Synopsis
Moderate: httpd24 security, bug fix, and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
An update for httpd24-httpd, httpd24-nghttp2, and httpd24-curl is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of ...
This build resolves the following issues:
CVE-2016-8615: Cookie injection for other serversCVE-2016-8616: Case insensitive password comparisonCVE-2016-8617: Out-of-bounds write via unchecked multiplicationCVE-2016-8618: Double-free in curl_maprintfCVE-2016-8619: Double-free in krb5 codeCVE-2016-8620: Glob parser write/read out of boundsCVE-2016-862 ...
The curl tool's "globbing" feature allows a user to specify a numerical range through which curl will iterate It is typically specified as [1-5], specifying the first and the last numbers in the range Or with [a-z], using letters
The curl code for parsing the second unsigned number did not check for a leading minus character, which allowed a us ...
LCE 481 is possibly impacted by multiple vulnerabilities reported in third-party libraries Tenable has not investigated each one to determine if it is exploitable or the vulnerable code path can be reached Instead, Dev has upgraded the impacted libraries as a faster and safer alternative Due to the number of library upgrades and the potential ...
Wazuh Ruby Client
A Ruby client for the wazuh APIs
Installation
Add this line to your application's Gemfile:
gem 'wazuh-ruby-client'
Usage
Wazuhconfigure do |config|
configendpoint = "wazuhlocal:55000"
configbasic_user = "foo"
configbasic_password = "bar"
configverify_s