(Nov 18) Several security issues were fixed in NSS.
Comment
Archive for November, 2013
99 results.
(Nov 16) It was discovered discovered that SSL connections with client certificates stopped working after the DSA-2795-1 update of lighttpd. An upstream patch has now been applied that provides an appropriate identifier for client certificate verification. [More…]
Red Hat: 2013:1526-01: nagios: Moderate Advisory
Nov20
on November 20, 2013
at 7:06 am
Posted In: Uncategorized
(Nov 18) Updated nagios packages that fix two security issues are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Red Hat: 2013:1525-01: openstack-glance: Moderate Advisory
Nov20
on November 20, 2013
at 7:06 am
Posted In: Uncategorized
(Nov 18) Updated openstack-glance packages that fix one security issue and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Debian: 2797-1: chromium-browser: Multiple vulnerabilities
Nov19
on November 19, 2013
at 7:41 am
Posted In: Uncategorized
(Nov 17) Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2931 [More…]
Debian: 2798-1: curl: unchecked ssl certificate h
Nov19
on November 19, 2013
at 7:17 am
Posted In: Uncategorized
(Nov 17) Scott Cantor discovered that curl, a file retrieval tool, would disable the CURLOPT_SSLVERIFYHOST check when the CURLOPT_SSL_VERIFYPEER setting was disabled. This would also disable ssl certificate host name checks when it should have only disabled verification of the certificate trust [More…]
Red Hat: 2013:1521-01: python-django: Moderate Advisory
Nov17
on November 17, 2013
at 6:54 am
Posted In: Uncategorized
(Nov 14) Updated python-django packages that fix two security issues are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Red Hat: 2013:1522-01: Foreman: Moderate Advisory
Nov17
on November 17, 2013
at 6:54 am
Posted In: Uncategorized
(Nov 14) Updated Foreman packages that fix one security issue are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Ubuntu: 2020-1: Linux kernel (Raring HWE) vulnerabilities
Nov16
on November 16, 2013
at 7:49 am
Posted In: Uncategorized
(Nov 8) Several security issues were fixed in the kernel.
Red Hat: 2013:1520-01: kernel: Moderate Advisory
Nov16
on November 16, 2013
at 6:47 am
Posted In: Uncategorized
(Nov 14) Updated kernel packages that fix two security issues, one bug, and add two enhancements are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Red Hat: 2013:1523-01: ruby193-ruby: Moderate Advisory
Nov16
on November 16, 2013
at 6:47 am
Posted In: Uncategorized
(Nov 14) Updated ruby193-ruby packages that fix one security issue are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Ubuntu: 2024-1: Linux kernel (OMAP4) vulnerabilities
Nov15
on November 15, 2013
at 7:40 am
Posted In: Uncategorized
(Nov 8) Several security issues were fixed in the kernel.
Ubuntu: 2029-1: Apache Commons FileUpload vulnerability
Nov15
on November 15, 2013
at 7:40 am
Posted In: Uncategorized
(Nov 13) Apache Commons FileUpload could be made to overwrite files.
Debian: 2796-1: torque: arbitrary code execution
Nov15
on November 15, 2013
at 7:35 am
Posted In: Uncategorized
(Nov 13) Matt Ezell from Oak Ridge National Labs reported a vulnerability in torque, a PBS-derived batch processing queueing system. A user could submit executable shell commands on the tail of what is [More…]
Debian: 2797-1: icedove: Multiple vulnerabilities
Nov15
on November 15, 2013
at 7:35 am
Posted In: Uncategorized
(Nov 13) Multiple security issues have been found in Icedove, Debian’s version of the Mozilla Thunderbird mail and news client. Multiple memory safety errors, and other implementation errors may lead to the execution of arbitrary code. [More…]
Red Hat: 2013:1518-01: flash-plugin: Critical Advisory
Nov15
on November 15, 2013
at 6:38 am
Posted In: Uncategorized
(Nov 13) An updated Adobe Flash Player package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More…]
Red Hat: 2013:1519-01: kernel: Important Advisory
Nov15
on November 15, 2013
at 6:38 am
Posted In: Uncategorized
(Nov 13) Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6.2 Extended Update Support. The Red Hat Security Response Team has rated this update as having [More…]
Incentives for Phishing Site Reporters
Nov14
on November 14, 2013
at 4:51 pm
Posted In: Uncategorized
As of the 1st November 2013, the Netcraft Anti-Phishing community has helped to block over 6.9 million phishing attacks worldwide. We incentivise phishing reports from the community, and have now added a Netcraft USB Flash Drive to our list of incentives: Prize
When Netcraft USB Flash Drive
after 100 validated phishing reports Netcraft Mug
after 250 Netcraft Polo Shirt
after 500 Targus Laptop […]
The following features were added:
[+]Administrators can restore backups from the command line and retrieve the status of the restoration process.
On Linux:
plesk bin pleskrestore --restore .... -asyncOn Windows:
"%plesk_dir%inpleskrestore.exe" --restore .... -async-async Restore a backup asynchronously. Works with “–restore” only. This will return the task ID to stdout.
Use –get-restore-task-status to check the task status:
On Linux:
plesk bin pleskrestore --get-restore-task-status <task-id><br><br><task-status task-id="9516"><br><mixed status=""><br><restore status=""><br><conflict-resolve task-id="2147483640"><br><finished status="success"><br><execution-result status="success"/><br></finished><br></conflict-resolve><br><deploy task-id="9570"><br><working><br><deploy total-domains="1" total-accounts="0" completed-domains="0" completed-accounts="0"><br><current-object type="domain"><![CDATA[<br>domain.com]]></current-object><br></deploy><br></working><br></deploy><br></restore><br></mixed><br></task-status>pleskrestore –get-restore-task-status exit codes:
Code Description
200 Restore in progress
201 Restore is failed (any task has error status)
202 Restore is finished with warnings (any task has warnings status)
203 Restore is finished with infos
204 Restore is successfully finished
[+] Roundcube webmail was updated to version 0.9.5.
The following issues were resolved:
[-] Domain backups did not work if web server configuration files contained German umlaut characters. (PPPM-867)
[-] Users were unable to log in to Plesk because of issues with the apskeyhandler.exe process.
[-] Administrators received duplicate subscription expiration notices. (PPPM-1002)
[-] Server restart could take about 10-20 minutes due to recreation of web server configuration files for all sites. (PPPM-896)
Ubuntu: 2025-1: Libav vulnerabilities
Nov14
on November 14, 2013
at 7:35 am
Posted In: Uncategorized
(Nov 11) Libav could be made to crash or run programs as your login if it opened aspecially crafted file.
Ubuntu: 2028-1: Apache XML Security for Java vulnerability
Nov14
on November 14, 2013
at 7:35 am
Posted In: Uncategorized
(Nov 12) Apache XML Security for Java could be tricked into validating spoofedsignatures.
Debian: 2795-1: lighttpd: Multiple vulnerabilities
Nov14
on November 14, 2013
at 7:11 am
Posted In: Uncategorized
(Nov 13) Several vulnerabilities have been discovered in the lighttpd web server. CVE-2013-4508 [More…]
Ubuntu: 2026-1: libvirt vulnerability
Nov13
on November 13, 2013
at 7:26 am
Posted In: Uncategorized
(Nov 11) libvirt would allow unintended access privileges.
(Nov 12) SPICE could be made to crash if it received specially crafted networktraffic.
Debian: 2794-1: spip: Multiple vulnerabilities
Nov13
on November 13, 2013
at 7:08 am
Posted In: Uncategorized
(Nov 10) Several vulnerabilities have been found in SPIP, a website engine for publishing, resulting in cross-site request forgery on logout, cross-site scripting on author page, and PHP injection. [More…]
Debian: 2793-1: libav: Multiple vulnerabilities
Nov13
on November 13, 2013
at 6:15 am
Posted In: Uncategorized
(Nov 9) Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. The CVE IDs mentioned above are just a small portion of the security issues fixed in this update. A full list of the changes is available at [More…]
cPanel & WHM software version 11.36 will reach End of Life in January 2014. In accordance with our EOL policy [http://docs.cpanel.net/twiki/bin/view/AllDocumentation/InstallationGuide/LongTermSupport], 11.36 will continue functioning on servers after reaching EOL. However, no further updates, such as security fixes and installations, will be provided for 11.36 once it reaches its EOL …
Ubuntu: 2017-1: Linux kernel vulnerabilities
Nov12
on November 12, 2013
at 7:24 am
Posted In: Uncategorized
(Nov 8) Several security issues were fixed in the kernel.
Ubuntu: 2016-1: Linux kernel (EC2) vulnerabilities
Nov12
on November 12, 2013
at 7:24 am
Posted In: Uncategorized
(Nov 8) Several security issues were fixed in the kernel.
Ubuntu: 2018-1: Linux kernel (OMAP4) vulnerabilities
Nov11
on November 11, 2013
at 7:24 am
Posted In: Uncategorized
(Nov 8) Several security issues were fixed in the kernel.