[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256288

 
 

909

 
 

199146

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 82556 Download | Alert*

Strongswan"s gmp plugin could treat empty RSA signature as valid ones

The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and Sieve support. An authentication bypass flaw was found in the cyrus-imapd NNTP server, nntpd. A remote user able to use the nntpd service could use this flaw to read or post newsgroup messages on an NNTP server configured to require user authentication, without providing valid authentication credentials. A ...

NetworkManager is a network link manager that attempts to keep a wired or wireless network connection active at all times. It was found that NetworkManager did not properly enforce PolicyKit settings controlling the permissions to configure wireless network sharing. A local, unprivileged user could use this flaw to bypass intended PolicyKit restrictions, allowing them to enable wireless network sh ...

The pam_krb5 module allows Pluggable Authentication Modules aware applications to use Kerberos to verify user identities by obtaining user credentials at log in time. A flaw was found in pam_krb5. In some non-default configurations , the text of the password prompt varied based on whether or not the username provided was a username known to the system. A remote attacker could use this flaw to rec ...

The Network Time Protocol is used to synchronize a computer"s time with a referenced time source. A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVP_VerifyFinal function. On systems using NTPv4 authentication, this could lead to an incorrect verification of cryptographic signatures, allowing time-spoofing attacks. Note: This issue only affects systems th ...

The GNOME Display Manager is a configurable re-implementation of XDM, the X Display Manager. GDM allows you to log in to your system with the X Window System running, and supports running several different X sessions on your local machine at the same time. A flaw was found in the way the gdm package was built. The gdm package was missing TCP wrappers support, which could result in an administrato ...

unattended-upgrades: automatic installation of security upgrades An attacker could trick unattended-upgrades into installing altered packages.

unzip: De-archiver for .zip files unzip could be made to crash or run programs as your login if it opened a specially crafted file.

freeimage: Support library for graphics image formats FreeImage could be made to crash or run programs as your login if it opened a specially crafted file.

Two vulnerabilities have been found in unzip, a de-archiver for .zip files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-7696 Gustavo Grieco discovered that unzip incorrectly handled certain password protected archives. If a user or automated system were tricked into processing a specially crafted zip archive, an attacker could possibly execute arbit ...


Pages:      Start    8213    8214    8215    8216    8217    8218    8219    8220    8221    8222    8223    8224    8225    8226    ..   8255

© SecPod Technologies