Feed aggregator

Bugtraq: [SECURITY] [DSA 3940-1] iortcw security update

Security Focus Latest Security Advisories - August 16, 2017 - 5:00am
[SECURITY] [DSA 3940-1] iortcw security update
Categories:

next-20170816: linux-next

Linux Kernel Updates - August 16, 2017 - 12:26am
Version:next-20170816 (linux-next) Released:2017-08-16

Vuln: Cisco AnyConnect Secure Mobility Client Software CVE-2017-6788 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Cisco AnyConnect Secure Mobility Client Software CVE-2017-6788 Cross Site Scripting Vulnerability
Categories:

Vuln: Cisco Virtual Network Function Element Manager CVE-2017-6710 Remote Command Execution Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Cisco Virtual Network Function Element Manager CVE-2017-6710 Remote Command Execution Vulnerability
Categories:

Vuln: Advantech WebOP Designer Heap Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Advantech WebOP Designer Heap Buffer Overflow Vulnerability
Categories:

Vuln: Linux kernel CVE-2017-8831 Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Linux kernel CVE-2017-8831 Local Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
Categories:

Vuln: Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability
Categories:

Vuln: Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability

Security Focus Latest Security Advisories - August 15, 2017 - 11:00pm
Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability
Categories:

next-20170815: linux-next

Linux Kernel Updates - August 15, 2017 - 2:32am
Version:next-20170815 (linux-next) Released:2017-08-15

[SECURITY] [DSA 3943-1] gajim security update

BugTraq Latest Security Advisories - August 15, 2017 - 1:07am

Posted by Salvatore Bonaccorso on Aug 14

-------------------------------------------------------------------------
Debian Security Advisory DSA-3943-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
August 14, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : gajim
CVE ID : CVE-2016-10376
Debian Bug :...
Categories:

Bugtraq: [SECURITY] [DSA 3937-1] zabbix security update

Security Focus Latest Security Advisories - August 15, 2017 - 12:00am
[SECURITY] [DSA 3937-1] zabbix security update
Categories:

Vuln: Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 14, 2017 - 11:00pm
Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability
Categories:

Vuln: Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 14, 2017 - 11:00pm
Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability
Categories:

Vuln: Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 14, 2017 - 11:00pm
Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability

Security Focus Latest Security Advisories - August 14, 2017 - 11:00pm
Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability
Categories:

CVE-2017-9802: Apache Sling XSS vulnerability

BugTraq Latest Security Advisories - August 14, 2017 - 7:25am

Posted by Robert Munteanu on Aug 14

CVE-2017-9802: Apache Sling XSS vulnerability

Severity: Important

Vendor: The Apache Software Foundation

Versions Affected:
Apache Sling Servlets Post 2.3.20

Description:
The Javascript method Sling.evalString() uses the javascript `eval`
function to parse input strings, which allows for XSS attacks by
passing specially crafted input strings.

Mitigation:
Users should upgrade to version 2.3.22 or later of the Sling Servlets
Post bundle....
Categories:

[CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability

BugTraq Latest Security Advisories - August 14, 2017 - 7:11am

Posted by x62x65x6e on Aug 14

# Vulnerability type: Multiple Stored Cross Site Scripting
# Vendor: Quali
# Product: CloudShell
# Affected version: v7.1.0.6508 (Patch 6)
# Patched version: v8 and up
# Credit: Benjamin Lee
# CVE ID: CVE-2017-9767

==========================================================

# Overview
Quali CloudShell (v7.1.0.6508 Patch 6) is vulnerable to multiple stored XSS vulnerabilities on its platform this can be
exploited to execute arbitrary HTML and...
Categories:

Bugtraq: [slackware-security] mercurial (SSA:2017-223-03)

Security Focus Latest Security Advisories - August 14, 2017 - 6:00am
[slackware-security] mercurial (SSA:2017-223-03)
Categories:

Bugtraq: [SECURITY] [DSA 3936-1] postgresql-9.6 security update

Security Focus Latest Security Advisories - August 14, 2017 - 6:00am
[SECURITY] [DSA 3936-1] postgresql-9.6 security update
Categories: