Monthly Archives: May 2015
Thycotic Password Manager Secret Server MITM
Thycotic Password Manager Secret Server suffers from a man-in-the-middle SSL certificate verification vulnerability.
CEBA-2015:1032 CentOS 5 pam BugFix Update
CentOS Errata and Bugfix Advisory 2015:1032 Upstream details at : https://rhn.redhat.com/errata/RHBA-2015-1032.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: abdd6996f2976fec625db70ade1ae4693196f67105b688feaad382d3ac17ae60 pam-0.99.6.2-14.el5_11.i386.rpm 784578b99de9d56f32a49325896d046321feafdcc9fd0d7c417ecfbdca3cfafd pam-devel-0.99.6.2-14.el5_11.i386.rpm x86_64: abdd6996f2976fec625db70ade1ae4693196f67105b688feaad382d3ac17ae60 pam-0.99.6.2-14.el5_11.i386.rpm 5e2d0e23ae1e63ac116ae0b96f3d8b523d9f035dcae03b0a5670374842e2579d pam-0.99.6.2-14.el5_11.x86_64.rpm 784578b99de9d56f32a49325896d046321feafdcc9fd0d7c417ecfbdca3cfafd pam-devel-0.99.6.2-14.el5_11.i386.rpm 22d657e3ee8612afc3d75582e1717013582cd03690258f58303fabfb459c28aa pam-devel-0.99.6.2-14.el5_11.x86_64.rpm Source: 1d0d664b4815216f0df166264bf5d5adb15bffcbb8d7cd207e63af168a5c3edb pam-0.99.6.2-14.el5_11.src.rpm
WordPress WP Fast Cache 1.4 CSRF / Cross Site Scripting
WordPress WP Fast Cache plugin version 1.4 suffers from cross site request forgery and cross site scripting vulnerabilities.
Hackers could track subway users via phone accelerometer data
Researchers from Nanjing University have found a way in which hackers could track a smartphone user on the subway – even when limited reception is available.
The post Hackers could track subway users via phone accelerometer data appeared first on We Live Security.
The New AVG Business Center of Excellence in Ottawa
It seems appropriate that in the year when Ottawa is host to the International Symposium on Integrated Network Management, AVG Business also chooses the city to be home to its new, state-of-the-art, global center of excellence for small-to-medium business IT management.
Our AVG Business unit has grown tremendously over the last year and we’ve evolved into a focused organization designed and dedicated to the success of our Partners. To accomplish this we need to continue to develop and improve the tools and solutions we already provide; listen and anticipating your technology needs and respond with solutions; and be proactive in our support of your efforts.
This year we’ve already released significant updates to Managed Workplace and CloudCare, introduced new Secure Sign On and Backup and Disaster Recovery solutions and are preparing to introduce the 2016 update to our Business AntiVirus and Internet Security products. At the same time we realize we can improve our development and support efforts. After critically reviewing our teams, talent and the ability to support Partners around the world, we chose Ottawa our center of excellence for Managed Workplace and have brought together our experts in support, engineering, sales and product management and marketing together for the first time.
As we join the over 1800 technology companies that have made this historic and cultural city a global technology center, we look forward to supporting your continued growth and association with AVG Business.
Kaspersky Security for Linux Mail Server Wins its Third VBSpam+ Certificate in a Row
CEEA-2015:1029 CentOS 6 tg3 Enhancement Update
CentOS Errata and Enhancement Advisory 2015:1029 Upstream details at : https://rhn.redhat.com/errata/RHEA-2015-1029.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 5dff711b2e373e9659765e628fc5ba969313021fc81608078af40dad90442a5f kmod-tg3-3.137-2.el6_6.i686.rpm x86_64: 3dc5c70e00006a0188efa931a453a0a8d6eaba50032abf7f3cfec428842099bd kmod-tg3-3.137-2.el6_6.x86_64.rpm Source: 532e79131f1bef630ec4607b1d05b6c21d8addc979eea37eca318de4786cf416 tg3-3.137-2.el6_6.src.rpm
Mobile banking security still a barrier for consumers
Customers are increasingly turning to mobile apps to make simple banking transactions, but a significant portion of those who don’t bank on mobile devices cite security concerns as the reason.
The post Mobile banking security still a barrier for consumers appeared first on We Live Security.
CVE-2014-9710 (linux_kernel)
The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations (1) during an xattr-replacement time window, related to a race condition, or (2) after an xattr-replacement attempt that fails because the data does not fit.