-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Advisory MDVA-2014:014 http://www.mandriva.com/en/support/security/ _______________________________________________________________________ Package : mediawiki Date : September 22, 2014 Affected: Business Server 1.0 _______________________________________________________________________ Problem Description: This update provides MediaWiki 1.23.3, which fixes several bugs. _______________________________________________________________________ References: http://advisories.mageia.org/MGAA-2014-0170.html _______________________________________________________________________ Updated Packages: Mandriva Business Server 1/X86_64: a4c54a101474c76abb19b62aa49dc12d mbs1/x86_64/mediawiki-1.23.3-1.mbs1.noarch.rpm 876aa46509eca08888392ea248a669ef mbs1/x86_64/mediawiki-mysql-1.23.3-1.mbs1.noarch.rpm 2418d49bba28fe6dd1b57805e
Category Archives: Security
Security
[ MDVSA-2014:180 ] gnupg
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2014:180 http://www.mandriva.com/en/support/security/ _______________________________________________________________________ Package : gnupg Date : September 22, 2014 Affected: Business Server 1.0 _______________________________________________________________________ Problem Description: Updated gnupg packages fix security vulnerability: The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL side-channel attack (CVE-2014-5270). _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5270 http://advisories.mageia.org/MGASA-2014-0381.html _______________________________________________________________________ Updated Packages: Mandriva Business Server 1/X86_64: 9181a3cd9d0ddb0ef93bf14cc11b2d99 mbs1/x86
Joomla Mac Gallery 1.5 Arbitrary File Download
Joomla Mac Gallery component versions 1.5 and below suffer from an arbitrary file download vulnerability.
HP Security Bulletin HPSBPI03107
HP Security Bulletin HPSBPI03107 – A potential security vulnerability has been identified with certain HP LaserJet Printers, MFPs and certain HP OfficeJet Enterprise Printers using OpenSSL. The vulnerability could be exploited remotely to allow remote unauthorized access. Note: This OpenSSL vulnerability was detected in specific OpenSSL versions. OpenSSL is a 3rd party product that is embedded with some HP printer products. This bulletin notifies HP Printer customers about impacted products. Revision 1 of this advisory.
Mandriva Linux Security Advisory 2014-180
Mandriva Linux Security Advisory 2014-180 – The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL side-channel attack.
KonaKart Storefront Application Cross Site Request Forgery
KonaKart Storefront Application versions prior to 7.3.0.0 suffer from a cross site request forgery bypass vulnerability.