Feed aggregator

CVE-2014-3358 (ios, ios_xe)

News.Debuntu.Org - Thu, 09/25/2014 - 10:55

Memory leak in Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2E, and 3.11.xS before 3.11.1S allows remote attackers to cause a denial of service (memory consumption, and interface queue wedge or device reload) via malformed mDNS packets, aka Bug ID CSCuj58950.

Bookmark/Search this post with:
Categories: Network

CVE-2014-3357 (ios, ios_xe)

News.Debuntu.Org - Thu, 09/25/2014 - 10:55

Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2E, and 3.11.xS before 3.11.1S allow remote attackers to cause a denial of service (device reload) via malformed mDNS packets, aka Bug ID CSCul90866.

Bookmark/Search this post with:
Categories: Network

CVE-2014-3356 (ios_xe)

News.Debuntu.Org - Thu, 09/25/2014 - 10:55

The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allows remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCue22753.

Bookmark/Search this post with:
Categories: Network

CVE-2014-3355 (ios_xe)

News.Debuntu.Org - Thu, 09/25/2014 - 10:55

The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allows remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCug75942.

Bookmark/Search this post with:
Categories: Network

CVE-2014-3354 (ios, ios_xe)

News.Debuntu.Org - Thu, 09/25/2014 - 10:55

Cisco IOS 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, and 15.3 and IOS XE 2.x and 3.x before 3.7.4S; 3.2.xSE and 3.3.xSE before 3.3.2SE; 3.3.xSG and 3.4.xSG before 3.4.4SG; and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allow remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCui11547.

Bookmark/Search this post with:
Categories: Network

GNOME 3.14 Released, See What`s New

News.Debuntu.Org - Thu, 09/25/2014 - 02:00

WebUpd8: After six months of development, GNOME 3.14 was released today and it includes quite a few interesting changes

Bookmark/Search this post with:
Categories: Network

[$] LWN.net Weekly Edition for September 25, 2014

News.Debuntu.Org - Thu, 09/25/2014 - 00:59

The LWN.net Weekly Edition for September 25, 2014 is available.

Bookmark/Search this post with:
Categories: Network

DSA-3033 nss - security update

News.Debuntu.Org - Thu, 09/25/2014 - 00:00

Antoine Delignat-Lavaud from Inria discovered an issue in the way NSS
(the Mozilla Network Security Service library) was parsing ASN.1 data
used in signatures, making it vulnerable to a signature forgery attack.

Bookmark/Search this post with:
Categories: Network

DSA-3034 iceweasel - security update

News.Debuntu.Org - Thu, 09/25/2014 - 00:00

Antoine Delignat-Lavaud from Inria discovered an issue in the way NSS
(the Mozilla Network Security Service library, embedded in Wheezy's
Iceweasel package), was parsing ASN.1 data used in signatures, making it
vulnerable to a signature forgery attack.

Bookmark/Search this post with:
Categories: Network

Unix/Linux Bash: Critical security hole uncovered

News.Debuntu.Org - Wed, 09/24/2014 - 22:00

 ZDnet: The popular Linux and Unix shell has a serious security problem that means real trouble for many web servers.

Bookmark/Search this post with:
Categories: Network

How to manage configurations in Linux with Puppet and Augeas

News.Debuntu.Org - Wed, 09/24/2014 - 21:00

 xmodulo: Although Puppet is a really unique and useful tool, there are situations where you could use a bit of a different approach.

Bookmark/Search this post with:
Categories: Network

A remotely exploitable hole in bash

News.Debuntu.Org - Wed, 09/24/2014 - 20:13

The bash shell has a vulnerability in its environment variable processing
that could be remotely exploited in some situations — with CGI scripts
being at the top of the list. "The fact that an environment variable with an arbitrary name can be
used as a carrier for a malicious function definition containing
trailing commands makes this vulnerability particularly severe; it
enables network-based exploitation."
The problem was disclosed (a little) prematurely, so
updates are still coming in from the distributors.

Bookmark/Search this post with:
Categories: Network

Take control of Android app permissions with XPrivacy and the Xposed framework

News.Debuntu.Org - Wed, 09/24/2014 - 20:00

 androidtipsandhacks: This tutorial shows how you can back control over the ever expanding app permission requests on Android.

Bookmark/Search this post with:
Categories: Network

[$] Adobe releases source code for OpenType font-development tools

News.Debuntu.Org - Wed, 09/24/2014 - 19:38

Adobe made a surprise announcement at the annual ATypI conference
in Barcelona, Spain, releasing one of the company's proprietary font-production tools under an open-source license. In
addition, the team convinced another popular font-development project
to release its core library as open source, too. Adobe
framed the release as a move designed to
help improve the quality of fonts produced with any application, but
there may be other benefits as well—such as increasing the
spread of Adobe's own open fonts.

Bookmark/Search this post with:

read more

Categories: Network

Counter-Strike: Global Offensive Officially Lands on Linux, Skips Beta

News.Debuntu.Org - Wed, 09/24/2014 - 19:00

 softpedia: Counter-Strike: Global Offensive, the much anticipated multiplayer FPS from Valve, has finally arrived on Steam for Linux

Bookmark/Search this post with:
Categories: Network

GNOME 3.14 released

News.Debuntu.Org - Wed, 09/24/2014 - 18:55

The GNOME project has released GNOME 3.14. "This is another exciting release for GNOME, and brings many new features
and improvements, including multitouch, captive portal support, greatly
improved sharing settings. This release also includes improved and
redesigned applications for weather, maps, PDF viewing, running VMs,
and more.

The Wayland support has matured to the point where it is ready for
day-to-day use." See the release notes
for details.

Bookmark/Search this post with:
Categories: Network

How to install Moodle on Ubuntu 14.04

News.Debuntu.Org - Wed, 09/24/2014 - 18:29

How to install Moodle on Ubuntu 14.04
This document describes how to install and configure Moodle on Ubuntu 14.04.  Moodle (acronym for Modular Object-Oriented Dynamic Learning Environment) is a free software e-learning platform, also known as a Learning Management System, or Virtual Learning Environment (VLE).

Bookmark/Search this post with:
Categories: Network

What happens when you put slow loris DOS attack on steroid?

News.Debuntu.Org - Wed, 09/24/2014 - 18:00

 Darkmoreops: SlowHTTPTest is a highly configurable tool that simulates some Application Layer Denial of Service attacks

Bookmark/Search this post with:
Categories: Network

5 New Enterprise Open Source Projects to Watch

News.Debuntu.Org - Wed, 09/24/2014 - 17:48

We asked open source experts: What are the most exciting open source projects to launch recently with a focus on the enterprise?

The open source software community is nothing if not prolific, and exciting new projects arrive on the scene practically every day. Keeping up with it all can be a formidable challenge; on the other hand, failing to do so could mean you miss out on something great.

Bookmark/Search this post with:

read more

Categories: Network

GNOME 3.14 Officially Released

News.Debuntu.Org - Wed, 09/24/2014 - 17:16

GNOME 3.14 has been officially released today as the latest major advancement to the GNOME Shell driven desktop environment...

GNOME 3.14 has been officially released today as the latest major advancement to the GNOME Shell driven desktop environment...
Read more at Phoronix

Bookmark/Search this post with:
Categories: Network
Syndicate content