atc

WebAssembly Changes Could Ruin Meltdown And Spectre Patches




atc

Lenovo Patches Intel Firmware Flaws In Multiple Product Lines




atc

Intel Patches High-Severity Flaws In Media SDK, Mini PC






atc

Kernel Live Patch Security Notice LSN-0065-1

Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual Machine) emulated the IOAPIC. A privileged guest user could exploit this flaw to read host memory or cause a denial of service (crash the host). It was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information (read memory from another guest VM). Al Viro discovered that the vfs layer in the Linux kernel contained a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory).




atc

Firewall Log Watch 1.2

fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.




atc

Firewall Log Watch 1.3

fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.




atc

Firewall Log Watch 1.4

fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.





atc

Bull / IBM AIX Clusterwatch / Watchware File Write / Command Injection

Bull / IBM AIX Clusterwatch / Watchware suffers from having trivial admin credentials, system file writes, and OS command injection vulnerabilities.






atc

openssh-3.6.1p2-backdoor.patch.gz

OpenSSH 3.6.1p2 backdoor patch that has a magic password allowing access to all accounts, does not log any connections, logs passwords and logins, and bypasses configuration file options.




atc

fp-2.4.22.patch.gz

The Linux-kernel security patch for kernel v2.4.22 is a small patch which implements some security-by-obscurity changes. Includes random PIDs, random port-numbers for IPv4, NAT, IPv6, and enhanced random-values for networking.




atc

apatch-ssh.tar.gz

OpenSSH patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.




atc

bash-perassi.patch

bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.




atc

apatch-ssh-3.2.9.1

Apatch for ssh v3.2.9.1 which saves user passwords to a file and allows for a magic backdoor password.




atc

apatch-ssh-3.8.1p1.tar.gz

OpenSSH v3.8.1p1 patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.




atc

aspjarPatch.txt

Unofficial patch for the ASPjar Guestbook login.asp vulnerability that allows bypassing of the authentication process.




atc

xine-lib.formatstring.patch

Patch for the xine/gxine CD player that was found susceptible to a remote format string bug. The vulnerable code is found in the xine-lib library that both xine and gxine use. The vulnerable versions are at least xine-lib-0.9.13, 1.0, 1.0.1, 1.0.2 and 1.1.0.




atc

patch-2.6.16-karp

kArp, the Kernel ARP hijacking kernel patch for Linux. Any ethernet driver (including 802.11 drivers) is supported. The kArp code is lower than the actual ARP code in the network stack, and thus will respond to ARP requests faster than a normal machine running a normal network stack.




atc

bash-3.1-perassi.patch

bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.




atc

bsd.patch

Firewire patch for BSD kernels that fixes an improper length check.




atc

silc-join-hmac.patch

Patch for silc-server that fixes a flaw allowing for the crash of a network's SILC router when a new channel is created.




atc

openssh_backdoor.patch.txt

OpenSSH patch tested with versions 4.2p1 and 4.7p1 that allows for a hidden user to login with root permissions.




atc

freeradius-wpe-2.0.2.patch.txt

A patch for the popular open-source FreeRADIUS implementation to demonstrate RADIUS impersonation vulnerabilities by Joshua Wright and Brad Antoniewicz, demonstrated at Shmoocon 4.




atc

HPP Protection Patch For ModSecurity 2.5.9

HPP (HTTP Parameter Pollution) protection patch for ModSecurity version 2.5.9.




atc

FreeBSD RTLD Patch

This is a quick patch released by FreeBSD to help mitigate the Run-Time Link-Editor (rtld) local root vulnerability discovered in FreeBSD versions 7.x and 8.x.




atc

OpenSSH 6.0p1 Magic Password Patch

This patch for OpenSSH 6.0 Portable is a lightweight version of the full patch. This version strictly allows for the addition of a hard-coded password.




atc

OpenSSH 6.0p1 Full Backdoor Patch

This patch for OpenSSH 6.0 Portable adds a hardcoded skeleton key, removes connection traces in the log files, usernames and passwords both in and out are logged, and more.




atc

Launcher Execution Mitigation Patch

This patch mitigates allowing launcher the ability to execute arbitrary programs.






atc

OpenBSD Patches Auth Bypass, Privilege Escalation Vulns





atc

Germany Urges Parents To Destroy Snooping Smartwatches





atc

Google Patches Awesome XSS Vulnerability In Gmail Dynamic Email Feature





atc

World's Favorite Open-Source PDF Interpreter Needs Patching Again





atc

The Lewis River Merwin Dam: harvest, habitat, hatcheries and hydro

On Tuesday, July 23, about 30 HydroVision attendees had to privilege of touring the 136-MW Lewis River hydropower plant located at the Merwin Dam in Ariel, Washington. The dam was constructed in 1931 and has four penstocks, which today feed three turbines. The turbines were installed in 1931, 1949 and 1958, respectively. The fourth penstock, which was the focus of much of the tour, is for fish passage.




atc

PJM looks to plug ‘leaks’ sprouting from patchwork of state carbon policies

The nation’s largest electric grid operator is grappling with how to prevent state climate policies from merely pushing emissions — and costs — across state lines.




atc

PJM looks to plug ‘leaks’ sprouting from patchwork of state carbon policies

The nation’s largest electric grid operator is grappling with how to prevent state climate policies from merely pushing emissions — and costs — across state lines.




atc

Saskatchewan River Weir Hydroelectric Initiative Enters Next Steps After Council Vote

City councilors want to learn more about a potential multi-million dollar hydroelectric project at the South Saskatchewan River Weir in Saskatoon, a city in central Saskatchewan, Canada.