Ike.ninja

(Dec 12) The system’s firewall could be bypassed by a remote attacker.

(Dec 10) Updated openstack-keystone packages that fix two security issues, multiple bugs, and add enhancements are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having moderate [More…]

(Dec 11) A heap-based buffer overflow was discovered in bogofilter, a software package for classifying mail messages as spam or non-spam. Crafted mail messages with invalid base64 data could lead to heap corruption and, potentially, arbitrary code execution. [More…]

(Dec 10) Updated openstack-glance packages that fix multiple bugs and add various enhancements are now available for Red Hat OpenStack Essex. 2. Relevant releases/architectures: [More…]

The following new functionality has been added:

[+] Ability to manage amount of auto-reply answers in Plesk GUI has been added. Deatils in article http://kb.parallels.com/en/112946  (91429)

The following bug has been fixed:

[-] (Windows only) dbbackup.exe consumes a lot of memory when copying MS SQL database (122635)
[-] mailmng fails on Debian 6 x64 with error “symbol EVP_CIPHER_CTX_init, version libmysqlclient_16 not defined in file libmysqlclient.so.16 with link time reference” after libmysqlclient package update (122745)

(Dec 11) It was discovered that the CGI module for Perl does not filter LF characters in the Set-Cookie and P3P headers, potentially allowing attackers to inject HTTP headers. [More…]

(Dec 10) The system’s firewall could be bypassed by a remote attacker.

(Dec 10) Updated openstack-keystone packages that fix two security issues, multiple bugs, and add enhancements are now available for Red Hat OpenStack Essex. The Red Hat Security Response Team has rated this update as having moderate [More…]

(Dec 10) MySQL could be made to run programs if it received specially craftednetwork traffic from an authenticated user.

It’s the most wonderful time of the year: a new WordPress release is available and chock-full of goodies to delight bloggers and developers alike. We’re calling this one “Elvin” in honor of drummer Elvin Jones, who played with John Coltrane in addition to many others. If you’ve been around WordPress a while, the most dramatic […]

The following bug has been fixed:

[-] mailmng fails on Debian 6 x32 with error “symbol EVP_CIPHER_CTX_init, version libmysqlclient_16 not defined in file libmysqlclient.so.16 with link time reference“ after libmysqlclient package update (122745)

(Dec 8) For the stable distribution (squeeze), these problems have been fixed in version 2.0.11-17. For the testing distribution (wheezy), these problems have been fixed in [More…]

Case 59926 Summary Multiple privilege escalation vulnerabilities due to the use of Storable for serialization Security Rating cPanel has assigned a Security Level of “Important” to this vulnerability. Description The Perl Storable module provides support for serialization and deserialization of Perl data structures. In cPanel & WHM this functionality is …

(Nov 30) Several security issues were fixed in the kernel.

(Dec 4) Updated kernel packages that fix multiple security issues, two bugs, and add two enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More…]