Red Hat Enterprise Linux: Updated ovirt-node packages that fix a bug and add various enhancements are now
available.
Monthly Archives: August 2016
RHEA-2016:1555-1: rhev-hypervisor update
Red Hat Enterprise Linux: Updated rhev-hypervisor package based on Red Hat Enterprise Linux 6.8. is now
available.
RHBA-2016:1556-1: qemu-kvm-rhev bug fix and enhancement update
Red Hat Enterprise Linux: An update for qemu-kvm-rhev is now available for Red Hat Enterprise
Virtualization.
RHBA-2016:1554-1: updated RHSCL container images
Updated Red Hat Software Collections container images are now available in the
Red Hat Container Registry.
Administration Views – Critical – Access bypass – SA-CONTRIB-2016-041
- Advisory ID: DRUPAL-SA-CONTRIB-2016-041
- Project: Administration Views (third-party module)
- Version: 7.x
- Date: 2016-August-03
- Security risk: 16/25 ( Critical) AC:Basic/A:None/CI:Some/II:None/E:Exploit/TD:All
- Vulnerability: Access bypass
Description
Administration Views module replaces overview/listing pages with actual views for superior usability.
The module does not check access properly under certain circumstances. Anonymous users could get access to read information they should not have access to.
CVE identifier(s) issued
- A CVE identifier will be requested, and added upon issuance, in accordance with Drupal Security Team processes.
Versions affected
- administration views 7.x-1.x versions prior to 7.x-1.6.
Drupal core is not affected. If you do not use the contributed Administration Views module, there is nothing you need to do.
Solution
Install the latest version:
- If you use the Administration Views module for Drupal 7.x, upgrade to administration views 7.x-1.6
Also see the Administration Views project page.
Reported by
Fixed by
- Damian Lee a module maintainer
Coordinated by
- Michael Hess of the Drupal Security Team
Contact and More Information
The Drupal security team can be reached at security at drupal.org or via the contact form at https://www.drupal.org/contact.
Learn more about the Drupal Security team and their policies, writing secure code for Drupal, and securing your site.
Follow the Drupal Security Team on Twitter at https://twitter.com/drupalsecurity
Avast is an ideal employer for student workers
From left to right: Timofei Semisynov, Nikola Jančiková, Tomáš Flek, Simona Stančeková and Bohuslav Endt.
At Avast, student workers are a special and integral part of our employee base. In order to get a genuine picture of life at Avast through a student worker’s lens, I sat down with five of our colleagues who work in various departments of the company. Although they are each responsible for different functions, there’s one key element that they all have in common: they are the makers and doers behind the most trusted mobile and PC security in the world.
Into the dark: 3 myths about the Darknet
The Darknet is huge beyond belief and all people there are criminals. These and more myths are explained in our blog post.
The post Into the dark: 3 myths about the Darknet appeared first on Avira Blog.
Fake Prisma apps found on Google Play
ESET researchers have discovered fake Prisma apps of different types, including several dangerous trojan downloaders. The Google Play security team has since removed them.
The post Fake Prisma apps found on Google Play appeared first on We Live Security.
Bitcoin Price Drops 20% After $72 Million in Bitcoin Stolen from Bitfinex Exchange
Yet another blow to Bitcoin: One of the world’s most popular exchanges of the cryptocurrency has suffered a major hack, leading to a loss of around $72 Million worth of Bitcoins.
Hong Kong-based Bitcoin exchange ‘Bitfinex’ has posted a note on their website announcing the shutdown of its operation after discovering a security breach that allowed an attacker to steal some user funds.
While
Telegram Hacked? Turn ON Important Security Settings to Secure your Private Chats
We have heard a lot about data breaches nowadays. And if you think that switching to an encrypted messaging service may secure you and your data, then you may be wrong.
No good deed today can help you protect yourself completely.
Reuters and several media outlets are reporting that the phone numbers of 15 Million users in Iran and more than a dozen accounts on the Telegram instant messaging
