BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 22 min 35 sec ago

[SECURITY] [DSA 4122-1] squid3 security update

February 23, 2018 - 12:57am

Posted by Salvatore Bonaccorso on Feb 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-4122-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
February 23, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : squid3
CVE ID : CVE-2018-1000024 CVE-2018-1000027...
Categories:

Re: [CVE-2018-1000088] Stored XSS vulnerability in Doorkeeper gem v2.1.0 - v4.2.5

February 23, 2018 - 12:55am

Posted by Justin Bull on Feb 22

Apologies. This fails to account for a non-trivial scenario.

Any software using Doorkeeper that has generated its own custom
views[0] requires manual work to verify there's no explicit HTML in
the `client_name` and `native_redirect_uri` field values.

This has been updated in the bulletin's Fix section[1].

[0]: https://github.com/doorkeeper-gem/doorkeeper/wiki/Customizing-views
[1]:...
Categories:

[security bulletin] MFSBGN03798 rev.1 - Micro Focus Universal CMDB, Apache Struts Instance

February 23, 2018 - 12:54am

Posted by cyber-psrt on Feb 22

Note: the current version of the following document is available here:
https://softwaresupport.hpe.com/document/-/facetsearch/document/KM03086019

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: KM03086019
Version: 1

MFSBGN03798 rev.1 - Micro Focus Universal CMDB, Apache Struts Instance

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2018-02-22
Last Updated: 2018-02-22...
Categories:

[SECURITY] [DSA 4120-1] linux security update

February 23, 2018 - 12:45am

Posted by Yves-Alexis Perez on Feb 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-4120-1 security () debian org
https://www.debian.org/security/ Yves-Alexis Perez
February 22, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : linux
CVE ID : CVE-2017-5715 CVE-2017-5754...
Categories:

[SECURITY] [DSA 4121-1] gcc-6 security update

February 22, 2018 - 10:08am

Posted by Moritz Muehlenhoff on Feb 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-4121-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
February 22, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : gcc-6
CVE ID : not applicable

This update...
Categories:

[CORE-2017-0006] Trend Micro Email Encryption Gateway Multiple Vulnerabilities

February 22, 2018 - 2:14am

Posted by Core Security Advisories Team on Feb 21

Core Security - Corelabs Advisory
http://corelabs.coresecurity.com/

Trend Micro Email Encryption Gateway Multiple Vulnerabilities

1. *Advisory Information*

Title: Trend Micro Email Encryption Gateway Multiple Vulnerabilities
Advisory ID: CORE-2017-0006
Advisory URL:
http://www.coresecurity.com/advisories/trend-micro-email-encryption-gateway-multiple-vulnerabilities
Date published: 2018-02-21
Date of last update: 2018-02-21
Vendors contacted:...
Categories:

DefenseCode Security Advisory: PureVPN Windows Privilege Escalation Vulnerability

February 22, 2018 - 2:11am

Posted by Defense Code on Feb 21

DefenseCode Security Advisory
PureVPN Windows Privilege Escalation Vulnerability

Advisory ID: DC-2018-02-001
Advisory Title: PureVPN Windows Privilege Escalation Vulnerability
Advisory URL: http://www.defensecode.com/advisories.php
Software: PureVPN
Version: 5.19.4.0 and below (Windows Build Version: 6)
Vendor Status: Vendor contacted, vulnerability fixed
Release Date: 21/02/2018
Risk: MEDIUM

1. General Overview...
Categories:

SEC Consult SA-20180221-0 :: Hijacking of arbitrary miSafes Mi-Cam video baby monitors

February 21, 2018 - 9:11am

Posted by SEC Consult Vulnerability Lab on Feb 21

We have published an accompanying blog post to this technical advisory with
further information:

https://www.sec-consult.com/en/blog/2018/02/internet-of-babies-when-baby-monitors-fail-to-be-smart/index.html

SEC Consult Vulnerability Lab Security Advisory < 20180221-0 >
=======================================================================
title: Hijacking of arbitrary video baby monitors
product: miSafes Mi-Cam...
Categories:

Sharutils 4.15.2 Heap-Buffer-Overflow

February 21, 2018 - 6:29am

Posted by nafiez on Feb 21

Unshar scans the input files (typically email messages) looking for the start of a shell archive. If no files are
given, then standard input is
processed instead. Shipped along with Sharutils.

Bug was found with AFL. Password: abc123

=================================================================
==11164==ERROR: AddressSanitizer: heap-buffer-overflow on address
0xb5901100 at pc 0x0804c695 bp 0xbfe86f28 sp 0xbfe86f18
READ of size 1 at...
Categories:

Sharutils 4.15.2 Heap-Buffer-Overflow

February 21, 2018 - 6:24am

Posted by nafiez on Feb 21

Unshar scans the input files (typically email messages) looking for the
start of a shell archive. If no files are given, then standard input is
processed instead. Shipped along with Sharutils.

Bug was found with AFL.

=================================================================
==11164==ERROR: AddressSanitizer: heap-buffer-overflow on address
0xb5901100 at pc 0x0804c695 bp 0xbfe86f28 sp 0xbfe86f18
READ of size 1 at 0xb5901100 thread T0...
Categories:

Multiple Persistent Cross-Site Scripting Vulnerabilities in Quarx CMS

February 21, 2018 - 12:55am

Posted by preethiknambiar on Feb 20

1. Introduction

Vendor : Yab
Affected Product : Quarx through 2.4.3
Fixed in : Quarx 2.4.5 and 2.4.6
Vendor Website : https://quarxcms.com/
Vulnerability Type : Persistent XSS
Remote Exploitable : Yes
CVE External Identifier : CVE-2018-7274

2. Technical Description

There are multiple Persistent XSS vulnerabilities in Quarx Content Management System. These vulnerabilities exists
due...
Categories:

Multiple Persistent XSS vulnerabilities in Radiant Content Management System

February 20, 2018 - 7:18am

Posted by suparna . kachru on Feb 20

*1. Introduction*

Vendor : Radiant
Affected Product : Radiant CMS 1.1.4
Fixed in : NA
Vendor Website : http://radiantcms.org/
Vulnerability Type : Persistent XSS
Remote Exploitable : Yes
CVE External Identifier : CVE-2018-7261

*2. Overview*

Technical Description:

There are multiple Persistent XSS vulnerabilities in Radiant Content Management System. These vulnerabilities exists
due to...
Categories:

APPLE-SA-2018-02-19-1 iOS 11.2.6

February 19, 2018 - 11:34pm

Posted by Apple Product Security on Feb 19

APPLE-SA-2018-02-19-1 iOS 11.2.6

iOS 11.2.6 is now available and addresses the following:

CoreText
Available for: iPhone 5s and later, iPad Air and later, and
iPod touch 6th generation
Impact: Processing a maliciously crafted string may lead to heap
corruption
Description: A memory corruption issue was addressed through improved
input validation.
CVE-2018-4124: an anonymous researcher

Installation note:

This update is available through iTunes...
Categories:

APPLE-SA-2018-02-19-2 macOS High Sierra 10.13.3 Supplemental Update

February 19, 2018 - 11:30pm

Posted by Apple Product Security on Feb 19

APPLE-SA-2018-02-19-2 macOS High Sierra 10.13.3 Supplemental Update

macOS High Sierra 10.13.3 Supplemental Update is now available and
addresses the following:

CoreText
Available for: macOS High Sierra 10.13.3
Impact: Processing a maliciously crafted string may lead to heap
corruption
Description: A memory corruption issue was addressed through improved
input validation.
CVE-2018-4124: an anonymous researcher

Installation note:

macOS High...
Categories:

APPLE-SA-2018-02-19-3 tvOS 11.2.6

February 19, 2018 - 11:28pm

Posted by Apple Product Security on Feb 19

APPLE-SA-2018-02-19-3 tvOS 11.2.6

tvOS 11.2.6 is now available and addresses the following:

CoreText
Available for: Apple TV 4K and Apple TV (4th generation)
Impact: Processing a maliciously crafted string may lead to heap
corruption
Description: A memory corruption issue was addressed through improved
input validation.
CVE-2018-4124: an anonymous researcher

Installation note:

Apple TV will periodically check for software updates....
Categories:

APPLE-SA-2018-02-19-4 watchOS 4.2.3

February 19, 2018 - 11:22pm

Posted by Apple Product Security on Feb 19

APPLE-SA-2018-02-19-4 watchOS 4.2.3

watchOS 4.2.3 is now available and addresses the following:

CoreText
Available for: All Apple Watch models
Impact: Processing a maliciously crafted string may lead to heap
corruption
Description: A memory corruption issue was addressed through improved
input validation.
CVE-2018-4124: an anonymous researcher

Installation note:

Instructions on how to update your Apple Watch software are
available at...
Categories:

[SECURITY] [DSA 4119-1] libav security update

February 19, 2018 - 11:12pm

Posted by Moritz Muehlenhoff on Feb 19

-------------------------------------------------------------------------
Debian Security Advisory DSA-4119-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
February 19, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libav
CVE ID : CVE-2017-16803

Several security...
Categories:

Kentico CMS version 9 through 11 - Cross-Site Scripting (Reflect)

February 19, 2018 - 3:50am

Posted by displaymyname on Feb 19

# Exploit Title: Kentico CMS version 9 through 11 - Cross-Site Scripting (Reflect)
# Date: 18-02-2018
# Software Link: https://www.kentico.com
# Exploit Author: Keerati T.
# CVE: CVE-2018-7205
# Category: webapps

1. Description

Kentico is the only fully integrated ASP.NET CMS, E-commerce, and Online Marketing platform that allows you to create
cutting-edge websites and optimize your digital customers’ experiences fully across multiple...
Categories:

[SECURITY] [DSA 4117-1] gcc-4.9 security update

February 19, 2018 - 3:44am

Posted by Moritz Muehlenhoff on Feb 19

-------------------------------------------------------------------------
Debian Security Advisory DSA-4117-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
February 17, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : gcc-4.9
CVE ID : not applicable

This update...
Categories:

Kentico CMS version 9 through 11 - Arbitrary Code Execution

February 19, 2018 - 3:42am

Posted by displaymyname on Feb 19

# Exploit Title: Kentico CMS version 9 through 11 - Arbitrary Code Execution
# Date: 17-02-2018
# Software Link: https://www.kentico.com
# Exploit Author: Keerati T.
# CVE: CVE-2018-7046
# Category: webapps

1. Description

Kentico is the only fully integrated ASP.NET CMS, E-commerce, and Online Marketing platform that allows you to create
cutting-edge websites and optimize your digital customers’ experiences fully across multiple channels....
Categories: