(Jul 30) Updated 389-ds-base packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More…]
Comment
- Project: Joomla!
- SubProject: All
- Severity: Critical
- Versions: 2.5.13 and earlier 2.5.x versions. 3.1.4 and earlier 3.x versions.
- Exploit type: Unauthorised Uploads
- Reported Date: 2013-June-25
- Fixed Date: 2013-July-31
- CVE Number: Pending
Description
Inadequate filtering leads to the ability to bypass file type upload restrictions.
Affected Installs
Joomla! version 2.5.13 and earlier 2.5.x versions; and version 3.1.4 and earlier 3.x versions.
Solution
Upgrade to version 2.5.14 or 3.1.5.
Contact
The JSST at the Joomla! Security Center.
Reported By: Versafe
Impending EOL, 11.32
Aug01
cPanel & WHM 11.32 reaches End of Life in August, 2013. That means there is less than one month left in the life cycle.
In accordance with our [End of Life Policy](“http://docs.cpanel.net/twiki/bin/view/AllDocumentation/InstallationGuide/LongTermSupport“) cPanel & WHM 11.32 will continue functioning on servers after reaching End of Life. No further updates, including security fixes, or installations will be provided for 11.32 after the end of life date.
cPanel & WHM 11.32 is the last version to support the following:
* CentOS 4
* RHEL 4
* MySQL 4.0
* MySQL 4.1
All customers currently using cPanel & WHM 11.32 are advised to begin planning the upgrade to cPanel & WHM 11.36 (EOL Date: March 2014). If you desire assistance with your migration plans, please contact our technical support team at [https://tickets.cpanel.net/submit/](“https://tickets.cpanel.net/submit/“). Our professional staff will help with recommendations, migration assistance and more.
For the PGP signed message, please go here.
The following issues have been fixed:
[-] (Windows only) Security fix: BIND has been updated to version 9.8.5-P2, that also fixes CVE-2013-4854
[-] Security improvements. We would like to thank Rack911.com for their help in investigating a number of security issues.
The following issues have been fixed:
[-] (Windows only) Security fix: BIND has been updated to version 9.9.3-P2, that also fixes CVE-2013-4854
[-] Security improvements. We would like to thank Rack911.com for their help in investigating a number of security issues.
[-] Plesk provisioning through Parallels Automation may not work after upgrade from older Plesk versions (140589)