Achievo version 1.4.5 suffers from a cross site scripting vulnerability.
Monthly Archives: March 2016
FBI Asks To Delay Apple Trial So It Can Try Hacking The iPhone Again
Apple Releases Multiple Security Updates
Original release date: March 21, 2016
Apple has released security updates for iOS, watchOS, tvOS, Xcode, OS X El Capitan, OS X Server 5.1, and Safari to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
Available updates include:
- iOS 9.3 for iPhone 4s and later, iPod touch (5th generation) and later, and iPad 2 and later
- watchOS 2.2 for Apple Watch Sport, Apple Watch, Apple Watch Edition, and Apple Watch Hermes
- tvOS 9.2 for Apple TV (4th generation)
- Xcode 7.3 for OS X El Capitan v10.11 and later
- OS X El Capitan v10.11.4 and Security Update 2016-002 for OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3
- OS X Server 5.1 for OS X Yosemite v10.10.5 and later
- Safari 9.1 for OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3
Users and administrators are encouraged to review Apple security updates for iOS, watchOS, tvOS, Xcode, OS X El Capitan, OS X Server, and Safari and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
CESA-2016:0465 Moderate CentOS 7 openssh SecurityUpdate
CentOS Errata and Security Advisory 2016:0465 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2016-0465.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 7de3cbf4ec75c073b1aaecf2fae539fe6b95742a7ffd4333f9a45dbb85191130 openssh-6.6.1p1-25.el7_2.x86_64.rpm d1a6a87820d542d51a05017a6b6f14ebe35fce7aa3cb0d9efe2a0750d548a7ef openssh-askpass-6.6.1p1-25.el7_2.x86_64.rpm 9ccca04375b3466810c7bff2fd902436871468192249fefafba8db1324ca2e48 openssh-clients-6.6.1p1-25.el7_2.x86_64.rpm 03dbf819fecec3fd39f6971b35acf2d385654f87f7e477e068875cfa85678ca2 openssh-keycat-6.6.1p1-25.el7_2.x86_64.rpm 81df6fd13ab30aedc6ef397d476a49d5f272fb569addc8a3f67370a53d6dd1cd openssh-ldap-6.6.1p1-25.el7_2.x86_64.rpm 29384ae8c514bc7fba475901e73fd502bb61d74e4e70ce64b0006bdd4fd6fc02 openssh-server-6.6.1p1-25.el7_2.x86_64.rpm 8caca16e598dfee9a3559865501a948d7c81d22950038a6d2f89e9e9ba8b5b7a openssh-server-sysvinit-6.6.1p1-25.el7_2.x86_64.rpm fce6a61ae3a6cc1eb857ddd53a8e27e82521b0a67e09ac6a1bc3e226de5e2dc9 pam_ssh_agent_auth-0.9.3-9.25.el7_2.i686.rpm f9705216270f97985d10275390cb32fbad3325c23bcf03db52956c6bfb45179d pam_ssh_agent_auth-0.9.3-9.25.el7_2.x86_64.rpm Source: 2274b5597edc75fe23e6b10b8a727105ca3412906338909331f3da5f87054ff6 openssh-6.6.1p1-25.el7_2.src.rpm
CESA-2016:0466 Moderate CentOS 6 openssh SecurityUpdate
CentOS Errata and Security Advisory 2016:0466 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2016-0466.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: b21827af15406e5fb1e14d7ab71f160edd0fd8ec6d59ef49a0a561d5d4b8a419 openssh-5.3p1-114.el6_7.i686.rpm 2f8adbe69f2cded0bccb7286ee55bac1ae517f4a2a5bca19914e3f6b190f2a59 openssh-askpass-5.3p1-114.el6_7.i686.rpm 83429d1efd75f100d1f8b705d082813ffef80174809b06cd67ce192344f0816e openssh-clients-5.3p1-114.el6_7.i686.rpm 80749c749e2e2172ebfa1bdd85d150ed7a54a6c9a693f2aceb5024f6ee5f7f95 openssh-ldap-5.3p1-114.el6_7.i686.rpm 84f986e02d188722130d943aa279a576f5b90125c94bd41bf1669794cac34604 openssh-server-5.3p1-114.el6_7.i686.rpm a800afcd8667f3fcae2424ad39e4b28875324b765a355a6894fa76a148d77e56 pam_ssh_agent_auth-0.9.3-114.el6_7.i686.rpm x86_64: 077603015723d9c96bed95f4215ae642829f009b7bd4f8b5eb44c214a4cf9b23 openssh-5.3p1-114.el6_7.x86_64.rpm af443f9daefbbb5fed105ed9a70bf59e765dca26589d7c0448e579ba8dd15e62 openssh-askpass-5.3p1-114.el6_7.x86_64.rpm e9be7aece75e15e5cf41e509fb36e0b3e7eb3d2ca847fe100336c20fa78945f3 openssh-clients-5.3p1-114.el6_7.x86_64.rpm 77b33f82d02447a6ff11e2a790cf040d0766c7c36ca7290da7c62ed76a892765 openssh-ldap-5.3p1-114.el6_7.x86_64.rpm 9572a0632e4c9c7fd28a23f14843547629a05fff9586696e62c3617a2278818a openssh-server-5.3p1-114.el6_7.x86_64.rpm a800afcd8667f3fcae2424ad39e4b28875324b765a355a6894fa76a148d77e56 pam_ssh_agent_auth-0.9.3-114.el6_7.i686.rpm dae8b23912f2b7a76d9b53a1d133dbb18c467e46bf7a08b3e1941a3be4a998e3 pam_ssh_agent_auth-0.9.3-114.el6_7.x86_64.rpm Source: 1d22a68fb98d5ee4f4cc473b11a2da154568d8a8b4939b568d3094493b4c231a openssh-5.3p1-114.el6_7.src.rpm
BinDiff Now Free, To Delight of Security Researchers
Google’s decision to make BinDiff free is being applauded by security researchers.
Apple Patches Serious iMessage Crypto Flaws
Johns Hopkins University researchers disclosed crypto vulnerabilities in iOS that put iMessage security at risk to advanced attackers.
CEEA-2016:0464 CentOS 7 i40e Enhancement Update
CentOS Errata and Enhancement Advisory 2016:0464 Upstream details at : https://rhn.redhat.com/errata/RHEA-2016-0464.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: c24738b7d58cc0a24d4ba2bb6ff090bb641fa0f12bcc0e7f31ffcc2cc3a6e773 kmod-i40e-1.3.21_k-1.el7_2.x86_64.rpm Source: 867a83ca723b110a44c2aca41b39cd373751a44ac6ae1d17336ffaca02b5c3e8 i40e-1.3.21_k-1.el7_2.src.rpm
Yahoo Deploys Passwordless Account Key Tool
Yahoo deployed a stable version of its Account Key mechanism on Friday in hopes of eliminating the password on the company’s mobile apps.
Twitter security noticeboard
As Twitter celebrates its 10th birthday, we take a look at things from a security point of view with our ‘noticeboard’ feature. Here’s to 10, 20, 30 and many more successful years of tweeting.
The post Twitter security noticeboard appeared first on We Live Security.
