Feed aggregator

Bugtraq: APPLE-SA-2014-10-16-6 iTunes 12.0.1

APPLE-SA-2014-10-16-6 iTunes 12.0.1
Categories:

Bugtraq: APPLE-SA-2014-10-16-5 OS X Server v2.2.5

APPLE-SA-2014-10-16-5 OS X Server v2.2.5
Categories:

Bugtraq: APPLE-SA-2014-10-16-4 OS X Server v3.2.2

APPLE-SA-2014-10-16-4 OS X Server v3.2.2
Categories:

Bugtraq: APPLE-SA-2014-10-16-3 OS X Server v4.0

APPLE-SA-2014-10-16-3 OS X Server v4.0
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

Vuln: TYPO3 Calendar Base Extension Denial of Service Vulnerability

TYPO3 Calendar Base Extension Denial of Service Vulnerability
Categories:

Vuln: WebKit CVE-2013-6625 Use After Free Remote Code Execution Vulnerability

WebKit CVE-2013-6625 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: WebKit CVE-2013-5228 Use After Free Memory Corruption Vulnerability

WebKit CVE-2013-5228 Use After Free Memory Corruption Vulnerability
Categories:

Vuln: WebKit CVE-2013-2928 Multiple Unspecified Security Vulnerabilities

WebKit CVE-2013-2928 Multiple Unspecified Security Vulnerabilities
Categories:

next-20141020: linux-next

Linux Kernel Updates - October 19, 2014 - 10:21pm
Version:next-20141020 (linux-next) Released:2014-10-20

APPLE-SA-2014-10-16-5 OS X Server v2.2.5

BugTraq Latest Security Advisories - October 17, 2014 - 6:07am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-5 OS X Server v2.2.5

OS X Server v2.2.5 is now available and addresses the following:

Server
Available for: OS X Mountain Lion v10.8.5
Impact: An attacker may be able to decrypt data protected by SSL
Description: There are known attacks on the confidentiality of SSL
3.0 when a cipher suite uses a block cipher in CBC mode. An attacker
could force the use of SSL 3.0, even when the server would support a
better TLS version,...
Categories:

APPLE-SA-2014-10-16-4 OS X Server v3.2.2

BugTraq Latest Security Advisories - October 17, 2014 - 5:59am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-4 OS X Server v3.2.2

OS X Server v3.2.2 is now available and addresses the following:

Server
Available for: OS X Mavericks v10.9.5 or later
Impact: An attacker may be able to decrypt data protected by SSL
Description: There are known attacks on the confidentiality of SSL
3.0 when a cipher suite uses a block cipher in CBC mode. An attacker
could force the use of SSL 3.0, even when the server would support a
better TLS...
Categories:

APPLE-SA-2014-10-16-6 iTunes 12.0.1

BugTraq Latest Security Advisories - October 17, 2014 - 5:49am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-6 iTunes 12.0.1

iTunes 12.0.1 is now available and addresses the following:

iTunes
Available for: Windows 8, Windows 7, Vista, XP SP2 or later
Impact: A man-in-the-middle attack while browsing the iTunes Store
via iTunes may lead to an unexpected application termination or
arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory...
Categories:

APPLE-SA-2014-10-16-3 OS X Server v4.0

BugTraq Latest Security Advisories - October 17, 2014 - 5:40am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-3 OS X Server v4.0

OS X Server v4.0 is now available and addresses the following:

BIND
Available for: OS X Yosemite v10.10 or later
Impact: Multiple vulnerabilities in BIND, the most serious of which
may lead to a denial of service
Description: Multiple vulnerabilities existed in BIND. These issues
were addressed by updating BIND to version 9.9.2-P2
CVE-ID
CVE-2013-3919
CVE-2013-4854
CVE-2014-0591

CoreCollaboration...
Categories:

APPLE-SA-2014-10-16-2 Security Update 2014-005

BugTraq Latest Security Advisories - October 17, 2014 - 5:30am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-2 Security Update 2014-005

Security Update 2014-005 is now available and addresses the
following:

Secure Transport
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5
Impact: An attacker may be able to decrypt data protected by SSL
Description: There are known attacks on the confidentiality of SSL
3.0 when a cipher suite uses a block cipher in CBC mode. An attacker
could force the use of SSL 3.0, even when...
Categories:

Bugtraq: APPLE-SA-2014-10-16-1 OS X Yosemite v10.10

Security Focus Latest Security Advisories - October 17, 2014 - 5:30am
APPLE-SA-2014-10-16-1 OS X Yosemite v10.10
Categories:

Bugtraq: [CORE-2014-0007] -SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 17, 2014 - 5:30am
[CORE-2014-0007] -SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3053-1] openssl security update

Security Focus Latest Security Advisories - October 17, 2014 - 5:30am
[SECURITY] [DSA 3053-1] openssl security update
Categories:

Bugtraq: Cisco Security Advisory: Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - October 17, 2014 - 5:30am
Cisco Security Advisory: Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability
Categories:

APPLE-SA-2014-10-16-1 OS X Yosemite v10.10

BugTraq Latest Security Advisories - October 17, 2014 - 5:22am

Posted by Apple Product Security on Oct 17

APPLE-SA-2014-10-16-1 OS X Yosemite v10.10

OS X Yosemite v10.10 is now available and addresses the following:

802.1X
Impact: An attacker can obtain WiFi credentials
Description: An attacker could have impersonated a WiFi access
point, offered to authenticate with LEAP, broken the MS-CHAPv1 hash,
and used the derived credentials to authenticate to the intended
access point even if that access point supported stronger
authentication methods....
Categories: