(Apr 22) Security Report Summary
Comment
Archive for April, 2014
131 results.
(Apr 22) Security Report Summary
(Apr 23) rsync could be made to consume resources if it received specially craftednetwork traffic.
(Apr 24) CUPS could be made to expose sensitive information over the network.
Red Hat: 2014:0435-01: qemu-kvm-rhev: Moderate Advisory
Apr25
on April 25, 2014
at 1:29 am
Posted In: Uncategorized
(Apr 24) Updated qemu-kvm-rhev packages that fix several security issues are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having Moderate [More…]
Red Hat: 2014:0434-01: qemu-kvm-rhev: Moderate Advisory
Apr25
on April 25, 2014
at 1:29 am
Posted In: Uncategorized
(Apr 24) Updated qemu-kvm-rhev packages that fix several security issues are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate [More…]
Certificate revocation: Why browsers remain affected by Heartbleed
Apr24
on April 24, 2014
at 4:09 pm
Posted In: Uncategorized
More than 80,000 SSL certificates were revoked in the week following the publication of the Heartbleed bug, but the certificate revocation mechanisms used by major browsers could still leave Internet users vulnerable to impersonation attacks. Little has changed since Netcraft last reported on certificate revocation behaviour. Why is revocation necessary?
The Heartbleed bug made it possible for […]
[-] (Linux) Backups on FTP repositories were created in the wrong format after administrators installed update #39. (PPPM-1570)
[-] (Linux) Migration manager failed to select domains by ‘displayName’. (PPPM-83)
[-] Administrators could not restore Microsoft SQL Server databases. (PPPM-1572)
[-] Administrators could not create subdomains on IDN domains via API-RPC. (PPPM-823)
(Apr 17) Security Report Summary
(Apr 18) Security Report Summary
(Apr 18) Security Report Summary
(Apr 18) Security Report Summary
The Joomla! Project is pleased to announce the availability of Joomla! 3.3 Beta 3. Community members are asked to download and install the package in order to provide quality assurance for the forthcoming 3.3 release, which is scheduled for release on or around April 30th, 2014.
A big thank you goes out to everyone that contributed to the 3.3 release! Joomla! 3.3 will be our most stable release ever. Right now we’re at about 380 commits since 3.2.3’s release with 41 different people contributing to those commits (not including testers and other non-coding activities). Best of all is that the new features are awesome!
The 3.x release series is the latest major release of the Joomla! CMS, with 3.3 the fourth standard-term support release in this series. Please note that going from 3.2 to 3.3 is a one-click upgrade and is NOT a migration. The same is true is for any subsequent versions in the 3.x series. That being said, please do not upgrade any of your production sites to the beta version as beta is ONLY intended for testing and there is no upgrade path from Beta.
(Apr 21) Security Report Summary
(Apr 20) Security Report Summary
Red Hat: 2014:0407-01: java-1.7.0-openjdk: Important Advisory
Apr20
on April 20, 2014
at 12:47 am
Posted In: Uncategorized
(Apr 16) Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More…]
(Apr 9) Security Report Summary
Red Hat: 2014:0412-01: java-1.7.0-oracle: Critical Advisory
Apr19
on April 19, 2014
at 12:46 am
Posted In: Uncategorized
(Apr 17) Updated java-1.7.0-oracle packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having Critical [More…]
Red Hat: 2014:0414-01: java-1.6.0-sun: Important Advisory
Apr19
on April 19, 2014
at 12:46 am
Posted In: Uncategorized
(Apr 17) Updated java-1.6.0-sun packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having [More…]
Oracle Security Alert for CVE-2014-0160 – 18 April 2014
Apr18
on April 18, 2014
at 7:30 pm
Posted In: Uncategorized
Chrome users oblivious to Heartbleed revocation tsunami
Apr18
on April 18, 2014
at 12:45 pm
Posted In: Uncategorized
In the aftermath of Heartbleed, it has become clear that revoking potentially compromised certificates is essential. On Thursday, CloudFlare announced it was reissuing and revoking all of its SSL certificates. The effects of CloudFlare’s mass revocation are evident in a single Certificate Revocation List (CRL) belonging to GlobalSign, which grew by almost 134,000 certificates. […]
Debian: 2907-1: Security Summary: Summary
Apr18
on April 18, 2014
at 1:26 am
Posted In: Uncategorized
(Apr 16) Security Report Summary
(Apr 9) Security Report Summary
Red Hat: 2014:0413-02: java-1.7.0-oracle: Critical Advisory
Apr18
on April 18, 2014
at 12:36 am
Posted In: Uncategorized
(Apr 17) Updated java-1.7.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having Critical [More…]
Red Hat: 2014:0415-01: libyaml: Important Advisory
Apr18
on April 18, 2014
at 12:36 am
Posted In: Uncategorized
(Apr 17) Updated libyaml packages that fix two security issues are now available for Red Hat Common for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having [More…]
[*] Security improvements (PPPM-1562)
The following issues were resolved:
[-] (Linux) Backup files rotation did not work for subscription backups. (PPPM-1556)
[-] API did not return the correct information about traffic usage by customers. (PPPM-308)
[-] (Windows) The “Support” link in Tools & Settings did not work properly. (PPPM-1558)
[-] (Windows) Administrators could not migrate IDN domains. (PPPM-83). To resolve this, Migration Manager and Migration Agent should be updated on the source server.
Netcraft releases Heartbleed indicator for Chrome, Firefox, and Opera
Apr17
on April 17, 2014
at 8:58 am
Posted In: Uncategorized
The Netcraft Extension: Heartbleed and phishing protection rolled into one The Heartbleed bug affected around 17% of all trusted SSL web servers when it was announced a week ago.
The critical vulnerability in the OpenSSL cryptographic library has the potential to allow attackers to retrieve private keys and ultimately decrypt a server’s encrypted traffic or even impersonate […]
Debian: 2905-1: chromium-browser: Summary
Apr17
on April 17, 2014
at 1:02 am
Posted In: Uncategorized
(Apr 15) Security Report Summary
(Apr 10) Security Report Summary
Red Hat: 2014:0406-01: java-1.7.0-openjdk: Critical Advisory
Apr17
on April 17, 2014
at 12:28 am
Posted In: Uncategorized
(Apr 16) Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Critical [More…]