Skip to content

Home Early Warning System Advisories
Advisory
DSA-3136-1 polarssl -- security update
Monday, 26 January 2015 12:36

A vulnerability was discovered in PolarSSL, a lightweight crypto and SSL/TLS library. A remote attacker could exploit this flaw using specially crafted certificates to mount a denial of service against an application linked against the library (application crash), or potentially, to execute arbitrary code.

For the stable distribution (wheezy), this problem has been fixed in version 1.2.9-1~deb7u5.
For the upcoming stable distribution (jessie) and the unstable distribution (sid), this problem will be fixed soon.

We recommend that you upgrade your polarssl packages.

 
Adobe Flash Player Memory Leak
Friday, 23 January 2015 12:22


A vulnerability was reported in Adobe Flash Player. A remote user can bypass the memory address randomization security. It is advised to update.


 
Siemens Multiple Vulnerabilities
Friday, 23 January 2015 12:21


Multiple vulnerabilities were reported in Siemens Scalance X-300 and X 408 Switches. A remote user can cause denial of service conditions. A remote authenticated user can cause denial of service conditions. A remote user can redirect the target user to arbitrary web sites.

Siemens SIMATIC S7-1200 CPU Web Interface
Siemens Scalance X-300/X 408 HTTP/HTTPS/FTP Flaws

It is advised to update.

 
Attachmate Reflection Buffer Overflow in FTP Client
Friday, 23 January 2015 12:21


A vulnerability was reported in Attachmate Reflection. A remote user can execute arbitrary code on the target system. It is advised to update.

 
Attachmate Reflection Buffer Overflow in FTP Client
Thursday, 22 January 2015 16:57


A vulnerability was reported in Attachmate Reflection. A remote user can execute arbitrary code on the target system. It is advised to update.


 
<< Start < Prev 371 372 373 374 375 376 377 378 379 380 Next > End >>

Page 372 of 380
[YOUR IP: 3.83.32.171: 44318] ...   [YOUR BROWSER: CCBot/2.0 (https://commoncrawl.org/faq/)] ...