Feed aggregator

Vuln: Ruby on Rails Security Bypass and SQL Injection Vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Ruby on Rails Security Bypass and SQL Injection Vulnerabilities
Categories:

Vuln: Ruby on Rails XML Parsing CVE-2013-1856 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Ruby on Rails XML Parsing CVE-2013-1856 Denial of Service Vulnerability
Categories:

Vuln: Ruby on Rails CVE-2013-1854 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Ruby on Rails CVE-2013-1854 Remote Denial of Service Vulnerability
Categories:

Vuln: Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
Categories:

Vuln: EMC Documentum Content Server CVE-2014-4622 Remote Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
EMC Documentum Content Server CVE-2014-4622 Remote Privilege Escalation Vulnerability
Categories:

Vuln: slock 'XRaiseWindow()' Local Security Bypass Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
slock 'XRaiseWindow()' Local Security Bypass Vulnerability
Categories:

Vuln: Ganglia Unspecified PHP Code Execution Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Ganglia Unspecified PHP Code Execution Vulnerability
Categories:

Vuln: Libxml2 Entities Expansion CVE-2013-0339 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Libxml2 Entities Expansion CVE-2013-0339 Denial of Service Vulnerability
Categories:

Vuln: Libxml2 Entities Expansion CVE-2013-0338 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Libxml2 Entities Expansion CVE-2013-0338 Denial of Service Vulnerability
Categories:

Vuln: Multiple OpenStack Products CVE-2013-1664 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Multiple OpenStack Products CVE-2013-1664 Denial of Service Vulnerability
Categories:

Vuln: Google Chrome CVE-2014-7910 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Google Chrome CVE-2014-7910 Multiple Security Vulnerabilities
Categories:

Vuln: Google Chrome CVE-2014-7906 Use After Free Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
Google Chrome CVE-2014-7906 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: X.Org X Server CVE-2014-8097 Out of Bounds Multiple Integer Overflow Vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
X.Org X Server CVE-2014-8097 Out of Bounds Multiple Integer Overflow Vulnerabilities
Categories:

Vuln: X.Org X Server Protocol Handling Multiple Out-of-Bounds Memory Corruption Vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
X.Org X Server Protocol Handling Multiple Out-of-Bounds Memory Corruption Vulnerabilities
Categories:

Vuln: OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
Categories:

Vuln: OpenVPN CVE-2014-8104 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
OpenVPN CVE-2014-8104 Denial of Service Vulnerability
Categories:

Vuln: D-Link DCS-2103 CVE-2014-9238 Directory Traversal Vulnerability

Security Focus Latest Security Advisories - December 16, 2014 - 12:00am
D-Link DCS-2103 CVE-2014-9238 Directory Traversal Vulnerability
Categories:

next-20141216: linux-next

Linux Kernel Updates - December 15, 2014 - 11:40pm
Version:next-20141216 (linux-next) Released:2014-12-16

CA20141215-01: Security Notice for CA LISA Release Automation

BugTraq Latest Security Advisories - December 15, 2014 - 11:34pm

Posted by Williams, Ken on Dec 16

CA20141215-01: Security Notice for CA LISA Release Automation

Issued: December 15, 2014

CA Technologies Support is alerting customers to multiple
vulnerabilities in CA Release Automation (formerly CA LISA Release
Automation, change effective 2014-09-19).

The first vulnerability, CVE-2014-8246, is a cross-site request forgery
(CSRF) issue related to insufficient validation. A remote attacker can
potentially execute privileged actions on a...
Categories:

[ MDVSA-2014:252 ] nss

BugTraq Latest Security Advisories - December 15, 2014 - 11:26pm

Posted by security on Dec 16

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:252
http://www.mandriva.com/en/support/security/
_______________________________________________________________________

Package : nss
Date : December 15, 2014
Affected: Business Server 1.0
_______________________________________________________________________

Problem Description:

Updated...
Categories: