Showing 51 - 53 of 53

Files Date: 2012-02-17 to 2012-02-18

Red Hat Security Advisory 2012-0139-01: Posted Feb 17, 2012; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2012-0139-01 - The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. This update fixes several vulnerabilities in the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch page, listed in the References section. All users of java-1.6.0-sun are advised to upgrade to these updated packages, which provide JDK and JRE 6 Update 31 and resolve these issues. All running instances of Sun Java must be restarted for the update to take effect.; tags | advisory, java, vulnerability; systems | linux, redhat; advisories | CVE-2011-3563, CVE-2011-3571, CVE-2011-5035, CVE-2012-0498, CVE-2012-0499, CVE-2012-0500, CVE-2012-0501, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506; SHA-256 | 59b1b1771497372d96df83e9b666267326a847cc6eb7bd98422eeda63449205d; Download | Favorite | View

Red Hat Security Advisory 2012-0140-01: Posted Feb 17, 2012; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2012-0140-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. A heap-based buffer overflow flaw was found in the way Thunderbird handled PNG images. An HTML mail message or remote content containing a specially-crafted PNG image could cause Thunderbird to crash or, possibly, execute arbitrary code with the privileges of the user running Thunderbird. All Thunderbird users should upgrade to this updated package, which corrects this issue. After installing the update, Thunderbird must be restarted for the changes to take effect.; tags | advisory, remote, overflow, arbitrary; systems | linux, redhat; advisories | CVE-2011-3026; SHA-256 | a03180c6087c793165bf19fb58a59dffacdb68d9bba7fa484e10ce8e5166445f; Download | Favorite | View

Ubuntu Security Notice USN-1284-2: Posted Feb 17, 2012; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1284-2 - USN-1284-1 fixed vulnerabilities in Update Manager. One of the fixes introduced a regression for Kubuntu users attempting to upgrade to a newer Ubuntu release. This update fixes the problem. David Black discovered that Update Manager incorrectly extracted the downloaded upgrade tarball before verifying its GPG signature. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to replace arbitrary files. David Black discovered that Update Manager created a temporary directory in an insecure fashion. A local attacker could possibly use this flaw to read the XAUTHORITY file of the user performing the upgrade. This update also adds a hotfix to Update Notifier to handle cases where the upgrade is being performed from CD media. Various other issues were also addressed.; tags | advisory, remote, arbitrary, local, vulnerability; systems | linux, ubuntu; advisories | CVE-2011-3152, CVE-2011-3154; SHA-256 | e9e11dd64ad1bff59728da381b259a743f19dbb3662e7ca724ff936e7d46991e; Download | Favorite | View

Page 3 of 3 Back 1 2 3 Next

Top Authors In Last 30 Days