RHBA-2016:1949-1: ovirt-iso-uploader bug fix update for RHV 4.0.4 Red Hat Enterprise Linux: Updated ovirt-iso-uploader packages that fix several bugs are now available. Source: RHBA-2016:1949-1: ovirt-iso-uploader bug fix update for RHV 4.0.4
USN-3092-1: Samba vulnerability Ubuntu Security Notice USN-3092-1 28th September, 2016 samba vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Samba could be tricked into connecting to impersonated servers. Software description samba – SMB/CIFS file, print, and login server for Unix Details Stefan Metzmacher discovered that Samba incorrectly handled certain flagsin SMB2/3 client connections. A remote attacker could use this issue todisable client signing and impersonate servers by performing a man in themiddle attack. Samba has been updated to 4.3.11 in Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.In addition to the security fix, the updated packages contain bug fixes,new features, and possibly incompatible changes. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: samba 2:4.3.11+dfsg-0ubuntu0.16.04.1 Ubuntu 14.04 LTS: samba 2:4.3.11+dfsg-0ubuntu0.14.04.1 [ more… ]
USN-3093-1: ClamAV vulnerabilities Ubuntu Security Notice USN-3093-1 28th September, 2016 clamav vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary ClamAV could be made to crash or run programs if it processed a specially crafted file. Software description clamav – Anti-virus utility for Unix Details It was discovered that ClamAV incorrectly handled certain malformed files.A remote attacker could use this issue to cause ClamAV to crash, resultingin a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the ClamAVAppArmor profile. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: clamav 0.99.2+dfsg-0ubuntu0.16.04.1 Ubuntu 14.04 LTS: clamav 0.99.2+addedllvm-0ubuntu0.14.04.1 Ubuntu 12.04 LTS: clamav 0.99.2+addedllvm-0ubuntu0.12.04.1 To update your system, please follow these instructions: [ more… ]
Update to the Microsoft Edge Web Platform on Windows Insider Preview Bug Bounty Program terms On August 4, 2016 we launched a bounty program that targets Remote Code Execution (RCE) vulnerabilities in Microsoft Edge on the Windows Insider Preview Slow (WIP slow). Today, we will be making additions to this bounty program. Since security is a continuous effort and not a destination, we prioritize acquiring different types of vulnerabilities in different points of time. Currently, we are focusing on vulnerabilities that lead to violation of W3C standards that compromise privacy and integrity of important user data, and RCEs. This program now includes: Same Origin Policy bypass vulnerabilities (example: UXSS) Referer Spoofing vulnerabilities Remote Code Execution vulnerabilities in Microsoft Edge on Windows Insider Preview Vulnerabilities in open source sections of Chakra The bounty will run August 4, 2016 through May 15, [ more… ]
RHSA-2016:1944-1: Important: bind security update Red Hat Enterprise Linux: An update for bind is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-2776 Source: RHSA-2016:1944-1: Important: bind security update
Copyright © 2025 | WordPress Theme by MH Themes
