Feed aggregator

FreeBSD Security Advisory FreeBSD-SA-15:14.bsdpatch

BugTraq Latest Security Advisories - July 29, 2015 - 6:57am

Posted by FreeBSD Security Advisories on Jul 29

=============================================================================
FreeBSD-SA-15:14.bsdpatch Security Advisory
The FreeBSD Project

Topic: shell injection vulnerability in patch(1)

Category: contrib
Module: patch
Announced: 2015-07-28
Credits: Martin Natano
Affects: FreeBSD 10.x.
Corrected:...
Categories:

[security bulletin] HPSBGN03372 rev.1 - HP Business Process Monitor using RC4, Remote Disclosure of Information

BugTraq Latest Security Advisories - July 29, 2015 - 6:47am

Posted by security-alert on Jul 29

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04739254

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04739254
Version: 1

HPSBGN03372 rev.1 - HP Business Process Monitor using RC4, Remote Disclosure
of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2015-07-28...
Categories:

Bugtraq: SEC Consult SA-20150728-0 :: McAfee Application Control Multiple Vulnerabilities

SEC Consult SA-20150728-0 :: McAfee Application Control Multiple Vulnerabilities
Categories:

Bugtraq: Multiple unresolved vulnerabilities in Basware Banking/Maksuliikenne

Multiple unresolved vulnerabilities in Basware Banking/Maksuliikenne
Categories:

Bugtraq: Another Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability

Another Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability
Categories:

next-20150729: linux-next

Linux Kernel Updates - July 29, 2015 - 2:44am
Version:next-20150729 (linux-next) Released:2015-07-29

Vuln: Novius OS 'tab' parameter Local File Include Vulnerability

Security Focus Latest Security Advisories - July 28, 2015 - 11:00pm
Novius OS 'tab' parameter Local File Include Vulnerability
Categories:

[SECURITY] [DSA 3319-1] bind9 security update

BugTraq Latest Security Advisories - July 28, 2015 - 2:19pm

Posted by Salvatore Bonaccorso on Jul 28

-------------------------------------------------------------------------
Debian Security Advisory DSA-3319-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
July 28, 2015 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : bind9
CVE ID : CVE-2015-5477

Jonathan Foote...
Categories:

Bugtraq: Apple iTunes & AppStore - Filter Bypass & Persistent Invoice Vulnerability

Apple iTunes & AppStore - Filter Bypass & Persistent Invoice Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3318-1] expat security update

[SECURITY] [DSA 3318-1] expat security update
Categories:

Bugtraq: [SECURITY] [DSA 3317-1] lxc security update

[SECURITY] [DSA 3317-1] lxc security update
Categories:

SEC Consult SA-20150728-0 :: McAfee Application Control Multiple Vulnerabilities

BugTraq Latest Security Advisories - July 28, 2015 - 6:27am

Posted by SEC Consult Vulnerability Lab on Jul 28

SEC Consult Vulnerability Lab Security Advisory < 20150728-0 >
=======================================================================
title: McAfee Application Control Multiple Vulnerabilities
product: McAfee Application Control
vulnerable version: verified in version 6.1.3.353
fixed version: a fixed version is currently not available
impact: high
homepage:...
Categories:

Multiple unresolved vulnerabilities in Basware Banking/Maksuliikenne

BugTraq Latest Security Advisories - July 28, 2015 - 6:17am

Posted by Samuel Lavitt - CVE-2015-0942 on Jul 28

English: Multiple vulnerabilities in Basware Banking/Maksuliikenne software that were reported already 08/2012 may
still enable undetectable economic crimes against user organizations (companies)
Finnish: Basware Banking/Maksuliikenne -ohjelmiston haavoittuvuudet, joista raportoitiin jo 08/2012, saattavat edelleen
mahdollistaa käyttäjäyrityksiin kohdistuvia ”näkymättömiä” talousrikoksia
Swedish: Sårbarheter i Basware...
Categories:

Another Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability

BugTraq Latest Security Advisories - July 28, 2015 - 6:08am

Posted by Federico Fazzi on Jul 28

--------------------------------------------------------
Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability
--------------------------------------------------------

Vendor
------

https://www.snorby.org/

Version
-------

2.6.2

Description
-----------

Found another Stored Cross-site Scripting (XSS) vulnerability in Snorby.
The vulnerability exists in the module for save a new search where the user
input is not correctly sanitized before...
Categories:

Bugtraq: [SECURITY] [DSA 3316-1] openjdk-7 security update

[SECURITY] [DSA 3316-1] openjdk-7 security update
Categories:

next-20150728: linux-next

Linux Kernel Updates - July 28, 2015 - 1:35am
Version:next-20150728 (linux-next) Released:2015-07-28

Vuln: Oracle Java SE CVE-2015-0488 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 27, 2015 - 11:00pm
Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
Categories:

Vuln: Debian OpenJDK CVE-2014-8873 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 27, 2015 - 11:00pm
Debian OpenJDK CVE-2014-8873 Remote Code Execution Vulnerability
Categories:

Vuln: Linux Kernel 'x86/kernel/entry_64.S' Local Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 27, 2015 - 11:00pm
Linux Kernel 'x86/kernel/entry_64.S' Local Security Bypass Vulnerability
Categories:

Vuln: Linux Kernel ASLR CVE-2015-1593 Integer Overflow Vulnerability

Security Focus Latest Security Advisories - July 27, 2015 - 11:00pm
Linux Kernel ASLR CVE-2015-1593 Integer Overflow Vulnerability
Categories: