Month: marzo 2018

BIG-IP ASM and BIG-IP Analytics vulnerability CVE-2018-5505. Security Advisory. Security Advisory Description. When BIG ... More info: https://support.f5.com/csp/article/K23520761

Red Hat Enterprise Linux: An update for rh-mariadb101-mariadb and rh-mariadb101-galera is now availablefor Red Hat Software Collections.Red Hat Product Security has rated this update as having a security impact ofModerate. A Common Vulnerability Scoring System (CVSS) base score, which gives adetailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2016-5617, CVE-2016-6664, CVE-2017-10268, CVE-2017-10286, CVE-2017-10378, CVE-2017-10379, More info: http://rhn.redhat.com/errata/RHSA-2018-0574.html

Several vulnerabilities were discovered in PolarSSL, a lightweightcrypto and SSL/TLS library, that allowed a remote attacker to eithercause a denial-of-service by application crash, or execute arbitrarycode. More info: https://www.debian.org/security/2018/dsa-4147

Charles Duffy discovered that the Commandline class in the utilities forthe Plexus framework performs insufficient quoting of double-encodedstrings, which could result in the execution of arbitrary shell commands. More info: https://www.debian.org/security/2018/dsa-4146

BIG-IP Client SSL vulnerability CVE-2018-5502. Security Advisory. Security Advisory Description. Attackers may be able ... More info: https://support.f5.com/csp/article/K43121447

Type: Vulnerability. Adobe Acrobat and Reader are prone to multiple remote code-execution vulnerabilities; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=102996&om_rssid=sr-advisories

Red Hat Enterprise Linux: An update for collectd is now available for RHEV 4.X RHEV-H and Agents forRHEL-7 and RHEV Engine version 4.1.Red Hat Product Security has rated this update as having a security impact ofModerate. A Common Vulnerability Scoring System (CVSS) base score, which gives adetailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2017-16820 More info: http://rhn.redhat.com/errata/RHSA-2018-0560.html

Type: Vulnerability. Adobe Acrobat and Reader are prone to multiple remote code-execution vulnerabilities; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=102995&om_rssid=sr-advisories

Greetings from the VMware Security Response Center! It’s time. Today we released VMSA-2018-0004.3 which documents Hypervisor-Assisted Guest Mitigations for CVE-2017-5715 (Spectre-2). We thought it would be a good idea to quickly link all of the documentation which has undergone a major change. For newcomers, please familiarize yourself by reading through KB52245 first to get a […]The post VMSA-2018-0004.3 appeared first on VMware Security & Compliance Blog. More info: https://blogs.vmware.com/security/2018/03/vmsa-2018-0004-3.html

Samba vulnerability CVE-2017-12150. Security Advisory. Security Advisory Description. ** RESERVED ** This candidate ... More info: https://support.f5.com/csp/article/K73835689