Security

snaplitics made a real revolution in the industry.

Dazu zählen z.B. Web Application Firewalls (WAF), die auch kostenlos erhältlich sind und durchaus einen sinnvollen, zusätzlichen Schutz bieten können. Zumindest kann sogenannten 'Script-Kiddies' der Spass deutlich erschwert werden.

  • CVE-2018-16843

    Latest security vulnerabilities Nginx products Nov 7, 2018 | 00:00 am

    nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen'[…]

    Read more...
  • CVE-2018-16844

    Latest security vulnerabilities Nginx products Nov 7, 2018 | 00:00 am

    nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen'[…]

    Read more...
  • CVE-2017-7529

    Latest security vulnerabilities Nginx products Jul 13, 2017 | 00:00 am

    Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request. (CVSS:5.0) (Last Update:2018-01-04)

    Read more...
  • CVE-2016-1247

    Latest security vulnerabilities Nginx products Nov 29, 2016 | 00:00 am

    The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu1.1 on Ubuntu 16.10, and the nginx ebuild before 1.10.2-r3 on Gentoo allow local users[…]

    Read more...
  • CVE-2016-4450

    Latest security vulnerabilities Nginx products Jun 7, 2016 | 00:00 am

    os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a crafted request, involving writing a client request body to a temporary file. (CVSS:5.0)[…]

    Read more...
  • CVE-2016-0742

    Latest security vulnerabilities Nginx products Feb 15, 2016 | 00:00 am

    The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response. (CVSS:5.0) (Last Update:2018-10-30)

    Read more...
  • CVE-2016-0746

    Latest security vulnerabilities Nginx products Feb 15, 2016 | 00:00 am

    Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME[…]

    Read more...
  • CVE-2016-0747

    Latest security vulnerabilities Nginx products Feb 15, 2016 | 00:00 am

    The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution. (CVSS:5.0) (Last Update:2018-10-30)

    Read more...
  • CVE-2014-3556

    Latest security vulnerabilities Nginx products Dec 29, 2014 | 00:00 am

    The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x before 1.7.4 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a[…]

    Read more...
  • CVE-2014-3616

    Latest security vulnerabilities Nginx products Dec 8, 2014 | 00:00 am

    nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote attackers with certain privileges to conduct "virtual host confusion" attacks. (CVSS:4.3) (Last[…]

    Read more...
  • Security update for clamav 1509

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Moderate: Security update for clamavPatch: SUSE-SLE-Module-Basesystem-15-2018-1509 CVEs:CVE-2018-0360, CVE-2018-0361 Bugs:1101654, 1101410, 1101412, 1103040Applies to:Package(s): clamav clamav-devel libclamav7 libclammspack0Product(s):SUSE Linux Enterprise Server 15Downloads: SUSE Linux Enterprise Server 15 for x86-64SUSE Linux Enterprise Server 15 for s390xSUSE Linux Enterprise Server 15 for[…]

    Read more...
  • Security update for clamav 13716

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Moderate: Security update for clamavPatch: slessp3-clamav-13716 CVEs:CVE-2018-0360, CVE-2018-0361 Bugs:1101654, 1101410, 1101412, 1103040Applies to:Package(s): clamavProduct(s):SUSE Linux Enterprise Server 11 SP3 LTSSDownloads: SUSE Linux Enterprise Point of Service 11 SP3 for x86SUSE Linux Enterprise Server 11 SP4 for x86-64SUSE Linux Enterprise[…]

    Read more...
  • Security update for libcdio 1512

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Security update for libcdioPatch: SUSE-SLE-Module-Desktop-Applications-15-2018-1512 CVEs:CVE-2017-18199, CVE-2017-18201 Bugs:1082821, 1082877Applies to:Package(s): libcdio++0 libcdio-devel libcdio16 libiso9660-10 libudf0Product(s):SUSE Linux Enterprise Server 15Downloads: SUSE Linux Enterprise Desktop 15 for x86-64SUSE Linux Enterprise Server 15 for s390xSUSE Linux Enterprise Server 15 for ppc64leSUSE Linux[…]

    Read more...
  • Security update for enigmail 1514

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Moderate: Security update for enigmailPatch: SUSE-SLE-Product-WE-15-2018-1514 CVEs:CVE-2018-12019, CVE-2018-12020 Bugs:1094781, 1096745, 1097525Applies to:Package(s): enigmailProduct(s):SUSE Linux Enterprise Workstation Extension 15Downloads: SUSE Linux Enterprise Workstation Extension 15 for x86-64

    Read more...
  • Security update for cups 13718

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Moderate: Security update for cupsPatch: sdksp4-cups-13718 CVEs:CVE-2018-4182, CVE-2018-4183, CVE-2018-4180, CVE-2018-4181 Bugs:1096408, 1096405, 1096407, 1096406Applies to:Package(s): cups-develProduct(s):SUSE Linux Enterprise Software Development Kit 11 SP4Downloads: SUSE Linux Enterprise Server 11 SP4 for x86-64SUSE Linux Enterprise Server 11 SP4 for x86SUSE Linux[…]

    Read more...
  • Security update for pidgin 13717

    Novell Patches: - All SUSE Products - Aug 7, 2018 | 08:00 am

    Abstract: Moderate: Security update for pidginPatch: sdksp4-pidgin-13717 CVEs:CVE-2017-2640 Bugs:1028835Applies to:Package(s): finch finch-devel libpurple libpurple-devel libpurple-lang pidgin pidgin-develProduct(s):SUSE Linux Enterprise Software Development Kit 11 SP4Downloads: SUSE Linux Enterprise Software Development Kit 11 SP4 for x86-64SUSE Linux Enterprise Software Development Kit 11[…]

    Read more...
  • Security update for rubygem-sprockets-2_12 1500

    Novell Patches: - All SUSE Products - Aug 6, 2018 | 08:00 am

    Abstract: Moderate: Security update for rubygem-sprockets-2_12Patch: SUSE-OpenStack-Cloud-7-2018-1500 CVEs:CVE-2018-3760 Bugs:1098369Applies to:Package(s): ruby2.1-rubygem-sprockets-2_12Product(s):SUSE OpenStack Cloud 7Downloads: SUSE OpenStack Cloud 7 for x86-64

    Read more...
  • Security update for the Linux Kernel 1504

    Novell Patches: - All SUSE Products - Aug 6, 2018 | 08:00 am

    Abstract: Important: Security update for the Linux KernelPatch: SUSE-SLE-Product-WE-15-2018-1504 CVEs:CVE-2018-5390, CVE-2017-18344 Bugs:1012382, 1037697, 1046299, 1046300, 1046302, 1046303, 1046305, 1046306, 1046307, 1046533, 1046543, 1050242, 1050536, 1050538, 1050540, 1051510, 1054245, 1056651, 1056787, 1058169, 1058659, 1060463, 1068032, 1075087, 1075360, 1077338, 1077761, 1077989, 1085042,[…]

    Read more...
  • Security update for openssl 13713

    Novell Patches: - All SUSE Products - Aug 6, 2018 | 08:00 am

    Abstract: Moderate: Security update for opensslPatch: slestso13-openssl-13713 CVEs:CVE-2018-0732 Bugs:1097158, 1097624, 1098592Applies to:Package(s): libopenssl-develProduct(s):SUSE Studio Onsite 1.3Downloads: SUSE Linux Enterprise Point of Service 11 SP3 for x86SUSE Linux Enterprise Server 11 SP4 for x86-64SUSE Linux Enterprise Server 11 SP4 for x86SUSE[…]

    Read more...
  • Security update for libsoup 1497

    Novell Patches: - All SUSE Products - Aug 6, 2018 | 08:00 am

    Abstract: Moderate: Security update for libsoupPatch: SUSE-SLE-SDK-12-SP3-2018-1497 CVEs:CVE-2018-12910, CVE-2017-2885 Bugs:1052916, 1100097, 1086036Applies to:Package(s): libsoup-develProduct(s):SUSE Linux Enterprise Software Development Kit 12 SP3Downloads: SUSE Linux Enterprise Desktop 12 SP3 for x86-64SUSE Linux Enterprise Server 12 SP3 for x86-64SUSE Linux Enterprise Server 12[…]

    Read more...
Seite 1 von 2

Share This

Follow Us

Zum Seitenanfang