Archive for September 26th, 2013

8 results.

IMPORTANT: cPanel Security Notice 2013-09-25: WordPress 3.6.1

Sep26
by Ike on September 26, 2013 at 5:04 pm
Posted In: Uncategorized

SUMMARY Three CVEs were reported for WordPress 3.6 and WordPress has released an upgraded version to address theses vulnerabilities. cPanel has updated the WordPress version delivered via the cPAddons functionality in WHM to the new version of 3.6.1. AFFECTED VERSIONS All versions of WordPress 3.6.0 and below. SECURITY RATING US-CERT/NIST …

 Comment 

Wildcard EV certificates supported by major browsers

Sep26
by Ike on September 26, 2013 at 2:30 pm
Posted In: Uncategorized

Extended Validation, or EV, certificates are designed to provide evidence of a greater level of verification by the Certificate Authority of the legal identity of the company in control of the SSL certificate and domain name. By way of contrast, the most common type of certificate, domain-validated, only requires the CA to verify control of […]

 Comment 

Parallels Plesk Panel 11.5.30 MU#17

Sep26
by Ike on September 26, 2013 at 11:34 am
Posted In: Uncategorized

The following features have been improved:

[+] Administrators can forbid renaming primary domains of subscriptions.

The primary domain of a subscription is the domain that you set when creating the subscription. The subscription’s name is the same as its primary domain name. Administrators can forbid customers to modify this name by selecting the corresponding option in Tools & Settings or by means of the command-line interface:
  • On Linux: plesk bin server_pref –update -forbid-subscription-rename true|false
  • On Windows: “%plesk_dir%inserver_pref.exe” –update -forbid-subscription-rename true|false
Note: Administrators can modify the names of customers’ subscriptions, even if this option is selected. By default, this option is not selected.
 
[+] The Horde webmail was upgraded to the version 5.1.4

The following issues have been fixed:

[-] Panel did not load proper SSL certificates for domains. (142545)

 Comment 

Ubuntu: 1966-1: Samba vulnerability

Sep26
by Ike on September 26, 2013 at 3:16 am
Posted In: Uncategorized

(Sep 24) Samba could be made to hang if it received specially crafted networktraffic.

 Comment 

Ubuntu: 1967-1: Django vulnerabilities

Sep26
by Ike on September 26, 2013 at 3:16 am
Posted In: Uncategorized

(Sep 24) Several security issues were fixed in Django.

 Comment 

Debian: 2763-1: pyopenssl: hostname check bypassing

Sep26
by Ike on September 26, 2013 at 3:09 am
Posted In: Uncategorized

(Sep 24) It was discovered that PyOpenSSL, a Python wrapper around the OpenSSL library, does not properly handle certificates with NULL characters in the Subject Alternative Name field. [More…]

 Comment 

Red Hat: 2013:1284-01: ruby193-puppet: Critical Advisory

Sep26
by Ike on September 26, 2013 at 2:15 am
Posted In: Uncategorized

(Sep 24) Updated ruby193-puppet packages that fix three security issues are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having critical [More…]

 Comment 

Red Hat: 2013:1285-01: openstack-keystone: Moderate Advisory

Sep26
by Ike on September 26, 2013 at 2:15 am
Posted In: Uncategorized

(Sep 25) Updated openstack-keystone packages that fix one security issue are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]

 Comment 

59 queries. 8.5 mb Memory usage. 0.519 seconds.