Low-tech attackers harness open source security tools for targeted cyberespionage
Monthly Archives: April 2016
DSA-3560 php5 – security update
Several vulnerabilities were found in PHP, a general-purpose scripting
language commonly used for web application development.
DSA-3559 iceweasel – security update
Multiple security issues have been found in Iceweasel, Debian’s version
of the Mozilla Firefox web browser: Multiple memory safety errors and
buffer overflows may lead to the execution of arbitrary code or denial
of service.
CESA-2016:0695 Critical CentOS 7 firefox SecurityUpdate
CentOS Errata and Security Advisory 2016:0695 Critical Upstream details at : https://rhn.redhat.com/errata/RHSA-2016-0695.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 7ad87030365ab1016abb60f1e290685ad331c5a5f1562bde57106a7ccacaf69b firefox-45.1.0-1.el7.centos.i686.rpm 9d5a9f3245ea81a0750082d056031816b6d1d05fe278641a0aad4fd44f367c05 firefox-45.1.0-1.el7.centos.x86_64.rpm Source: ea6c6ab0a63372cae9b1c76d642de69e23866e790dc41d5a91f56b99d352ec34 firefox-45.1.0-1.el7.centos.src.rpm
Bugtraq: VoipNow v4.0.1 – (xajax_handler) Persistent Vulnerability
VoipNow v4.0.1 – (xajax_handler) Persistent Vulnerability
Bugtraq: Trend Micro (Account) – Email Spoofing Web Vulnerability
Trend Micro (Account) – Email Spoofing Web Vulnerability
Bugtraq: Sophos XG Firewall (SF01V) – Persistent Web Vulnerability
Sophos XG Firewall (SF01V) – Persistent Web Vulnerability
Bugtraq: [SECURITY] [DSA 3557-1] mysql-5.5 security update
[SECURITY] [DSA 3557-1] mysql-5.5 security update
RHSA-2016:0695-1: Critical: firefox security update
Red Hat Enterprise Linux: An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat
Enterprise Linux 6, and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-2805, CVE-2016-2806, CVE-2016-2807, CVE-2016-2808, CVE-2016-2814
RHBA-2016:0691-1: openstack-nova bug fix advisory
Red Hat Enterprise Linux: Updated OpenStack Compute packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for
RHEL 7.