|
|
Colapse all |
Post message
[SECURITY] [DSA 3248-1] libphp-snoopy security update 2015-05-02 Moritz Muehlenhoff (jmm debian org) [SECURITY] [DSA 3244-1] owncloud security update 2015-05-02 Salvatore Bonaccorso (carnil debian org) Code Injection in Epicor Retail Store 3.2.03.01.008 2015-05-02 webmaster josephzeng com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Title: Code Injection in Epicor Retail Store Help System CVE: CVE-2015-2210 Vendor: Epicor Product: CRS Retail Store v3.2.03.01.008 Affected version: 3.2.03.01.008 Reported by: Zeng Xianbo Joseph (webmaster (at) josephzeng (dot) com [email concealed]) Issue identified by: Zeng X [ more ] [ reply ] [SECURITY] [DSA 3243-1] libxml-libxml-perl security update 2015-05-01 Salvatore Bonaccorso (carnil debian org) [SECURITY] [DSA 3242-1] chromium-browser security update 2015-05-01 Michael Gilbert (mgilbert debian org) SevDesk v1.1 iOS - Persistent Dashboard Vulnerability 2015-04-30 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== SevDesk v1.1 iOS - Persistent Dashboard Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1311 Release Date: ============= 2015-04-23 Vulnerability Laboratory ID (VL-ID): ================================= [ more ] [ reply ] [SYSS-2014-007] FrontRange DSM - Multiple Vulnerabilities 2015-04-30 matthias deeg syss de -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2014-007 Product: FrontRange DSM Vendor: FrontRange Solutions USA Inc. and/or its affiliates Affected Version(s): v7.2.1.2020, v7.2.2.2331 Tested Version(s): v7.2.1.2020, v7.2.2.2331 Vulnerability Type: Use of Hard-coded Cryptographi [ more ] [ reply ] [SECURITY] [DSA 3241-1] elasticsearch security update 2015-04-29 Moritz Muehlenhoff (jmm debian org) [security bulletin] HPSBGN03324 rev.1 - HP Business Service Automation Essentials Core, Remote Disclosure of Information 2015-04-29 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04649698 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04649698 Version: 1 HPSBGN03324 r [ more ] [ reply ] [security bulletin] HPSBGN03323 rev.1 - HP Business Service Automation Essentials Core with JBOSS, Remote Disclosure of Information 2015-04-29 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04649560 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04649560 Version: 1 HPSBGN03323 r [ more ] [ reply ] ESA-2015-078: RSA® Identity Management and Governance (IMG) Insecure Password Reset Vulnerability 2015-04-29 Security Alert (Security_Alert emc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-078: RSA® Identity Management and Governance (IMG) Insecure Password Reset Vulnerability EMC Identifier: ESA-2015-078 CVE Identifier: CVE-2015-0532 Severity Rating: CVSSv2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) Affected Produ [ more ] [ reply ] [security bulletin] HPSBMU03241 rev.1 - HP Network Automation running SSLv3, Remote Disclosure of Information 2015-04-29 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04539690 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04539690 Version: 1 HPSBMU03241 re [ more ] [ reply ] [security bulletin] HPSBUX03320 SSRT101952 rev.1 - HP-UX CIFS Server (Samba), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access 2015-04-29 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04636672 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04636672 Version: 1 HPSBUX03320 SS [ more ] [ reply ] [oCERT-2015-003] MySQL SSL/TLS downgrade 2015-04-29 Andrea Barisani (lcars ocert org) #2015-003 MySQL SSL/TLS downgrade Description: The MySQL project is an open source relational database management system. A vulnerability has been reported concerning the impossibility for MySQL users (with any major stable version) to enforce an effective SSL/TLS connection that would be immune [ more ] [ reply ] Multiple Vulnerabilities in TheCartPress WordPress plugin 2015-04-29 High-Tech Bridge Security Research (advisory htbridge ch) Advisory ID: HTB23254 Product: TheCartPress WordPress plugin Vendor: TheCartPress team Vulnerable Version(s): 1.3.9 and probably prior Tested Version: 1.3.9 Advisory Publication: April 8, 2015 [without technical details] Vendor Notification: April 8, 2015 Public Disclosure: April 29, 2015 Vulner [ more ] [ reply ] CSRF & XSS Wing FTP Server Admin <= v4.4.5 2015-04-28 apparitionsec gmail com Wing FTP Server Admin 4.4.5 - CSRF & Cross Site Scripting Vulnerabilities Release Date: ============= 2015-04-28 Source: ==================================== http://hyp3rlinx.altervista.org/advisories/AS-WFTP0328.txt Common Vulnerability Scoring System: ==================================== Ove [ more ] [ reply ] PayPal Inc Bug Bounty #114 - JDWP Remote Code Execution Vulnerability 2015-04-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== PayPal Inc Bug Bounty #114 - JDWP Remote Code Execution Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1474 Video: http://www.vulnerability-lab.com/get_content.php?id=1474 Vulnerability Magazine: http:// [ more ] [ reply ] SonicWall SonicOS 7.5.0.12 & 6.x - Client Side Cross Site Scripting Vulnerability 2015-04-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== SonicWall SonicOS 7.5.0.12 & 6.x - Client Side Cross Site Scripting Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1359 Release Date: ============= 2015-04-23 Vulnerability Laboratory ID (VL-ID): ===== [ more ] [ reply ] [CORE-2015-0008] - InFocus IN3128HD Projector Multiple Vulnerabilities 2015-04-27 CORE Advisories Team (advisories coresecurity com) 1. Advisory Information Title: InFocus IN3128HD Projector Multiple Vulnerabilities Advisory ID: CORE-2015-0008 Advisory URL: http://www.coresecurity.com/advisories/infocus-in3128hd-projector-multip le-vulnerabilities Date published: 2015-04-27 Date of last update: 2015-04-22 Vendors contacted: InFoc [ more ] [ reply ] |
|
Privacy Statement |
Hash: SHA512
- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3246-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Alessandro Ghedini
May 02, 2015
[ more ] [ reply ]