Monthly Archives: April 2015

Fedora

Fedora 22 Security Update: curl-7.40.0-3.fc22

Resolved Bugs
1214183 – CVE-2015-3148 curl: “Negotiate” not treated as connection-oriented [fedora-all]
1213306 – CVE-2015-3143 curl: re-using authenticated connection when unauthenticated
1214181 – CVE-2015-3144 curl: host name out of boundary memory access [fedora-all]
1213347 – CVE-2015-3145 curl: cookie parser out of boundary memory access
1213351 – CVE-2015-3148 curl: “Negotiate” not treated as connection-oriented
1214184 – CVE-2015-3143 curl: re-using authenticated connection when unauthenticated [fedora-all]
1213335 – CVE-2015-3144 curl: host name out of boundary memory access
1214182 – CVE-2015-3145 curl: cookie parser out of boundary memory access [fedora-all]<br
– require credentials to match for NTLM re-use (CVE-2015-3143)
– fix invalid write with a zero-length host name in URL (CVE-2015-3144)
– fix invalid write in cookie path sanitization code (CVE-2015-3145)
– close Negotiate connections when done (CVE-2015-3148)

Fedora

Fedora 20 Security Update: curl-7.32.0-20.fc20

Resolved Bugs
1214183 – CVE-2015-3148 curl: “Negotiate” not treated as connection-oriented [fedora-all]
1214184 – CVE-2015-3143 curl: re-using authenticated connection when unauthenticated [fedora-all]
1214182 – CVE-2015-3145 curl: cookie parser out of boundary memory access [fedora-all]
1213351 – CVE-2015-3148 curl: “Negotiate” not treated as connection-oriented
1213306 – CVE-2015-3143 curl: re-using authenticated connection when unauthenticated
1213347 – CVE-2015-3145 curl: cookie parser out of boundary memory access<br
– require credentials to match for NTLM re-use (CVE-2015-3143)
– fix invalid write in cookie path sanitization code (CVE-2015-3145)
– close Negotiate connections when done (CVE-2015-3148)

AVG

The Ultimate GTA V Performance Guide

It’s been a long time coming, but Grand Theft Auto V is now available on Windows PCs. While Playstation and Xbox players have been enjoying this title for some time already, I strongly believe that PC is now the platform to play GTA V.

Why? Well quite simply, the PC has so many great options to tweak that gamers can really control and enhance their gaming experience!

If you have bought GTA V for PC and are wondering how you can improve framerates, graphics and more then you’re in luck. I’ve run a series of benchmarking tests on GTA V and have put together my top tips on getting the most out of this red hot title!

So without further ado, here is The Ultimate GTA V Performance Guide.

 

Download the full guide 

Security

Dnsmasq 2.72 Unchecked Return Value

Dnsmasq version 2.72 does not properly check the return value of the setup_reply() function called during a tcp connection (by the tcp_request() function). This return value is then used as a size argument in a function which writes data on the client’s connection. This may lead, upon successful exploitation, to reading the heap memory of dnsmasq.

Full Disclosure

Socrata Bug Bounty #1 – Persistent Encoding Vulnerability

Posted by Vulnerability Lab on Apr 23

Document Title:
===============
Socrata Bug Bounty #1 – Persistent Encoding Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1438

Release Date:
=============
2015-04-22

Vulnerability Laboratory ID (VL-ID):
====================================
1438

Common Vulnerability Scoring System:
====================================
3.3

Product & Service Introduction:…