CVE-2015-5143, CVE-2015-5144, CVE-2015-5145
Monthly Archives: July 2015
Fedora EPEL 7 Security Update: libunwind-1.1-10.el7
Fedora EPEL 7 Security Update: ipython-3.2.1-1.el7
Resolved Bugs
1235688 – CVE-2015-4706 CVE-2015-4707 ipython: IPython 3.2 contains important security fixes
1235691 – ipython: IPython 3.2 contains important security fixes [epel-all]<br
IPython 3.2.1 is a small bugfix release, primarily for cross-site security fixes in the notebook. Users are strongly encouraged to upgrade immediately. There are also a few small unicode and nbconvert-related fixes.
IPython 3.2 contains important security fixes. Users are strongly encouraged to upgrade immediately.
Highlights:
– Address cross-site scripting vulnerabilities CVE-2015-4706, CVE-2015-4707
– A security improvement that set the secure attribute to login cookie to prevent them to be sent over http
– Revert the face color of matplotlib axes in the inline backend to not be transparent.
– Enable mathjax safe mode by default
– Fix XSS vulnerability in JSON error messages
– Various widget-related fixes
Fedora EPEL 6 Security Update: hostapd-2.0-7.el6
Fedora EPEL 6 Security Update: rubygem-crack-0.3.2-2.el6
Resolved Bugs
917237 – CVE-2013-1800 Ruby Gem crack: YAML parameter parsing vulnerability [epel-all]<br
Update rubygem-crack in epel6 to 0.3.2 to address security issue
Fedora EPEL 6 Security Update: libunwind-1.1-3.el6
Fedora EPEL 7 Security Update: hostapd-2.4-3.el7
Fedora EPEL 6 Security Update: python-keyring-5.0-1.el6
Resolved Bugs
881138 – CVE-2012-5577 python-keyring: insecure permissions on configuration file [epel-6]<br
– Update to version 5.0
What is an exploit?
Cybercriminals constantly use vulnerabilities to infiltrate networks, and their favorite tools for this are known as exploits. But what is an exploit?
The post What is an exploit? appeared first on We Live Security.
