Denial of Service (DoS). Revision 1 of this advisory.
8cc009ba6907782d4fc8e5af2fb95027485e1b514a4e20492a5f84bc0bfb8b0bUbuntu Security Notice 2985-2 - USN-2985-1 fixed vulnerabilities in the GNU C Library. The fix for CVE-2014-9761 introduced a regression which affected applications that use the libm library but were not fully restarted after the upgrade. This update removes the fix for CVE-2014-9761 and a future update will be provided to address this issue. Various other issues were also addressed.
2a6f679b626f83a064fc3dc159f612a216d5445b2d132256da0fb78b6542247dMicro Focus Rumba+ version 9.4 suffers from multiple stack buffer overflow vulnerabilities.
b06940b609cc3f264b437346350d607cf47b03cc6ffea20d742ff4e2f5a403fbRed Hat Security Advisory 2016-1135-01 - Red Hat JBoss Data Virtualization is a lean data integration solution that provides easy, real-time, and unified data access across disparate sources to multiple applications and users. JBoss Data Virtualization makes data spread across physically distinct systems - such as multiple databases, XML files, and even Hadoop systems - appear as a set of tables in a local database. Security Fix: A deserialization flaw allowing remote code execution was found in the BeanShell library. If BeanShell was on the classpath, it could permit code execution if another part of the application deserialized objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the BeanShell library.
f0d10c6351dc1ccb2185e7748a900ce9ee506c454465193932f6e7408d290666Real Estate Portal version 4.1 suffers from multiple persistent cross site scripting vulnerabilities.
132b0a88c9bf85e088ae6a14d8bc97646acfe63f65b9b9e78602d0d7fc6e2ff9Real Estate Portal version 4.1 suffers from a remote code execution vulnerability via a remote shell upload.
ee40d9bcfcc0351770d9249cb68627f2796fa878c95e2755270299d38b835caaEduSec version 4.2.5 suffers from multiple remote SQL injection vulnerabilities.
ae2fb04d350828c0760dafcadaba1d40df871f24f55e80016a0916e53bf4cf74HP Security Bulletin HPSBMU03611 1 - Multiple potential security vulnerabilities have been identified with the Matrix Operating Environment on Windows and Linux that could be exploited remotely resulting in Denial of Service (DoS), Unauthorized Access, Execution of arbitrary code, Cross-site scripting (XSS), Disclosure of Sensitive Information, Code Execution, and locally resulting in Cross-site Request Forgery (CSRF). Revision 1 of this advisory.
07f921689053d6bedbb8e1f9fc233c8b5f70902577e1ef3c8ec264ef9e30544eHP Data Protector version A.09.00 suffers from an arbitrary command execution vulnerability.
d3f1ffffb6eef9ed7cc7377227cb355ba26d3c2faa89427fe68466377916027eGraphite2 suffers from multiple heap-based out-of-bounds reads in NameTable::getName.
92ab9355abc4162c25a4e991f02a788212ed2613a916de8407f6e25cdf93f470Graphite2 suffers from a heap-based over-read in TtfUtil::CmapSubtable4NextCodepoint.
98cd8ac56c6af770b144124e7601583c8dd096fb701d50c77d5360b3bb28df8eGraphite2 suffers from a heap-based over-read in TtfUtil::CheckCmapSubtable12.
58c3fb7cc8d374ea523d5d1fbab1d2bd4a2884405f2abe2286fb3debc7650ab2Graphite2 suffers from multiple heap-based over-reads in GlyphCache::Loader.
127c0edd9c9f390519bd49f2ac51e2b3b0141cf51884c49eb448cc2ef3f5bf76Graphite2 suffers from a heap-based buffer overflow in GlyphCache::GlyphCache.
2a0c07f2c58d2e743b626408cccb90b11cded9b5fe12088cbc47e41ea0aa7570
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed