VARIoT IoT vulnerabilities database
| VAR-201505-0198 | CVE-2015-0756 | Cisco Wireless LAN Controller Service disruption in device software (DoS) Vulnerabilities |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Cisco Wireless LAN Controller (WLC) devices with software 7.4(1.1) allow remote attackers to cause a denial of service (wireless-networking outage) via crafted TCP traffic on the local network, aka Bug ID CSCug67104. The Cisco WLC is responsible for system-wide wireless LAN functions such as security policy, intrusion protection, RF management, quality of service, and mobility.
Attackers can exploit this issue to cause denial-of-service condition.
Attackers can exploit this issue to cause denial-of-service condition on an affected device as well as any wireless access points associated with the device, denying services to legitimate users. A security vulnerability exists in Cisco WLC devices using version 7.4(1.1) software
| VAR-201505-0199 | CVE-2015-0757 | Cisco Identity Services Engine of Web Vulnerabilities that capture important information in the framework |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
The web framework in Cisco Identity Services Engine (ISE) 1.2(1.901) and 1.3(0.722) does not properly implement session handlers, which allows remote attackers to obtain sensitive information by reading web pages, as demonstrated by MnT reports, aka Bug ID CSCuq23140. Vendors have confirmed this vulnerability Bug ID CSCuq23140 It is released as.By a third party Web By reading the page, important information may be obtained. Cisco Identity Services Engine Software is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information stored on an affected device. This may lead to further attacks.
This issue being tracked by Cisco Bug ID CSCuq23140. The platform monitors the network by collecting real-time information on the network, users and devices, and formulating and implementing corresponding policies
| VAR-201505-0193 | CVE-2015-0751 | Cisco IP Phone 7861 Service disruption in (DoS) Vulnerabilities |
CVSS V2: 7.8 CVSS V3: - Severity: HIGH |
Cisco IP Phone 7861, when firmware from Cisco Unified Communications Manager 10.3(1) is used, allows remote attackers to cause a denial of service via crafted packets, aka Bug ID CSCus81800. Vendors have confirmed this vulnerability Bug ID CSCus81800 It is released as.Denial of service operation via a packet crafted by a third party (DoS) There is a possibility of being put into a state. The Cisco IP Phone 7861 is an IP phone that can communicate with wideband audio and video. Allowing an unauthenticated remote attacker to exploit this vulnerability could cause the device to reboot, resulting in a denial of service.
This issue is tracked by Cisco Bug ID CSCus81800
| VAR-201505-0419 | No CVE | PeakHMI HMI Unknown remote denial of service vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
The PeakHMI HMI is a Human Machine Interface (HMI) application. The PeakHMI HMI has an unspecified security vulnerability that allows a remote attacker to exploit a vulnerability to submit a special request to crash an application
| VAR-201505-0420 | No CVE | Unknown Remote Denial of Service Vulnerability in Infilink HMI |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Kessler-Ellis is a well-known instrument manufacturer. The Infilink HMI is the Human Machine Interface (HMI) for Kessler-Ellis products. Infilink HMI has an unspecified security vulnerability that allows remote attackers to exploit a vulnerability to submit a special request to crash an application. Infilink HMI Yes Kessler-Ellis HMI of the product (HMI)
| VAR-201505-0071 | CVE-2015-1010 | Rockwell Automation RSView32 Information Disclosure Vulnerability |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
Rockwell Automation RSView32 7.60.00 (aka CPR9 SR4) and earlier does not properly encrypt credentials, which allows local users to obtain sensitive information by reading a file and conducting a decryption attack. RSView32 is an HMI system for monitoring automated machines and processes. The security method used by RSView32 to create password storage files has security vulnerabilities. Software users using the old algorithm can cause unauthorized decryption, and the user password will be revealed after successful. Attackers can exploit vulnerabilities to obtain sensitive information. Rockwell Automation RSView32 is prone to a security weakness. The vulnerability is caused by the program not properly encrypting the certificate
| VAR-201505-0363 | CVE-2014-9727 |
AVM Fritz!Box Vulnerable to arbitrary command execution
Related entries in the VARIoT exploits database: VAR-E-201405-0185 |
CVSS V2: 10.0 CVSS V3: - Severity: HIGH |
AVM Fritz!Box allows remote attackers to execute arbitrary commands via shell metacharacters in the var:lang parameter to cgi-bin/webcm. AVM Fritz! Box is a router product from AVM, Germany. AVM Fritz!Box cgi-bin/webcm URI failed to adequately filter shell metacharacters in the \342\200\230var:lang\342\200\231 parameter. Multiple FRITZ!Box products are prone to a remote command-injection vulnerability because it fails to properly sanitize user-supplied input
| VAR-201505-0246 | CVE-2015-4067 | Dell NetVault Backup of libnv6 Module integer overflow vulnerability |
CVSS V2: 10.0 CVSS V3: - Severity: HIGH |
Integer overflow in the libnv6 module in Dell NetVault Backup before 10.0.5 allows remote attackers to execute arbitrary code via crafted template string specifiers in a serialized object, which triggers a heap-based buffer overflow. Authentication is not required to exploit this vulnerability.The specific flaw exists within the libnv6 module. An attacker can leverage this vulnerability to execute code under the context of SYSTEM. Dell NetVault Backup is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Failed exploit attempts will result in a denial-of-service condition. Dell NetVault Backup is a set of cross-platform backup and recovery software solutions from Dell. The solution protects data and applications in physical and virtual environments
| VAR-201505-0107 | CVE-2015-2851 | Synology Cloud Station sync client for OS X allows regular users to claim ownership of system files |
CVSS V2: 6.8 CVSS V3: - Severity: MEDIUM |
client_chown in the sync client in Synology Cloud Station 1.1-2291 through 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename. This file is setuid root It is possible to change the owner of any system file by ordinary users. CWE-276 http://cwe.mitre.org/data/definitions/276.htmlOS X An ordinary user may change the owner of any system file. as a result, root You may get permission. Synology Cloud Station sync client is prone to a local privilege-escalation vulnerability.
Exploiting this issue allows local attackers to gain root privileges.
Synology Cloud Station sync client 1.1-2291 versions prior to 3.2-3475 are vulnerable. Synology Cloud Station is a Synology company's solution for synchronizing data between all devices using cloud stations
| VAR-201506-0329 | CVE-2015-4161 | SAP Afaria Authentication Bypass Vulnerability |
CVSS V2: 7.5 CVSS V3: - Severity: HIGH |
SAP Afaria does not properly restrict access to unspecified functionality, which allows remote attackers to obtain sensitive information, gain privileges, or have other unspecified impact via unknown vectors, SAP Security Note 2155690. SAP Afaria is a mobile device management solution from SAP. The solution supports the effective management of mobile devices, applications, and data lifecycles, and ensures their security during transmission and storage.
An authentication bypass vulnerability exists in SAP Afaria. An attacker could use this vulnerability to gain unauthorized access and sensitive information, or to elevate permissions. This may aid in further attacks
| VAR-201506-0183 | CVE-2015-4656 | Synology Photo Station Vulnerable to cross-site scripting |
CVSS V2: 4.3 CVSS V3: - Severity: MEDIUM |
Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station before 6.3-2945 allow remote attackers to inject arbitrary web script or HTML via the (1) success parameter to login.php or (2) crafted URL parameters to index.php, as demonstrated by the t parameter to photo/. Synology Photo Station is prone to multiple security vulnerabilities, including:
1. Multiple cross-site scripting vulnerabilities
2. A command-injection vulnerability
Attackers may exploit these issues to execute arbitrary commands and execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials. Other attacks are also possible.
Synology Photo Station 6.2-2858 is vulnerable; other versions may also be affected. Synology Photo Station is a set of solutions from Synology for sharing pictures, videos and blogs on the Internet. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML
| VAR-201506-0182 | CVE-2015-4655 | Synology DiskStation Manager Vulnerable to cross-site scripting |
CVSS V2: 4.3 CVSS V3: - Severity: MEDIUM |
Cross-site scripting (XSS) vulnerability in Synology DiskStation Manager (DSM) before 5.2-5565 Update 1 allows remote attackers to inject arbitrary web script or HTML via the "compound" parameter to entry.cgi. Synology DiskStation Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Synology DiskStation Manager 5.2-5565 is vulnerable. Synology DiskStation Manager (DSM) is an operating system developed by Synology for network storage servers (NAS). The operating system can manage data, documents, photos, music and other information
| VAR-201506-0202 | CVE-2014-0999 |
Sendio Vulnerability in which important information is obtained
Related entries in the VARIoT exploits database: VAR-E-201505-0082 |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Sendio before 7.2.4 includes the session identifier in URLs in emails, which allows remote attackers to obtain sensitive information and hijack sessions by reading the jsessionid parameter in the Referrer HTTP header. Sendio ESP (Email Security Platform) is a network device that provides anti-spam and anti-virus solutions for enterprises in Sendio, USA. A security vulnerability exists in versions prior to Sendio ESP 7.2.4. Because there is a session identifier in the message. Sendio ESP is prone to multiple information-disclosure vulnerabilities.
Attackers can exploit these issues to obtain sensitive information that may lead to further attacks
| VAR-201506-0332 | CVE-2014-8391 |
Sendio ESP Information Disclosure Vulnerability
Related entries in the VARIoT exploits database: VAR-E-201505-0082 |
CVSS V2: 4.0 CVSS V3: - Severity: MEDIUM |
The Web interface in Sendio before 7.2.4 does not properly handle sessions, which allows remote authenticated users to obtain sensitive information from other users' sessions via a large number of requests. Sendio ESP (Email Security Platform) is a network device that provides anti-spam and anti-virus solutions for enterprises in Sendio, USA. A security vulnerability exists in the web interface of Sendio ESP prior to 7.2.4. The program failed to process the session correctly. Sendio ESP is prone to multiple information-disclosure vulnerabilities
| VAR-201505-0192 | CVE-2015-0750 | Cisco Hosted Collaboration Solution Management Web An arbitrary command execution vulnerability in the interface |
CVSS V2: 6.5 CVSS V3: - Severity: MEDIUM |
The administrative web interface in Cisco Hosted Collaboration Solution (HCS) 10.6(1) and earlier allows remote authenticated users to execute arbitrary commands via crafted input to unspecified fields, aka Bug ID CSCut02786.
An attacker can exploit this issue to execute system commands on the affected device.
This issue being tracked by Cisco Bug ID CSCut02786. The solution includes products such as Cisco TelePresence, Customer Collaboration (Contact Center) and Unified Communications to support customers to use collaboration technology in public cloud, private cloud and hybrid cloud models
| VAR-201505-0497 | No CVE | There are many common remote code execution vulnerabilities in Bohua Net Dragon Information Security Appliance |
CVSS V2: 10.0 CVSS V3: - Severity: HIGH |
There are several remote code execution vulnerabilities in the Bohua Net Dragon Information Security Appliance. An attacker can exploit the vulnerability to gain remote control of the web server host.
| VAR-202002-0797 | CVE-2015-0749 | Cisco Unified Communications Manager Cross-site scripting vulnerability in |
CVSS V2: 4.3 CVSS V3: 6.1 Severity: MEDIUM |
A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on the affected software. The vulnerabilities is due to improper input validation of certain parameters passed to the affected software. An attacker could exploit this vulnerability by convincing a user to follow a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected site or allow the attacker to access sensitive browser-based information.
This issue is being tracked by Cisco Bug ID CSCut66725. This component provides a scalable, distributed and highly available enterprise IP telephony call processing solution
| VAR-201505-0062 | CVE-2015-3165 | PostgreSQL Memory double free vulnerability |
CVSS V2: 4.3 CVSS V3: - Severity: MEDIUM |
Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence. PostgreSQL Has a deficiency in freeing up memory twice, causing service disruption ( crash ) There are vulnerabilities that are put into a state. Supplementary information : CWE Vulnerability type by CWE-415: Double Free ( Double release ) Has been identified. PostgreSQL is prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to crash the application, denying service to legitimate users. The system supports most SQL standards and provides many other features, such as foreign keys, triggers, views, etc. The following versions are affected: PostgreSQL prior to 9.0.20, 9.1.x prior to 9.1.16, 9.2.x prior to 9.2.11, 9.3.x prior to 9.3.7, 9.4 prior to 9.4.2. x version.
CVE-2015-3166 (Information exposure)
The replacement implementation of snprintf() failed to check for
errors reported by the underlying system library calls; the main
case that might be missed is out-of-memory situations. In the worst
case this might lead to information exposure. Fix by using a
one-size-fits-all message.
For the stable distribution (jessie), these problems have been fixed in
version 9.4.2-0+deb8u1.
For the testing distribution (stretch), these problems will be fixed
soon.
For the unstable distribution (sid), these problems have been fixed in
version 9.4.2-1.
We recommend that you upgrade your postgresql-9.4 packages. ============================================================================
Ubuntu Security Notice USN-2621-1
May 25, 2015
postgresql-9.1, postgresql-9.3, postgresql-9.4 vulnerabilities
============================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 15.04
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary:
Several security issues were fixed in PostgreSQL. (CVE-2015-3167)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 15.04:
postgresql-9.4 9.4.2-0ubuntu0.15.04
Ubuntu 14.10:
postgresql-9.4 9.4.2-0ubuntu0.14.10
Ubuntu 14.04 LTS:
postgresql-9.3 9.3.7-0ubuntu0.14.04
Ubuntu 12.04 LTS:
postgresql-9.1 9.1.16-0ubuntu0.12.04
This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes. -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
=====================================================================
Red Hat Security Advisory
Synopsis: Moderate: postgresql security update
Advisory ID: RHSA-2015:1194-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1194.html
Issue date: 2015-06-29
CVE Names: CVE-2015-3165 CVE-2015-3166 CVE-2015-3167
=====================================================================
1. Summary:
Updated postgresql packages that fix three security issues are now
available for Red Hat Enterprise Linux 6 and 7.
Red Hat Product Security has rated this update as having Moderate
security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64
Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64
Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64
Red Hat Enterprise Linux HPC Node (v. 6) - x86_64
Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64
Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64
Red Hat Enterprise Linux Workstation (v. 7) - x86_64
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64
3. Description:
PostgreSQL is an advanced object-relational database management system
(DBMS).
A double-free flaw was found in the connection handling. An unauthenticated
attacker could exploit this flaw to crash the PostgreSQL back end by
disconnecting at approximately the same time as the authentication time out
is triggered. (CVE-2015-3165)
It was discovered that PostgreSQL did not properly check the return values
of certain standard library functions. If the system is in a state that
would cause the standard library functions to fail, for example memory
exhaustion, an authenticated user could exploit this flaw to disclose
partial memory contents or cause the GSSAPI authentication to use an
incorrect keytab file. (CVE-2015-3166)
It was discovered that the pgcrypto module could return different error
messages when decrypting certain data with an incorrect key. This can help
an authenticated user to launch a possible cryptographic attack, although
no suitable attack is currently known. (CVE-2015-3167)
Red Hat would like to thank the PostgreSQL project for reporting these
issues. Upstream acknowledges Benkocs Norbert Attila as the original
reporter of CVE-2015-3165 and Noah Misch as the original reporter of
CVE-2015-3166 and CVE-2015-3167.
All PostgreSQL users are advised to upgrade to these updated packages,
which contain backported patches to correct these issues. If the
postgresql service is running, it will be automatically restarted after
installing this update.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
5. Bugs fixed (https://bugzilla.redhat.com/):
1221537 - CVE-2015-3165 postgresql: double-free after authentication timeout
1221539 - CVE-2015-3166 postgresql: unanticipated errors from the standard library
1221541 - CVE-2015-3167 postgresql: pgcrypto has multiple error messages for decryption with an incorrect key.
6. Package List:
Red Hat Enterprise Linux Desktop (v. 6):
Source:
postgresql-8.4.20-3.el6_6.src.rpm
i386:
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
x86_64:
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux Desktop Optional (v. 6):
i386:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-contrib-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-docs-8.4.20-3.el6_6.i686.rpm
postgresql-plperl-8.4.20-3.el6_6.i686.rpm
postgresql-plpython-8.4.20-3.el6_6.i686.rpm
postgresql-pltcl-8.4.20-3.el6_6.i686.rpm
postgresql-server-8.4.20-3.el6_6.i686.rpm
postgresql-test-8.4.20-3.el6_6.i686.rpm
x86_64:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-8.4.20-3.el6_6.x86_64.rpm
postgresql-contrib-8.4.20-3.el6_6.x86_64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.x86_64.rpm
postgresql-docs-8.4.20-3.el6_6.x86_64.rpm
postgresql-plperl-8.4.20-3.el6_6.x86_64.rpm
postgresql-plpython-8.4.20-3.el6_6.x86_64.rpm
postgresql-pltcl-8.4.20-3.el6_6.x86_64.rpm
postgresql-server-8.4.20-3.el6_6.x86_64.rpm
postgresql-test-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux HPC Node (v. 6):
Source:
postgresql-8.4.20-3.el6_6.src.rpm
x86_64:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-8.4.20-3.el6_6.x86_64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux HPC Node Optional (v. 6):
x86_64:
postgresql-contrib-8.4.20-3.el6_6.x86_64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.x86_64.rpm
postgresql-docs-8.4.20-3.el6_6.x86_64.rpm
postgresql-plperl-8.4.20-3.el6_6.x86_64.rpm
postgresql-plpython-8.4.20-3.el6_6.x86_64.rpm
postgresql-pltcl-8.4.20-3.el6_6.x86_64.rpm
postgresql-server-8.4.20-3.el6_6.x86_64.rpm
postgresql-test-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source:
postgresql-8.4.20-3.el6_6.src.rpm
i386:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-contrib-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-docs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-plperl-8.4.20-3.el6_6.i686.rpm
postgresql-plpython-8.4.20-3.el6_6.i686.rpm
postgresql-pltcl-8.4.20-3.el6_6.i686.rpm
postgresql-server-8.4.20-3.el6_6.i686.rpm
postgresql-test-8.4.20-3.el6_6.i686.rpm
ppc64:
postgresql-8.4.20-3.el6_6.ppc.rpm
postgresql-8.4.20-3.el6_6.ppc64.rpm
postgresql-contrib-8.4.20-3.el6_6.ppc64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.ppc.rpm
postgresql-debuginfo-8.4.20-3.el6_6.ppc64.rpm
postgresql-devel-8.4.20-3.el6_6.ppc.rpm
postgresql-devel-8.4.20-3.el6_6.ppc64.rpm
postgresql-docs-8.4.20-3.el6_6.ppc64.rpm
postgresql-libs-8.4.20-3.el6_6.ppc.rpm
postgresql-libs-8.4.20-3.el6_6.ppc64.rpm
postgresql-plperl-8.4.20-3.el6_6.ppc64.rpm
postgresql-plpython-8.4.20-3.el6_6.ppc64.rpm
postgresql-pltcl-8.4.20-3.el6_6.ppc64.rpm
postgresql-server-8.4.20-3.el6_6.ppc64.rpm
postgresql-test-8.4.20-3.el6_6.ppc64.rpm
s390x:
postgresql-8.4.20-3.el6_6.s390.rpm
postgresql-8.4.20-3.el6_6.s390x.rpm
postgresql-contrib-8.4.20-3.el6_6.s390x.rpm
postgresql-debuginfo-8.4.20-3.el6_6.s390.rpm
postgresql-debuginfo-8.4.20-3.el6_6.s390x.rpm
postgresql-devel-8.4.20-3.el6_6.s390.rpm
postgresql-devel-8.4.20-3.el6_6.s390x.rpm
postgresql-docs-8.4.20-3.el6_6.s390x.rpm
postgresql-libs-8.4.20-3.el6_6.s390.rpm
postgresql-libs-8.4.20-3.el6_6.s390x.rpm
postgresql-plperl-8.4.20-3.el6_6.s390x.rpm
postgresql-plpython-8.4.20-3.el6_6.s390x.rpm
postgresql-pltcl-8.4.20-3.el6_6.s390x.rpm
postgresql-server-8.4.20-3.el6_6.s390x.rpm
postgresql-test-8.4.20-3.el6_6.s390x.rpm
x86_64:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-8.4.20-3.el6_6.x86_64.rpm
postgresql-contrib-8.4.20-3.el6_6.x86_64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.x86_64.rpm
postgresql-docs-8.4.20-3.el6_6.x86_64.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.x86_64.rpm
postgresql-plperl-8.4.20-3.el6_6.x86_64.rpm
postgresql-plpython-8.4.20-3.el6_6.x86_64.rpm
postgresql-pltcl-8.4.20-3.el6_6.x86_64.rpm
postgresql-server-8.4.20-3.el6_6.x86_64.rpm
postgresql-test-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source:
postgresql-8.4.20-3.el6_6.src.rpm
i386:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-contrib-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-docs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-plperl-8.4.20-3.el6_6.i686.rpm
postgresql-plpython-8.4.20-3.el6_6.i686.rpm
postgresql-pltcl-8.4.20-3.el6_6.i686.rpm
postgresql-server-8.4.20-3.el6_6.i686.rpm
postgresql-test-8.4.20-3.el6_6.i686.rpm
x86_64:
postgresql-8.4.20-3.el6_6.i686.rpm
postgresql-8.4.20-3.el6_6.x86_64.rpm
postgresql-contrib-8.4.20-3.el6_6.x86_64.rpm
postgresql-debuginfo-8.4.20-3.el6_6.i686.rpm
postgresql-debuginfo-8.4.20-3.el6_6.x86_64.rpm
postgresql-devel-8.4.20-3.el6_6.i686.rpm
postgresql-devel-8.4.20-3.el6_6.x86_64.rpm
postgresql-docs-8.4.20-3.el6_6.x86_64.rpm
postgresql-libs-8.4.20-3.el6_6.i686.rpm
postgresql-libs-8.4.20-3.el6_6.x86_64.rpm
postgresql-plperl-8.4.20-3.el6_6.x86_64.rpm
postgresql-plpython-8.4.20-3.el6_6.x86_64.rpm
postgresql-pltcl-8.4.20-3.el6_6.x86_64.rpm
postgresql-server-8.4.20-3.el6_6.x86_64.rpm
postgresql-test-8.4.20-3.el6_6.x86_64.rpm
Red Hat Enterprise Linux Client Optional (v. 7):
Source:
postgresql-9.2.13-1.el7_1.src.rpm
x86_64:
postgresql-9.2.13-1.el7_1.i686.rpm
postgresql-9.2.13-1.el7_1.x86_64.rpm
postgresql-contrib-9.2.13-1.el7_1.x86_64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.i686.rpm
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-devel-9.2.13-1.el7_1.i686.rpm
postgresql-devel-9.2.13-1.el7_1.x86_64.rpm
postgresql-docs-9.2.13-1.el7_1.x86_64.rpm
postgresql-libs-9.2.13-1.el7_1.i686.rpm
postgresql-libs-9.2.13-1.el7_1.x86_64.rpm
postgresql-plperl-9.2.13-1.el7_1.x86_64.rpm
postgresql-plpython-9.2.13-1.el7_1.x86_64.rpm
postgresql-pltcl-9.2.13-1.el7_1.x86_64.rpm
postgresql-server-9.2.13-1.el7_1.x86_64.rpm
postgresql-test-9.2.13-1.el7_1.x86_64.rpm
postgresql-upgrade-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux ComputeNode (v. 7):
Source:
postgresql-9.2.13-1.el7_1.src.rpm
x86_64:
postgresql-9.2.13-1.el7_1.x86_64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.i686.rpm
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-libs-9.2.13-1.el7_1.i686.rpm
postgresql-libs-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux ComputeNode Optional (v. 7):
x86_64:
postgresql-9.2.13-1.el7_1.i686.rpm
postgresql-contrib-9.2.13-1.el7_1.x86_64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.i686.rpm
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-devel-9.2.13-1.el7_1.i686.rpm
postgresql-devel-9.2.13-1.el7_1.x86_64.rpm
postgresql-docs-9.2.13-1.el7_1.x86_64.rpm
postgresql-plperl-9.2.13-1.el7_1.x86_64.rpm
postgresql-plpython-9.2.13-1.el7_1.x86_64.rpm
postgresql-pltcl-9.2.13-1.el7_1.x86_64.rpm
postgresql-server-9.2.13-1.el7_1.x86_64.rpm
postgresql-test-9.2.13-1.el7_1.x86_64.rpm
postgresql-upgrade-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux Server (v. 7):
Source:
postgresql-9.2.13-1.el7_1.src.rpm
ppc64:
postgresql-9.2.13-1.el7_1.ppc.rpm
postgresql-9.2.13-1.el7_1.ppc64.rpm
postgresql-contrib-9.2.13-1.el7_1.ppc64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.ppc.rpm
postgresql-debuginfo-9.2.13-1.el7_1.ppc64.rpm
postgresql-devel-9.2.13-1.el7_1.ppc.rpm
postgresql-devel-9.2.13-1.el7_1.ppc64.rpm
postgresql-docs-9.2.13-1.el7_1.ppc64.rpm
postgresql-libs-9.2.13-1.el7_1.ppc.rpm
postgresql-libs-9.2.13-1.el7_1.ppc64.rpm
postgresql-plperl-9.2.13-1.el7_1.ppc64.rpm
postgresql-plpython-9.2.13-1.el7_1.ppc64.rpm
postgresql-pltcl-9.2.13-1.el7_1.ppc64.rpm
postgresql-server-9.2.13-1.el7_1.ppc64.rpm
postgresql-test-9.2.13-1.el7_1.ppc64.rpm
s390x:
postgresql-9.2.13-1.el7_1.s390.rpm
postgresql-9.2.13-1.el7_1.s390x.rpm
postgresql-contrib-9.2.13-1.el7_1.s390x.rpm
postgresql-debuginfo-9.2.13-1.el7_1.s390.rpm
postgresql-debuginfo-9.2.13-1.el7_1.s390x.rpm
postgresql-devel-9.2.13-1.el7_1.s390.rpm
postgresql-devel-9.2.13-1.el7_1.s390x.rpm
postgresql-docs-9.2.13-1.el7_1.s390x.rpm
postgresql-libs-9.2.13-1.el7_1.s390.rpm
postgresql-libs-9.2.13-1.el7_1.s390x.rpm
postgresql-plperl-9.2.13-1.el7_1.s390x.rpm
postgresql-plpython-9.2.13-1.el7_1.s390x.rpm
postgresql-pltcl-9.2.13-1.el7_1.s390x.rpm
postgresql-server-9.2.13-1.el7_1.s390x.rpm
postgresql-test-9.2.13-1.el7_1.s390x.rpm
x86_64:
postgresql-9.2.13-1.el7_1.i686.rpm
postgresql-9.2.13-1.el7_1.x86_64.rpm
postgresql-contrib-9.2.13-1.el7_1.x86_64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.i686.rpm
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-devel-9.2.13-1.el7_1.i686.rpm
postgresql-devel-9.2.13-1.el7_1.x86_64.rpm
postgresql-docs-9.2.13-1.el7_1.x86_64.rpm
postgresql-libs-9.2.13-1.el7_1.i686.rpm
postgresql-libs-9.2.13-1.el7_1.x86_64.rpm
postgresql-plperl-9.2.13-1.el7_1.x86_64.rpm
postgresql-plpython-9.2.13-1.el7_1.x86_64.rpm
postgresql-pltcl-9.2.13-1.el7_1.x86_64.rpm
postgresql-server-9.2.13-1.el7_1.x86_64.rpm
postgresql-test-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux Server (v. 7):
Source:
postgresql-9.2.13-1.ael7b_1.src.rpm
ppc64le:
postgresql-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-contrib-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-debuginfo-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-devel-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-docs-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-libs-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-plperl-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-plpython-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-pltcl-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-server-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-test-9.2.13-1.ael7b_1.ppc64le.rpm
Red Hat Enterprise Linux Server Optional (v. 7):
ppc64:
postgresql-debuginfo-9.2.13-1.el7_1.ppc64.rpm
postgresql-upgrade-9.2.13-1.el7_1.ppc64.rpm
s390x:
postgresql-debuginfo-9.2.13-1.el7_1.s390x.rpm
postgresql-upgrade-9.2.13-1.el7_1.s390x.rpm
x86_64:
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-upgrade-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux Server Optional (v. 7):
ppc64le:
postgresql-debuginfo-9.2.13-1.ael7b_1.ppc64le.rpm
postgresql-upgrade-9.2.13-1.ael7b_1.ppc64le.rpm
Red Hat Enterprise Linux Workstation (v. 7):
Source:
postgresql-9.2.13-1.el7_1.src.rpm
x86_64:
postgresql-9.2.13-1.el7_1.i686.rpm
postgresql-9.2.13-1.el7_1.x86_64.rpm
postgresql-contrib-9.2.13-1.el7_1.x86_64.rpm
postgresql-debuginfo-9.2.13-1.el7_1.i686.rpm
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-devel-9.2.13-1.el7_1.i686.rpm
postgresql-devel-9.2.13-1.el7_1.x86_64.rpm
postgresql-docs-9.2.13-1.el7_1.x86_64.rpm
postgresql-libs-9.2.13-1.el7_1.i686.rpm
postgresql-libs-9.2.13-1.el7_1.x86_64.rpm
postgresql-plperl-9.2.13-1.el7_1.x86_64.rpm
postgresql-plpython-9.2.13-1.el7_1.x86_64.rpm
postgresql-pltcl-9.2.13-1.el7_1.x86_64.rpm
postgresql-server-9.2.13-1.el7_1.x86_64.rpm
postgresql-test-9.2.13-1.el7_1.x86_64.rpm
Red Hat Enterprise Linux Workstation Optional (v. 7):
x86_64:
postgresql-debuginfo-9.2.13-1.el7_1.x86_64.rpm
postgresql-upgrade-9.2.13-1.el7_1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2015-3165
https://access.redhat.com/security/cve/CVE-2015-3166
https://access.redhat.com/security/cve/CVE-2015-3167
https://access.redhat.com/security/updates/classification/#moderate
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2015 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iD8DBQFVkXYEXlSAg2UNWIIRAqPyAJ4+oNPb8x+Rv86xVfq+hr0l7wvbBgCgrstj
JLgqt0VKrW96edx3scvrmV0=
=I50/
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce
. -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
APPLE-SA-2015-09-16-4 OS X Server 5.0.3
OS X Server 5.0.3 is now available and addresses the following:
apache
Available for: OS X Yosemite v10.10.4 or later
Impact: Multiple vulnerabilities in Apache, the most serious of
which may allow a remote attacker to cause a denial of service
Description: Multiple vulnerabilities existed in Apache versions
prior to 2.4.16. These issues were addressed by updating Apache to
version 2.4.16.
CVE-ID
CVE-2013-5704
CVE-2014-3581
CVE-2014-3583
CVE-2014-8109
CVE-2015-0228
CVE-2015-0253
CVE-2015-3183
CVE-2015-3185
BIND
Available for: OS X Yosemite v10.10.4 or later
Impact: Multiple vulnerabilities in BIND, the most severe of which
may allow a remote attacker to cause a denial of service
Description: Multiple vulnerabilities existed in BIND versions prior
to 9.9.7. These issues were addressed by updating BIND to version
9.9.7. These issues were addressed by updating PostgreSQL to
version 9.3.9.
CVE-ID
CVE-2014-0067
CVE-2014-8161
CVE-2015-0241
CVE-2015-0242
CVE-2015-0243
CVE-2015-0244
CVE-2015-3165
CVE-2015-3166
CVE-2015-3167
Wiki Server
Available for: OS X Yosemite v10.10.4 or later
Impact: Multiple XML security issues in Wiki Server
Description: Multiple XML vulnerabilities existed in Wiki Server
based on Twisted. This issue was addressed by removing Twisted.
CVE-ID
CVE-2015-5911 : Zachary Jones of WhiteHat Security Threat Research
Center
OS X Server 5.0.3 may be obtained from the Mac App Store. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 201507-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: PostgreSQL: Multiple vulnerabilities
Date: July 18, 2015
Bugs: #539018, #550172
ID: 201507-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
Multiple vulnerabilities have been found in PostgreSQL, the worst of
which could result in execution of arbitrary code or privilege
escalation.
Affected packages
=================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-db/postgresql < 9.4.3 *>= 9.0.21
*>= 9.1.17
*>= 9.2.12
*>= 9.3.8
>= 9.4.3
Description
===========
Multiple vulnerabilities have been discovered in PostgreSQL. Please
review the CVE identifiers referenced below for details.
Impact
======
A remote attacker could possibly execute arbitrary code with the
privileges of the process, cause a Denial of Service condition or
escalate privileges.
Workaround
==========
There is no known workaround at this time.
Resolution
==========
All PostgreSQL 9.0.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-9.0.21"
All PostgreSQL 9.1.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-9.1.17"
All PostgreSQL 9.2.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-9.2.12"
All PostgreSQL 9.3.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-9.3.8"
All PostgreSQL 9.4.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-9.4.3"
References
==========
[ 1 ] CVE-2014-8161
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-8161
[ 2 ] CVE-2015-0241
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0241
[ 3 ] CVE-2015-0242
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0242
[ 4 ] CVE-2015-0243
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0243
[ 5 ] CVE-2015-0244
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0244
[ 6 ] CVE-2015-3165
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3165
[ 7 ] CVE-2015-3166
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3166
[ 8 ] CVE-2015-3167
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3167
Availability
============
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
https://security.gentoo.org/glsa/201507-20
Concerns?
=========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.
License
=======
Copyright 2015 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5
| VAR-201903-0646 | CVE-2015-1014 | Schneider Electric OFS Vulnerabilities in uncontrolled search path elements |
CVSS V2: 4.4 CVSS V3: 7.3 Severity: HIGH |
A successful exploit of these vulnerabilities requires the local user to load a crafted DLL file in the system directory on servers running Schneider Electric OFS v3.5 with version v7.40 of SCADA Expert Vijeo Citect/CitectSCADA, OFS v3.5 with version v7.30 of Vijeo Citect/CitectSCADA, and OFS v3.5 with version v7.20 of Vijeo Citect/CitectSCADA.. If the application attempts to open that file, the application could crash or allow the attacker to execute arbitrary code. Schneider Electric recommends vulnerable users upgrade the OFS to V3.5 and install the latest service pack (SP 6 or newer) for their associated version. Schneider Electric OFS Contains a vulnerability related to uncontrolled search path elements.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Schneider Electric OPC Factory Server (OFS) is a data communication editing software. The software supports important information access, open page design, transparent architecture and interoperability, etc., to enable users to obtain good processes and communication effects.
Schneider Electric OFS has security vulnerabilities in loading DLLs, allowing remote attackers to use the vulnerabilities to submit special files and load them to execute arbitrary code
| VAR-201506-0328 | CVE-2015-4160 | SAP ASE Database Platform In SQL Injection vulnerability |
CVSS V2: 7.5 CVSS V3: - Severity: HIGH |
SQL injection vulnerability in SAP ASE Database Platform allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Notes: 2152278. SAP Sybase Adaptive Server Enterprise is a relational database management system.
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database