Feed aggregator

Bugtraq: APPLE-SA-2015-01-27-4 OS X 10.10.2 and Security Update 2015-001

APPLE-SA-2015-01-27-4 OS X 10.10.2 and Security Update 2015-001
Categories:

Bugtraq: APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3

APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3
Categories:

Bugtraq: APPLE-SA-2015-01-27-2 iOS 8.1.3

APPLE-SA-2015-01-27-2 iOS 8.1.3
Categories:

Bugtraq: APPLE-SA-2015-01-27-1 Apple TV 7.0.3

APPLE-SA-2015-01-27-1 Apple TV 7.0.3
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

APPLE-SA-2015-01-27-4 OS X 10.10.2 and Security Update 2015-001

Posted by Apple Product Security on Jan 27

APPLE-SA-2015-01-27-4 OS X 10.10.2 and Security Update 2015-001

OS X 10.10.2 and Security Update 2015-001 are now available and
address the following:

AFP Server
Available for: OS X Mavericks v10.9.5
Impact: A remote attacker may be able to determine all the network
addresses of the system
Description: The AFP file server supported a command which returned
all the network addresses of the system. This issue was addressed by
removing the...
Categories:

APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3

Posted by Apple Product Security on Jan 27

APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3

Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3 are now available and
address the following:

WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
OS X Yosemite v10.10.1
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit....
Categories:

APPLE-SA-2015-01-27-2 iOS 8.1.3

Posted by Apple Product Security on Jan 27

APPLE-SA-2015-01-27-2 iOS 8.1.3

iOS 8.1.3 is now available and addresses the following:

AppleFileConduit
Available for: iPhone 4s and later,
iPod touch (5th generation) and later, iPad 2 and later
Impact: A maliciously crafted afc command may allow access to
protected parts of the filesystem
Description: A vulnerability existed in the symbolic linking
mechanism of afc. This issue was addressed by adding additional path
checks.
CVE-ID...
Categories:

APPLE-SA-2015-01-27-1 Apple TV 7.0.3

BugTraq Latest Security Advisories - 2 hours 15 min ago

Posted by Apple Product Security on Jan 27

APPLE-SA-2015-01-27-1 Apple TV 7.0.3

Apple TV 7.0.3 is now available and addresses the following:

Apple TV
Available for: Apple TV 3rd generation and later
Impact: A maliciously crafted afc command may allow access to
protected parts of the filesystem
Description: A vulnerability existed in the symbolic linking
mechanism of afc. This issue was addressed by adding additional path
checks.
CVE-ID
CVE-2014-4480 : TaiG Jailbreak Team

Apple TV...
Categories:

Bugtraq: Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow

Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow
Categories:

Bugtraq: [SECURITY] [DSA 3142-1] eglibc security update

[SECURITY] [DSA 3142-1] eglibc security update
Categories:

Bugtraq: [SECURITY] [DSA 3141-1] wireshark security update

[SECURITY] [DSA 3141-1] wireshark security update
Categories:

Bugtraq: [SECURITY] [DSA 3140-1] xen security update

[SECURITY] [DSA 3140-1] xen security update
Categories:

Bugtraq: [SYSS-2014-013] FancyFon FAMOC - Use of a One-Way Hash without a Salt

[SYSS-2014-013] FancyFon FAMOC - Use of a One-Way Hash without a Salt
Categories:

Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow

BugTraq Latest Security Advisories - 7 hours 21 min ago

Posted by Qualys Security Advisory on Jan 27

Qualys Security Advisory CVE-2015-0235

GHOST: glibc gethostbyname buffer overflow

--[ Contents ]----------------------------------------------------------------

1 - Summary
2 - Analysis
3 - Mitigating factors
4 - Case studies
5 - Exploitation
6 - Acknowledgments

--[ 1 - Summary ]-------------------------------------------------------------

During a code audit performed internally at Qualys, we discovered a
buffer overflow in the...
Categories:

3.18.4: stable

Linux Kernel Updates - 8 hours 3 min ago
Version:3.18.4 (stable) Released:2015-01-27 Source:linux-3.18.4.tar.xz PGP Signature:linux-3.18.4.tar.sign Patch:patch-3.18.4.xz (Incremental) ChangeLog:ChangeLog-3.18.4

3.14.30: longterm

Linux Kernel Updates - 8 hours 13 min ago
Version:3.14.30 (longterm) Released:2015-01-27 Source:linux-3.14.30.tar.xz PGP Signature:linux-3.14.30.tar.sign Patch:patch-3.14.30.xz (Incremental) ChangeLog:ChangeLog-3.14.30

Bugtraq: [SYSS-2014-012] FancyFon FAMOC - Session Fixation

[SYSS-2014-012] FancyFon FAMOC - Session Fixation
Categories:

Bugtraq: [SYSS-2014-011] FancyFon FAMOC - Cross-Site Scripting

[SYSS-2014-011] FancyFon FAMOC - Cross-Site Scripting
Categories:

Bugtraq: WebKitGTK+ Security Advisory WSA-2015-0001

WebKitGTK+ Security Advisory WSA-2015-0001
Categories: