Red Hat Enterprise Linux: Updated postgresql92-postgresql packages that fix multiple security issues
are now available for Red Hat Software Collections 1.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2014-8161, CVE-2015-0241, CVE-2015-0243, CVE-2015-0244
Red Hat Enterprise Linux: Updated sssd packages that add one enhancement are now available for Red Hat
Enterprise Linux 6.
Red Hat Enterprise Linux: Updated keepalived packages that add one enhancement are now available for Red
Hat Enterprise Linux 6.
RHN Satellite and Proxy: New spacewalk-final-archive packages are now available for Red Hat Satellite 5.6
and 5.7. New spacewalk-manage-channel-lifecycle packages are now available for
Red Hat Satellite 5.6.
Red Hat Enterprise Linux: Updated cronie packages that fix two bugs and add two enhancements are now
available for Red Hat Enterprise Linux 6.
Four different research teams cracked four different products on Wednesday–Adobe Flash, Reader, Mozilla Firefox, and Microsoft Internet Explorer—and collectively earned a payout of $317,000 on the first day of Pwn2Own 2015.
Original release date: March 19, 2015
Ubuntu has released a security update to address multiple vulnerabilities in PHP5 affecting Ubuntu 14.10, 14.04 LTS, 12.04 LTS, and 10.04 LTS. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service or execute arbitrary code.
Users and administrators are encouraged to review Ubuntu Security Notices USN-2535-1 and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Facebook has announced a new feature of its Messenger product, which allows friends to send payments directly to each other, reports Tech Crunch.
The post Facebook announces peer-to-peer payments between friends appeared first on We Live Security.
Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On (FSSO) before build 164 allows remote attackers to execute arbitrary code via a large PROCESS_HELLO message to the Message Dispatcher on TCP port 8000.
Cross-site scripting (XSS) vulnerability in defaultnewsletter.php in SuperWebMailer 5.60.0.01190 and earlier allows remote attackers to inject arbitrary web script or HTML via the HTMLForm parameter.
