Resolved Bugs
1221266 – libinfinity: incorrect validation of certificates
1221267 – libinfinity: incorrect validation of certificates [fedora-all]<br
Security update to make libinfinity properly check certificates:
https://github.com/gobby/gobby/issues/61
Monthly Archives: May 2015
Fedora 22 Security Update: hostapd-2.4-2.fc22
WordPress Ajax Store Locator 1.2 SQL Injection
WordPress Ajax Store Locator versions 1.2 and below suffer from a remote SQL injection vulnerability.
Bugtraq: phpMyAdmin 4.4.6 Man-In-the-Middle API Github
phpMyAdmin 4.4.6 Man-In-the-Middle API Github
Bugtraq: [SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine
[SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine
Bugtraq: [SECURITY] [DSA 3261-1] libmodule-signature-perl security update
[SECURITY] [DSA 3261-1] libmodule-signature-perl security update
CVE-2015-0731
The ISDN implementation in Cisco IOS 15.3S allows remote attackers to cause a denial of service (device reload) via malformed Q931 SETUP messages, aka Bug ID CSCut37890.
CVE-2015-0736
Cross-site request forgery (CSRF) vulnerability in Cisco MediaSense 10.5(1) and earlier allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu16728.
RHSA-2015:1011-1: Important: rhev-hypervisor security update
Red Hat Enterprise Linux: Updated rhev-hypervisor packages that fix one security issue are now
available.
Red Hat Product Security has rated this update as having Important security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.
CVE-2015-3456
Vuln: Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
Oracle Java SE CVE-2015-0469 Remote Security Vulnerability