News & Information       http://info.owt.com

Linux

09/15/2019   LinuxSecurity.com
Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site scripting, information disclosure and a covert content attack on S/MIME encryption using a crafted multipart/alternative message.
09/15/2019   LinuxSecurity.com
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
09/15/2019   LinuxSecurity.com
An update that fixes one vulnerability is now available.
09/15/2019   LinuxSecurity.com
An update that fixes one vulnerability is now available.
09/15/2019   LinuxSecurity.com
Updated wireshark packages fix security vulnerability: The Gryphon dissector could go into an infinite loop. For other fixes in this update, see the referenced releasenotes.
09/15/2019   LinuxSecurity.com
Updated webkit2 packages fix security vulnerabilities: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling (CVE-2019-8644).
09/15/2019   LinuxSecurity.com
Updated openldap packages fix security vulnerabilities: It was discovered that OpenLDAP incorrectly handled rootDN delegation. A database administrator could use this issue to request authorization as an identity from another database, contrary to expectations (CVE-2019-13057).
09/15/2019   LinuxSecurity.com
Updated mediawiki packages fix security vulnerabilities: Potential XSS in jQuery (CVE-2019-11358). An account can be logged out without using a token (CSRF) (CVE-2019-12466).
09/15/2019   LinuxSecurity.com
Updated kconfig packages fix security vulnerability: Dominik Penner discovered that KConfig supported a feature to define shell command execution in .desktop files. If a user is provided with a malformed .desktop file (e.g. if it's embedded into a downloaded archive and it gets
09/15/2019   LinuxSecurity.com
Multiple vulnerabilities have been discovered in faad2, the Freeware Advanced Audio Coder. These vulnerabilities might allow remote attackers to cause denial-of-service, or potentially execute arbitrary code if crafted MPEG AAC files are processed.
09/15/2019   LinuxSecurity.com
This update provides nodejs v6.17.1 fixing atleast the following security issues: The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given
09/15/2019   LinuxSecurity.com
The updated packages fix security vulnerabilities: The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap,
09/03/2019   Virtualization
eWEEK NEW-PRODUCT ANALYSIS RESOURCE PAGE: It's all about consistency. VMware's new solutions aim to help organizations migrate, modernize and manage workloads across clouds, data centers and edge locations with consistent hybrid cloud infrastructure and operations.
08/22/2019   Virtualization
eWEEK RESOURCE PAGE: AWS and Google Cloud Platform, two of the three largest cloud computing vendors, each have their own strengths and weaknesses that make them efficient for different workloads. Which might be best for your use case?