(Jan 15) Updated java-1.7.0-oracle packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More…]
Comment
Archive for January, 2014
78 results.
(Jan 15) It was discovered that djvulibre, the Open Source DjVu implementation project, can be crashed or possibly make it execute arbitrary code when processing a specially crafted djvu file. [More…]
(Jan 14) Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical [More…]
(Jan 15) An updated Adobe Flash Player package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More…]
The following behavior was changed:
[*]Administrators can now obtain passwords in plain text using Event Handlers. (PPPM-1124)
[+]The password in notification emails for newly created resellers and customers is now displayed in plain text. (PPPM-1124)
The following issues were fixed:[+]The password in notification emails for newly created resellers and customers is now displayed in plain text. (PPPM-1124)
[-] (Windows) The daily maintenance script did not calculate the disc space usage for Microsoft SQL Server databases. (PPPM-1265)
[-] (Linux) Health Monitor did not work on 32-bit Debian 7. (PPPM-993)
[-] The user name for accessing the password-protected directory /plesk-stat/webstat/ was not updated after renaming of an FTP user. (PPPM-1054)
[-] (Windows) Notifications about backup task completion were not sent in some cases. (PPPM-1113)
(Jan 10) Fernando Russ from Groundworks Technologies reported a buffer overflow flaw in srtp, Cisco’s reference implementation of the Secure Real-time Transport Protocol (SRTP), in how the crypto_policy_set_from_profile_for_rtp() function applies [More…]
(Jan 9) USN-2077-1 introduced a regression in Puppet.
(Jan 13) Bind could be made to crash if it received specially crafted networktraffic.
(Jan 13) Two buffer overflow vulnerabilities were reported in Graphviz, a rich collection of graph drawing tools. The Common Vulnerabilities and Exposures project identifies the following issues: [More…]
(Jan 9) Several security issues were fixed in OpenSSL.
(Jan 13) Several security issues were fixed in Memcached.
(Jan 10) Updated libXfont packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having [More…]
(Jan 11) A cross-site scripting vulnerability was discovered in the rich text editor of the Movable Type blogging engine. For the oldstable distribution (squeeze), this problem has been fixed in [More…]
(Jan 13) Alvaro Munoz discovered a XML External Entity (XXE) injection in the Spring Framework which can be used for conducting CSRF and DoS attacks on other sites. [More…]
You can subscribe to RSS or Atom feeds, linked from
(Jan 7) Anton Johannson discovered that an invalid TLS handshake package could crash OpenSSL with a NULL pointer dereference. The oldstable distribution (squeeze) is not affected. [More…]
(Jan 8) An updated gnupg package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More…]
(Jan 8) Updated openssl packages that fix three security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having [More…]
(Jan 7) It was discovered that a buffer overflow in the processing of Glyph Bitmap Distribution fonts (BDF) could result in the execution of arbitrary code. [More…]
(Jan 7) libXfont could be made to crash or run programs as an administrator if itopened a specially crafted font file.
(Jan 7) Updated ruby193-ruby packages that fix one security issue are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having critical [More…]
(Jan 8) Multiple vulnerabilities have been found in spice, a SPICE protocol client and server library. The Common Vulnerabilities and Exposures project identifies the following issues: [More…]
(Jan 5) Jan Juergens discovered a buffer overflow in the parser for SMS messages in Asterisk. An additional change was backported, which is fully described in [More…]
(Jan 3) Several security issues were fixed in the kernel.
(Jan 3) Several security issues were fixed in the kernel.
The January issue of the Joomla Community Magazine is here! Our stories this month:
Editors Introduction
Looking to the Future, by Alice Grevet
Feature Stories
Joomla!-Based New Year’s Resolution Ideas, by Jennifer Gress
Project News
Roundup from JUG Corner – December 2013, by Ruth Cheesley
More About Joomla! Certification, by Irene López
Designers
Do You Know Who You Are?, by Ian Nelson
Events
First Joomla! User Group Meeting in Poland, by Danuta Idzik
Developers
Review: Component Creator for Joomla!, by Carlos Rodríguez
Lessons in Good Coding Practices: Don’t Repeat Yourself, by David Hurley
Sitebuilders
Explaining Joomla! for Non-Techies (Part II), by Pedro F. Vidal Lopez
Go that Extra Mile to Deliver Simplicity!, by Gene Page
Using Joomla! as a Help Development Tool, by Matt Majeske
Administrators
Facebook And Your Joomla! Website, by Nicole Ouellette
Google Summer of Code
Google Summer of Code 2013 Summary, by Chad Windnagle
International Stories
Browse the international articles submitted this month.
In our next issue
We want to publish your Joomla! story in the next JCM issue! So take a look at our Author Resources content to get a better idea of what we are looking for, and then register to become a JCM author and submit your Joomla! story!
(Jan 6) Thanks so much to Peter Smith for announcing on linuxsecurity.com the release of his Linux Network Security book available free online. In 2005 I wrote a book on Linux security. 8 years later and the publisher has gone out of business. Now that I’ …
(Jan 3) Several security issues were fixed in the kernel.
(Jan 6) Puppet could be made to overwrite files.