Feed aggregator

Vuln: JasPer 'jas_matrix_create()' Function Integer Overflow Vulnerability

Security Focus Latest Security Advisories - December 24, 2016 - 12:00am
JasPer 'jas_matrix_create()' Function Integer Overflow Vulnerability
Categories:

Vuln: Autodesk Design Review CVE-2015-8571 Remote Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - December 8, 2016 - 12:00am
Autodesk Design Review CVE-2015-8571 Remote Buffer Overflow Vulnerability
Categories:

Bugtraq: OS-S Security Advisory 2016-19: Epson WorkForce multi-function printers do not use signed firmware images and allow unauthorized malicious firmware-updates (CVSS 10)

OS-S Security Advisory 2016-19: Epson WorkForce multi-function printers do not use signed firmware images and allow unauthorized malicious firmware-updates (CVSS 10)
Categories:

Bugtraq: [slackware-security] php (SSA:2016-267-01)

[slackware-security] php (SSA:2016-267-01)
Categories:

Bugtraq: ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability

ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability
Categories:

Bugtraq: Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium

Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

OS-S Security Advisory 2016-19: Epson WorkForce multi-function printers do not use signed firmware images and allow unauthorized malicious firmware-updates (CVSS 10)

BugTraq Latest Security Advisories - 3 hours 53 min ago

Posted by Ralf Spenneberg on Sep 26

OpenSource Security Ralf Spenneberg
Am Bahnhof 3-5
48565 Steinfurt
info () os-s net

OS-S Security Advisory 2016-19

Title: Epson WorkForce multi-function printers do not use signed
firmware images and allow unauthorized malicious firmware-updates
Authors: Yves-Noel Weweler <y.weweler () gmail com>, Ralf Spenneberg
<ralf () os-t de>, Hendrik Schwartke <hendrik () os-t de>

Date: September 26th 2015
Vendor contacted: September...
Categories:

[slackware-security] php (SSA:2016-267-01)

Posted by Slackware Security Team on Sep 26

[slackware-security] php (SSA:2016-267-01)

New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/php-5.6.26-i586-1_slack14.2.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
https://php.net/ChangeLog-5.php#5.6.26...
Categories:

Bugtraq: [SECURITY] [DSA 3674-1] firefox-esr security update

[SECURITY] [DSA 3674-1] firefox-esr security update
Categories:

Bugtraq: [SECURITY] [DSA 3673-1] openssl security update

[SECURITY] [DSA 3673-1] openssl security update
Categories:

Vuln: Apple Mac OS X APPLE-SA-2016-05-16-4 Multiple Security Vulnerabilities

Apple Mac OS X APPLE-SA-2016-05-16-4 Multiple Security Vulnerabilities
Categories:

Vuln: libxml2 CVE-2016-1762 Multiple Memory Corruption Vulnerabilities

libxml2 CVE-2016-1762 Multiple Memory Corruption Vulnerabilities
Categories:

Vuln: OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability

OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
Categories:

Vuln: IBM Rational DOORS Next Generation CVE-2016-5955 Unspecified Cross Site Scripting Vulnerability

IBM Rational DOORS Next Generation CVE-2016-5955 Unspecified Cross Site Scripting Vulnerability
Categories:

Vuln: OpenSSL CVE-2016-6307 Denial of Service Vulnerability

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
Categories:

Vuln: OpenSSL CVE-2016-6308 Denial of Service Vulnerability

OpenSSL CVE-2016-6308 Denial of Service Vulnerability
Categories:

Vuln: QEMU 'xilinx_ethlite.c' Heap Based Buffer Overflow Vulnerability

QEMU 'xilinx_ethlite.c' Heap Based Buffer Overflow Vulnerability
Categories:

4.8-rc8: mainline

Linux Kernel Updates - September 25, 2016 - 8:47pm
Version:4.8-rc8 (mainline) Released:2016-09-26 Source:linux-4.8-rc8.tar.xz PGP Signature:linux-4.8-rc8.tar.sign Patch:patch-4.8-rc8.xz

Vuln: Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability

Security Focus Latest Security Advisories - September 24, 2016 - 11:00pm
Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
Categories: