The
following bug has been fixed:
[-] (Debian & Ubuntu) Potential security issue after upgrade from old Plesk
versions.
This MU is strongly recommended for all Parallels Plesk Panel users on Debian
and Ubuntu systems.
Comment
Archive for June, 2013
109 results.
(Jun 13) Alexandru Cornea discovered a vulnerability in libdbus caused by an implementation bug in _dbus_printf_string_upper_bound(). This vulnerability can be exploited by a local user to crash system services that use libdbus, causing denial of service. Depending on the dbus [More…]
Ubuntu: 1873-1: telepathy-gabble vulnerabilities
Jun13
on June 13, 2013
at 3:39 pm
Posted In: Uncategorized
(Jun 12) Several security issues were fixed in telepathy-gabble.
Red Hat: 2013:0944-01: python-keystoneclient: Moderate Advisory
Jun13
on June 13, 2013
at 3:39 pm
Posted In: Uncategorized
(Jun 12) Updated python-keystoneclient packages that fix one security issue and multiple bugs are now available for Red Hat OpenStack 3.0 (Grizzly) Preview. [More…]
Red Hat: 2013:0942-01: krb5: Moderate Advisory
Jun13
on June 13, 2013
at 3:39 pm
Posted In: Uncategorized
(Jun 12) Updated krb5 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate [More…]
Cloud hosting startup DigitalOcean has grown extraordinarily over the past six months. In December 2012, DigitalOcean had just over 100 web-facing computers; in June 2013, Netcraft found more than 7,000. DigitalOcean provides SSD-backed virtual computers which are available by the hour. The cheapest droplet, as it refers to virtual computers, costs less than a cent […]
(Jun 11) PHP could be made to crash or run programs if it received specially craftedinput.
Red Hat: 2013:0928-01: kernel: Important Advisory
Jun12
on June 12, 2013
at 3:34 pm
Posted In: Uncategorized
(Jun 11) Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having [More…]
Red Hat: 2013:0941-01: flash-plugin: Critical Advisory
Jun12
on June 12, 2013
at 3:34 pm
Posted In: Uncategorized
(Jun 12) An updated Adobe Flash Player package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More…]
Debian: 2706-1: chromium-browser: Multiple vulnerabilities
Jun11
on June 11, 2013
at 4:02 pm
Posted In: Uncategorized
(Jun 10) Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2855 [More…]
Debian: 2705-1: pymongo: denial of service
Jun11
on June 11, 2013
at 3:58 pm
Posted In: Uncategorized
(Jun 10) Jibbers McGee discovered that pymongo, a high-performance schema-free document-oriented data store, is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB [More…]
connection failure: Internal error: Cannot obtain XAConnection weblogic.common.resourcepool.ResourceDisabledException: Pool SearchQueryDS is Suspended, cannot allocate resources to applications..
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResourceInternal(ResourcePoolImpl.java:378)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:343)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:363)
at weblogic.jdbc.jta.DataSource.getXAConnectionFromPool(DataSource.java:1751)
at weblogic.jdbc.jta.DataSource.getConnection(DataSource.java:462)
at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:491)
at oracle.search.query.internal.QueryInstance.getConnection(QueryInstance.java:241)
at oracle.search.query.internal.Instance.connect(Instance.java:544)
at oracle.search.query.internal.Instance.initQuery(Instance.java:1170)
at oracle.search.query.internal.Instance.getLocalResult(Instance.java:1550)
at oracle.search.query.internal.Instance.getResult(Instance.java:2418)
at oracle.search.query.internal.Instance.getXSLTResult(Instance.java:3932)
at jsp_servlet.__feed._jspService(__feed.java:5099)
at weblogic.servlet.jsp.JspBase.service(JspBase.java:35)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.security.wls.filter.SSOSessionSynchronizationFilter.doFilter(SSOSessionSynchronizationFilter.java:292)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:139)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3696)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Ubuntu: 1871-1: xserver-xorg-video-openchrome vulnerability
Jun11
on June 11, 2013
at 3:33 pm
Posted In: Uncategorized
(Jun 10) Several security issues were fixed in xserver-xorg-video-openchrome.
Red Hat: 2013:0911-01: kernel: Important Advisory
Jun11
on June 11, 2013
at 3:33 pm
Posted In: Uncategorized
(Jun 10) Updated kernel packages that fix three security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having [More…]
6/10/2013 Houston, TX- cPanel, Inc. announces the release of cPanel & WHM software version 11.38. cPanel & WHM software release 11.38, which goes to the RELEASE tier today, offers significant improvements to SSL Management and Backups. It also provides enhancements to jail shell, email auto configuration, and more. Improved SSL …
Debian: 2704-1: mesa: out of bounds access
Jun10
on June 10, 2013
at 4:06 pm
Posted In: Uncategorized
(Jun 9) It was discovered that applications using the mesa library, a free implementation of the OpenGL API, may crash or execute arbitrary code due to an out of bounds memory access in the library. This vulnerability only affects systems with Intel chipsets. [More…]
Debian: 2703-1: subversion: Multiple vulnerabilities
Jun10
on June 10, 2013
at 3:38 pm
Posted In: Uncategorized
(Jun 9) Several vulnerabilities were discovered in Subversion, a version control system. The Common Vulnerabilities and Exposures project identifies the following problems: [More…]
(Jun 5) Several security issues were fixed in libxcursor.
Ubuntu: 1860-1: libxinerama vulnerability
Jun10
on June 10, 2013
at 3:25 pm
Posted In: Uncategorized
(Jun 5) Several security issues were fixed in libxinerama.
Facebook Apps hosted by Heroku used for viral Twitter phishing attack
Jun10
on June 10, 2013
at 2:00 pm
Posted In: Uncategorized
Netcraft blocked a Twitter phishing site being served from multiple Facebook Applications on 6th June. Visitors to the Facebook applications were requested to enter their Twitter credentials in order to view a “Twitter Video” application. On submission of the fake twitter login form, the user is redirected to YouTube. Links to the phishing attack were spread […]
(Jun 5) Several security issues were fixed in libxfixes.
(Jun 5) Several security issues were fixed in libxext.
(Jun 5) Several security issues were fixed in libxt.
(Jun 5) Several security issues were fixed in libxres.
(Jun 5) Several security issues were fixed in libxvmc.
(Jun 5) Several security issues were fixed in libxi.
Phishing attack hosted on police site with an SSL certificate
Jun06
on June 6, 2013
at 3:00 pm
Posted In: Uncategorized
The Malaysian government’s Police Portal (Johor Contingent) is currently hosting a phishing attack against PayPal on its secure website https://www.polisjohor.gov.my (Site Report). Phishing sites using SSL certificates can piggyback on the trust instilled by browser indicators, such as the padlock icon, to trick potential victims into revealing sensitive information such as their username and password. […]
(Jun 5) Several security issues were fixed in libxxf86vm.
Ubuntu: 1869-1: libxxf86dga vulnerabilities
Jun06
on June 6, 2013
at 2:39 pm
Posted In: Uncategorized
(Jun 5) Several security issues were fixed in libxxf86dga.
Red Hat: 2013:0897-01: mesa: Important Advisory
Jun06
on June 6, 2013
at 2:39 pm
Posted In: Uncategorized
(Jun 3) Updated mesa packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having [More…]