Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Microsoft Security Advisory [1] (CERT-EU Security Advisory 2013-0089)

Microsoft is investigating private reports of a vulnerability in the Microsoft Graphics component that affects Microsoft Windows, Microsoft Office, and Microsoft Lync.
Auteur: Cert EU

Cisco IOS XE: Denial of service - Remote/unauthenticated [1] (CERT-EU Security Advisory 2013-0088)

Cisco IOS XE Software for 1000 Series Aggregation Services Routers (ASR) contains the following denial of service (DoS) vulnerabilities
Auteur: Cert EU

Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products [1] (CERT-EU Security Advisory 2013-0087)

Multiple Cisco products include an implementation of Apache Struts 2 component that is affected by a remote command execution vulnerability.
Auteur: Cert EU

Several Vulnerabilities and Security Notices in multiple Cisco products (CERT-EU Security Advisory 2013-0086)

A vulnerability in the fabric interconnect of Cisco Unified Computing System could allow an authenticated, local attacker to cause a denial of service (DoS) condition.
Auteur: Cert EU

RSA Authentication Agent: Reduced security [1] (CERT-EU Security Advisory 2013-0085)

In certain circumstances, RSA Authentication Agent for Web for IIS protection can be bypassed due to a fail open flaw in the agent.
Auteur: Cert EU

Several Vulnerabilities in Linux kernel [1] (CERT-EU Security Advisory 2013-0084)

* It was found that the fix for CVE-2012-3552 released via RHSA-2012 ... * An information leak flaw was found in the way Linux kernel's device mapper subsystem,... * A format string flaw was found in the b43_do_request_fw() function in the Linux...
Auteur: Cert EU

Vulnerability in python-crypto (CERT-EU Security Advisory 2013-0083)

A cryptographic vulnerability was discovered in the pseudo random number generator in python-crypto.
Auteur: Cert EU

Multiple Vulnerabilities in MySQL 5.1 on Debian (CERT-EU Security Advisory 2013-0082)

This DSA updates the MySQL database to 5.1.72. This fixes multiple unspecified security problems in the Optimizer component: http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html [1] [2]
Auteur: Cert EU

Several Vulnerabilities in RedHat (CERT-EU Security Advisory 2013-0081)

Updated java-1.7.0-oracle packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary.
Auteur: Cert EU

Several Vulnerabilities and Security Notices in multiple Cisco products (CERT-EU Security Advisory 2013-0080)

Cisco Adaptive Security Appliance (ASA) Software is affected by the following vulnerabilities
Auteur: Cert EU

Several Vulnerabilities in multiple VMware products (CERT-EU Security Advisory 2013-0079)

VMware has updated vCenter Server, vCenter Server Appliance (vCSA), vSphere Update Manager (VUM), ESXi and ESX to address multiple security vulnerabilities. [1] [2] [3]
Auteur: Cert EU

Cisco Catalyst 6500 Series Switches & Cisco 7600 Series Routers: Multiple vulnerabilities [1] (CERT-EU Security Advisory 2013-0078)

Cisco Firewall Services Module (FWSM) Software for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers is affected by two vulnerabilities.
Auteur: Cert EU

JBoss Middleware security update [1] (CERT-EU Security Advisory 2013-0077)

An update for the commons-fileupload component that fixes one security issue is now available from the Red Hat Customer Portal for Red Hat JBoss BRMS 5.3.1; and Red Hat JBoss Portal 4.3 CP07, 5.2.2 and 6.0.0.
Auteur: Cert EU

Title: Oracle Critical Patch Update Advisory (CERT-EU Security Advisory 2013-0076)

The Oracle Critical Patch Update for October 2013 [1] were released.
Auteur: Cert EU

Apache Execute arbitrary code/commands - Remote/unauthenticated [1] (CERT-EU Security Advisory 2013-0075)

Robert Matthews discovered that the Apache FCGID module, a FastCGI implementation for Apache HTTP Server, fails to perform adequate boundary checks on user-supplied input.
Auteur: Cert EU

Security Advisory for Adobe Reader and Acrobat [1] (CERT-EU Security Advisory 2013-0074)

Adobe has released security updates for Adobe Reader and Acrobat XI (11.0.04) for Windows.
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2013-073)

Microsoft has published on a number of new security updates which has been released on October 09, 2013.
Auteur: Cert EU

Cisco IOS XR Software Memory Exhaustion Vulnerability [1] (CERT-EU Security Advisory 2013-0072)

Cisco IOS XR Software version 4.3.1 contains a vulnerability that could result in complete packet memory exhaustion.
Auteur: Cert EU

Several Vulnerabilities in Mozilla Firefox prior to 24 (CERT-EU Security Advisory 2013-0071)

Several Critical, High and Moderate vulnerabilities have been fixed in Mozilla Firefox 24. [1]
Auteur: Cert EU

Multiple Bugfixes in PHP (CERT-EU Security Advisory 2013-0070)

The PHP development team announces the immediate availability of PHP 5.5.4. This release fixes several bugs against PHP 5.5.3. [1]
Auteur: Cert EU

Microsoft Alert Vulnerability in Internet Explorer Could Allow Remote Code Execution [1] (CERT-EU Security Advisory 2013-0069)

Microsoft is investigating public reports of a vulnerability in all supported versions of Internet Explorer.
Auteur: Cert EU

VMware Workstation host privilege escalation vulnerability in Linux Version [1](CERT-EU Security Advisory 2013-0068)

VMware Workstation and VMware Player address a vulnerability in the vmware-mount component which could result in a privilege escalation on linux-based host machines.
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2013-067)

This bulletin summary lists 3 critical (MS13-059, MS13-060, MS13-061) and 5 important (MS13-062, MS13-063, MS13-064, MS13-065, MS13-066) Microsoft security bulletins released for August 2013 [1].
Auteur: Cert EU

Microsoft Security Updates - Advance Notification (CERT-EU Security Advisory 2013-0066)

Microsoft has published a number of new security updates which are planned for release on August 13, 2013.
Auteur: Cert EU

JBoss SOA Platform 5.3.1 security update [1] (CERT-EU Security Advisory 2013-0065)

Red Hat JBoss SOA Platform 5.3.1 roll up patch 3, which fixes three security issues and various bugs, is now available from the Red Hat Customer Portal.
Auteur: Cert EU
First567891011121314Last

Événements SSI