The popular is.gd URL shortening service has been offline for more than two days, taking with it more than a billion shortened URLs.
Fraudsters have taken to Microsoft Azure to deploy phishing sites, taking advantage of Microsoft’s free 30-day trial. Free hosting! In order to get a phishing site hosted at Azure, the fraudster has several options: steal the credentials for a Microsoft account, compromise a virtual machine running at Azure, or use Microsoft’s free trial which provides $200 of […]
(Jan 6) Thanks so much to Peter Smith for announcing on linuxsecurity.com the release of his Linux Network Security book available free online. In 2005 I wrote a book on Linux security. 8 years later and the publisher has gone out of business. Now that I’ …
(Oct 27) The Google Chrome Security Team discovered two issues (a race condition and a use-after-free issue) in the International Components for Unicode (ICU) library. [More…]
(Oct 22) Pedro Ribeiro discovered a use-after-free in the handling of ImageText requests in the Xorg Xserver, which could result in denial of service or privilege escalation. [More…]
When the African nation of Mali announced that it was going to provide free .ml domains from July, their goal was to put Mali back on the map. It appears they have now succeeded, but perhaps not in the way they had intended — thanks to the free domains, Mali now has the most phishy […]
(Jul 17) It was discovered that PHP could perform an invalid free request when processing crafted XML documents, corrupting the heap and potentially leading to arbitrary code execution. Depending on the PHP application, this vulnerability could be exploited remotely. [More…]
(Jul 6) Multiple security issues have been found in Icedove, Debian’s version of the Mozilla Thunderbird mail and news client. Multiple memory safety errors, use-after-free vulnerabilities, missing permission checks, incorrect memory handling and other implementaton errors may lead to the execution [More…]
Changelog:
– (Windows) Check for SQL Server Management Objects (SMO) is up-to-date.
– (Windows) Check for Average Disk Queue Length.
– Error reporting has been improved.
– Bug fixes: Wrong determining of paths for free disk space calculation on Windows, wrong warning of not installed outdated and not supported components.
(Jun 26) Multiple security issues have been found in Iceweasel, Debian’s version of the Mozilla Firefox web browser: Multiple memory safety errors, use-after-free vulnerabilities, missing permission checks, incorrect memory handling and other implementaton errors may lead to the execution [More…]
(Jun 10) Jibbers McGee discovered that pymongo, a high-performance schema-free document-oriented data store, is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB [More…]
(Jun 9) It was discovered that applications using the mesa library, a free implementation of the OpenGL API, may crash or execute arbitrary code due to an out of bounds memory access in the library. This vulnerability only affects systems with Intel chipsets. [More…]
(Jun 2) Multiple security issues have been found in Iceweasel, Debian’s version of the Mozilla Firefox web browser: Multiple memory safety errors, missing input sanitising vulnerabilities, use-after-free vulnerabilities, buffer overflows and other programming errors may lead to the execution [More…]
(May 29) Several vulnerabilities have been discovered in the chromium web browser. Multiple use-after-free, out-of-bounds read, memory safety, and cross-site scripting issues were discovered and corrected. [More…]
Early last week, Netcraft blocked a website purporting to offer online support for eBay customers. The website made use of a third-party live chat service provided by Volusion, an e-commerce outfit which also provides both free and premium hosted live chat services. By running a live chat service and asking the right questions, a fraudster […]
(Feb 25) CVE-2009-5030 Heap memory corruption leading to invalid free when processing certain Gray16 TIFF images. [More…]
(Dec 1) Multiple vulnerabilities were discovered in libssh by Florian Weimer and Xi Wang: CVE-2012-4559: multiple double free() flaws [More…]
What is Linux? Linux is an operating system, like Microsoft Windows, MacOS, or Unix. It was created as a hobby by Linus Torvalds, a student at the University of Helsinki in Finland. What most people don’t know about Linux is […] ↓ Read the rest of this entry…
(Oct 7) Several vulnerabilities were discovered in Icedove, Debian’s version of the Mozilla Thunderbird mail and news client. This includes several instances of use-after-free and buffer overflow [More…]
(Aug 6) Two denial of service vulnerabilities have been discovered in the server component of OpenTTD, a free reimplementation of Transport Tycoon Deluxe. For the stable distribution (squeeze), this problem has been fixed in [More…]
Plesk Service Team is pleased to announce Plesk Server Backup Script.
Main goal of the script is to reduce disk space usage and memory consumption on backing up procedures, especially backing up to FTP repository.
Please check KB http://kb.parallels.com/en/113252 and feel free to discuss Plesk Server Backup Script in special thread on Parallels Forum.
We would like to introduce you Plesk Troubleshooter Posters.
In knowledge base article you can find them for Linux and Windows versions of Plesk.
Please feel free to discuss these posters in special thread on Parallels Forum http://forum.parallels.com/showthread.php?t=246206
Plesk Panel 10.2 MU#2 for Linux and Windows – Product functional fixes – is available since Apr 14, 2011 through the Autoinstaller
[-] The coupon usage count did not increase if the coupon was applied in online stores.
[-] The form for entering SSL certificate details was not displayed in online stores if a customer ordered a domain name first, then clicked to continue shopping, and finally added an SSL certificate to the order.
[-] Customers failed to apply coupons with the percentage discount to add-ons in cart; instead of a store page, Business Manager displayed the “Store temporary unavailable” page.
[-] Fixed taxes were displayed as applied twice in online stores.
[-] The ordering procedure was successfully completed for customers with prohibited e-mail addresses even if the option “Deny subscriptions from ‘free’ e-mail addresses” was selected.
[-] The e-mail that informed a customer to provide additional details for SSL certificate issuing was sent only once.
[-] The header layout in online store was broken under Internet Explorer 7.
[-] The “State” field in the contact information form was required to fill in online stores even for countries that did not have states.
[-] Custom questions were not displayed in online stores.
[-] Customers could skip attaching add-ons even if the “None”option in the add-ons list was unavailable.
[-] The form for entering domain contacts information was not displayed if a customer added a new domain name from the order confirmation page.
[-] All hosting plans were marked as “Not for sale” if the only accepted way to add domain names was the domain transfer.
Plesk Panel 10.1.1 MU#4 – Product functional fixes – is available since Feb 24, 2011 through the Autoinstaller.
The update delivers following bug fixes:
[-] Application Catalog displayed button Buy Now next to free applications .
[-] It was impossible to confirm EULA through CLI utility init_conf, option -license_agreed.
[-] Application Catalog displayed button Buy Now next to free non-APS applications.
[-] Backups of mobile websites were corrupted.
[-] The Panel failed to display page Settings > Manage Firewall if several firewall profiles were active.
[-] The Panel failed to display the Health Monitor page if the server had 16 CPUs or more.
[-] Firewall rules that target all ports were not recognized.
[-] Services Management page displayed an alarm when the Internet Connection Sharing service was stopped (and disabled).
Plesk Panel 9.5.4 MU#2 – Product functional fixes – is available since Feb 16, 2011 through the Autoinstaller.
The update delivers following bug fixes:
[-] Migration between Plesk servers failed as free disk space on a target server was not calculated correctly.
Plesk Panel 10.1.1 MU#9 – Product functional fixes – is available since Feb 15, 2011 through the Autoinstaller.
The Update delivers following bug fixes:
[*] Performance improvement: Apache more efficiently handles infinite loops.
[-] Atmail displayed the black page and the Javascript error:"Unable to get webmail password".
[-] Migration between Plesk servers failed as free disk space on a target server was not calculated correctly.
60 queries. 8.75 mb Memory usage. 1.185 seconds.