Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 568
Alerts This Week
Warning Icon 1 568

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":100,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
89

Fedora 23: drupal6-emfield Update - Moderate Access Bypass Issue

### 6.x-2.7 Fixes [Embedded Media Field - Moderately Critical - Access Bypass - DRUPAL-SA-CONTRIB-2016-004]() #### Changes since 6.x-2.6: * by dalin: Ensure that width and height are always numbers. * \#1868588 by tangent: URL detection regex does not match hyphens / breaks HTML markup. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-592f23fb74 2016-03-19 22:17:41.316479 -------------------------------------------------------------------------------- Name : drupal6-emfield Product : Fedora 23 Version : 2.7 Release : 1.fc23 URL : Summary : An engine for modules to integrate various 3rd party media content providersDescription : This extensible module will create fields for content types that can be used to display video, image, and audio files from various third party providers. When entering the content, the user will simply paste the URL or embed code from the third party, and the module will automatically determine which content provider is being used. When displaying the content, the proper embedding format will be used. The module is only an engine, and requires a supported module to function. These include 'Embedded Image Field', 'Embedded Video Field' and 'Embedded Audio Field'. These modules are included in the contrib folder of the module, so they can be easily activated from the module administration page. Please note: As of emfield 2.x, provider files for these modules are no longer included with the main emfield module, and must be downloaded separately. This package provides the following Drupal modules: * emaudio * embonus * emfield * emimage * eminline * emthumb * emvideo * emwave -------------------------------------------------------------------------------- Update Information: ### 6.x-2.7 Fixes [Embedded Media Field - Moderately Critical - Access Bypass - DRUPAL-SA-CONTRIB-2016-004]() #### Changes since 6.x-2.6: * by dalin: Ensure that width and height are always numbers.* \#1868588 by tangent: URL detection regex does not match hyphens / breaks HTML markup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1306475 - drupal6-emfield-2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306475 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update drupal6-emfield' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . This patch rectifies a vulnerability in media6-asset for Fedora 23, reinforcing defenses against unauthorized content interactions.. Drupal6 Integration, Media Content Security, Fedora Update Notice. . LinuxSecurity.com Team

Calendar%202 Mar 20, 2016 Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":100,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200