Raptor is a web application firewall written in C that uses DFA to block SQL injection, cross site scripting, and path traversals.
923cdb6e5ca88b6f0ebaca62f650819c0d9b6ac5c4bdc58835f40a6a364af04cLynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
ccc77cc66c14526824fd39dfb2539bb601249e9b70c87d1d0f2f917e23db0975A vulnerability allowed remote attackers to determine which specific Facebook user ID is linked with a mobile phone number without secure approval. The vulnerability is located in the ctx and recover lwv parameters and /login/identify modules.
1f368fb681cb0f83b994a4f076b47f93bf100cc10af4af529935449d736dd571AirSnort version 0.2.7 suffers from a stack corruption denial of service vulnerability.
a000566860577c46a2f8b303aee53f745d53565262b95a3b55c3cd0d5b308737Any Video Converter version 5.9.5 suffers from a dll hijacking vulnerability.
1536ebf1c3162761ab646ef4b5b94b2153d3b5d816712287cdae8f5d18ede71cMicrosoft GDI+ suffers from an out-of-bounds read in DIB palette handling in ValidateBitmapInfo.
b131f5d54b222bb102eab5eb641504aa9eed19d929668be9eeb7bff8111fa709Red Hat Security Advisory 2016-1583-01 - Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. Security Fix: A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU.
0d1ff99ec8bd5a633a95dd3a341a48cab2ede978442c7c8a329dda3701f1a07eRed Hat Security Advisory 2016-1582-01 - Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. Security Fix: A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU.
6b65a7593b94ad58f8c977b277674a50ec585646831d3d522a915559d5c87647Red Hat Security Advisory 2016-1581-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: A flaw was found in the way certain interfaces of the Linux kernel's Infiniband subsystem used write() as bi-directional ioctl() replacement, which could lead to insufficient memory security checks when being invoked using the splice() system call. A local unprivileged user on a system with either Infiniband hardware present or RDMA Userspace Connection Manager Access module explicitly loaded, could use this flaw to escalate their privileges on the system.
a289a3f31cb45085d0521e74a9fb29cad805dc630b75e4207f766fbc4397ad81Red Hat Security Advisory 2016-1580-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 52.0.2743.116. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim.
0a90745c288adf50a8d3642d8c254da41e1c6c70fa80533eb5590ebc6596400fSamhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
921a4d32c511ba5b757fa4342ddbbd83dc250134c8d5562ce4500ce5b60fd456This bulletin summary lists two bulletins that have undergone a major revision increment.
5af2a7b92432a69b2efb1ec8e3925a7d28682f8fdff6a1292623648e37ce952eMicrosoft Internet Explorer suffers from an iframe sandbox local file name disclosure vulnerability.
c9e6501898d6e4e506e28508a7c9fcb53f7ac24f8c867ab0e2dad6adc79d96b5Nuke Evolution version 2.0.9d suffers from multiple client-side cross site scripting vulnerabilities.
6fc690aae1c715676970cd01c9404154f8bc9cedadde9654fdadd242ccc22750FortiVoice version 5.0 suffers from filter bypass and cross site scripting vulnerabilities.
6fba6b0a5841a1bab3c4d0bf9cbfe12235ac20c23e2a2b40363216d1dd1d5b32
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed