The package openvpn before version 2.4.9-1 is vulnerable to denial of service. Continue Reading — ArchLinux: 202004-16: openvpn: denial of service>
Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base
It was discovered that there was a path-traversal issue in Apache Shiro, a security framework for the Java programming language. A specially-crafted request could cause an authentication bypass. Continue Reading — Debian LTS: DLA-2181-1: shiro security update>
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file’s parent is a symlink to a directory outside of the Continue Reading — Debian LTS: DLA-2180-1: file-roller security updateDebian LTS: DLA-2180-1: file-roller sec>
Following CVEs were reported against the jackson-databind source package : Continue Reading — Debian LTS: DLA-2179-1: jackson-databind security updateDebian LTS: DLA-2179-1: jackson-da>
Following CVEs were reported against the awl source package: CVE-2020-11728 Continue Reading — Debian LTS: DLA-2178-1: awl security updateDebian LTS: DLA-2178-1: awl security update>
Starting today, contact center admins can improve their Amazon Lex chatbots by configuring timeouts for each customer response in a conversation. The timeout determines how long the chatbot waits for the customer to finish speaking. For example, you mi… Continue Reading — Amazon Connect supports...