Feed aggregator

Vuln: Google Chrome CVE-2014-3171 Use After Free Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Google Chrome CVE-2014-3171 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: Google Chrome Prior to 34.0.1847.116 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Google Chrome Prior to 34.0.1847.116 Multiple Security Vulnerabilities
Categories:

Vuln: PostgreSQL CVE-2014-0061 Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
PostgreSQL CVE-2014-0061 Security Bypass Vulnerability
Categories:

Vuln: PostgreSQL CVE-2014-0066 Remote Denial Of Service Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
PostgreSQL CVE-2014-0066 Remote Denial Of Service Vulnerability
Categories:

Vuln: Stunnel CVE-2014-0016 PRNG Initialization Weakness

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Stunnel CVE-2014-0016 PRNG Initialization Weakness
Categories:

Vuln: Jinja2 Incomplete Fix Insecure File Permissions Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Jinja2 Incomplete Fix Insecure File Permissions Vulnerability
Categories:

Vuln: Jinja2 'jinja2.bccache.FileSystemBytecodeCache' Insecure File Permissions Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Jinja2 'jinja2.bccache.FileSystemBytecodeCache' Insecure File Permissions Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2014-4240 Local Security Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Oracle MySQL Server CVE-2014-4240 Local Security Vulnerability
Categories:

Vuln: GNU glibc Locale Environment Handling Directory Traversal Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
GNU glibc Locale Environment Handling Directory Traversal Vulnerability
Categories:

Vuln: XWork 'ParameterInterceptor' Class OGNL (CVE-2010-1870) Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
XWork 'ParameterInterceptor' Class OGNL (CVE-2010-1870) Security Bypass Vulnerability
Categories:

Vuln: Microsoft Windows Kernel 'Win32k.sys' CVE-2014-1819 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Microsoft Windows Kernel 'Win32k.sys' CVE-2014-1819 Local Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft Windows Kernel Pool Allocation CVE-2014-4064 Local Information Disclosure Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Microsoft Windows Kernel Pool Allocation CVE-2014-4064 Local Information Disclosure Vulnerability
Categories:

Vuln: Microsoft Windows Kernel 'Win32k.sys' CVE-2014-0318 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Microsoft Windows Kernel 'Win32k.sys' CVE-2014-0318 Local Privilege Escalation Vulnerability
Categories:

Vuln: GNU glibc '__gconv_translit_find()' Function Memory Corruption Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
GNU glibc '__gconv_translit_find()' Function Memory Corruption Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4221 Remote Security Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Oracle Java SE CVE-2014-4221 Remote Security Vulnerability
Categories:

Vuln: Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 31, 2014 - 11:00pm
Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability
Categories:

3.17-rc3: mainline

Linux Kernel Updates - August 31, 2014 - 8:23pm
Version:3.17-rc3 (mainline) Released:2014-09-01 Source:linux-3.17-rc3.tar.xz PGP Signature:linux-3.17-rc3.tar.sign Patch:patch-3.17-rc3.xz

Sierra Library Services Platform Multiple Vulnerability Disclosure

BugTraq Latest Security Advisories - August 29, 2014 - 4:54am

Posted by Romano, Christian on Aug 29

Product: Sierra Library Services Platform
Vendor: Innovative Interfaces Inc
Vulnerable Version: 1.2_3
Tested Version: 1.2_3
Vendor Notification: June 19, 2014
Public Disclosure: August 26, 2014
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2014-5136
Risk Level: Medium
CVSSv2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Discovered and Provided: CAaNES (Computational Analysis and Network
Enterprise Solutions)

Advisory...
Categories:

Bugtraq: Aerohive Hive Manager and Hive OS Multiple Vulnerabilities

Security Focus Latest Security Advisories - August 29, 2014 - 4:15am
Aerohive Hive Manager and Hive OS Multiple Vulnerabilities
Categories:

next-20140829: linux-next

Linux Kernel Updates - August 29, 2014 - 12:00am
Version:next-20140829 (linux-next) Released:2014-08-29