Feed aggregator

Vuln: Multiple Siklu EtherHaul Devices CVE-2017-7318 Remote Command Execution Vulnerability

Security Focus Latest Security Advisories - December 29, 2017 - 12:00am
Multiple Siklu EtherHaul Devices CVE-2017-7318 Remote Command Execution Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3893-1] jython security update

[SECURITY] [DSA 3893-1] jython security update
Categories:

Bugtraq: [slackware-security] openvpn (SSA:2017-172-01)

[slackware-security] openvpn (SSA:2017-172-01)
Categories:

Bugtraq: Sitecore 7.1-7.2 Cross Site Scripting Vulnerability

Sitecore 7.1-7.2 Cross Site Scripting Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3890-1] spip security update

[SECURITY] [DSA 3890-1] spip security update
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

[SECURITY] [DSA 3893-1] jython security update

BugTraq Latest Security Advisories - 3 hours 19 min ago

Posted by Salvatore Bonaccorso on Jun 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-3893-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
June 22, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : jython
CVE ID : CVE-2016-4000
Debian Bug :...
Categories:

Bugtraq: ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability

ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability
Categories:

[slackware-security] openvpn (SSA:2017-172-01)

BugTraq Latest Security Advisories - 5 hours 14 min ago

Posted by Slackware Security Team on Jun 22

[slackware-security] openvpn (SSA:2017-172-01)

New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
14.2, and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/openvpn-2.3.17-i586-1_slack14.2.txz: Upgraded.
This update fixes several denial of service issues discovered
by Guido Vranken.
For more information, see:...
Categories:

Bugtraq: ESA-2017-054: EMC Avamar Multiple Vulnerabilities

ESA-2017-054: EMC Avamar Multiple Vulnerabilities
Categories:

Sitecore 7.1-7.2 Cross Site Scripting Vulnerability

BugTraq Latest Security Advisories - 5 hours 28 min ago

Posted by hamedizadi on Jun 22

Sitecore 7.1-7.2 Cross Site Scripting Vulnerability

Information
--------------------
Author: Hamed Izadi
Email: ("hamedizadi", "@", "gmail", ".com");
Name: XSS Vulnerability in Sitecore
Affected Software : Sitecore.NET
Affected Versions: v7.2-7.1 and possibly below
Vendor Homepage : http://www.sitecore.net/
Vulnerability Type : Cross-site Scripting
Severity : Important

Description
--------------------
By...
Categories:

[SECURITY] [DSA 3890-1] spip security update

BugTraq Latest Security Advisories - 5 hours 41 min ago

Posted by Salvatore Bonaccorso on Jun 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-3890-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
June 21, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : spip
CVE ID : CVE-2017-9736
Debian Bug : 864921...
Categories:

Bugtraq: CVE-2017-3167: Apache httpd 2.x ap_get_basic_auth_pw authentication bypass

CVE-2017-3167: Apache httpd 2.x ap_get_basic_auth_pw authentication bypass
Categories:

Bugtraq: CVE-2017-7659: mod_http2 null pointer dereference

CVE-2017-7659: mod_http2 null pointer dereference
Categories:

next-20170622: linux-next

Linux Kernel Updates - 10 hours 24 min ago
Version:next-20170622 (linux-next) Released:2017-06-22

Vuln: Drupal Core CVE-2017-6920 Remote Code Execution Vulnerability

Drupal Core CVE-2017-6920 Remote Code Execution Vulnerability
Categories:

Vuln: Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerability

Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerability
Categories:

Vuln: JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability

JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability
Categories:

next-20170621: linux-next

Linux Kernel Updates - June 21, 2017 - 3:05am
Version:next-20170621 (linux-next) Released:2017-06-21

Vuln: Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability

Security Focus Latest Security Advisories - June 20, 2017 - 11:00pm
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
Categories: