Feed aggregator
Vuln: Linux kernel CVE-2017-8831 Local Denial of Service Vulnerability
Linux kernel CVE-2017-8831 Local Denial of Service Vulnerability
Vuln: Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
Vuln: Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability
Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability
next-20170815: linux-next
Version:next-20170815 (linux-next)
Released:2017-08-15
[SECURITY] [DSA 3943-1] gajim security update
Posted by Salvatore Bonaccorso on Aug 14
-------------------------------------------------------------------------Debian Security Advisory DSA-3943-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
August 14, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------
Package : gajim
CVE ID : CVE-2016-10376
Debian Bug :...
Bugtraq: [SECURITY] [DSA 3937-1] zabbix security update
[SECURITY] [DSA 3937-1] zabbix security update
Vuln: Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability
Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability
Vuln: Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability
Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability
Vuln: Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability
Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability
Vuln: Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability
Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability
CVE-2017-9802: Apache Sling XSS vulnerability
Posted by Robert Munteanu on Aug 14
CVE-2017-9802: Apache Sling XSS vulnerabilitySeverity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Sling Servlets Post 2.3.20
Description:
The Javascript method Sling.evalString() uses the javascript `eval`
function to parse input strings, which allows for XSS attacks by
passing specially crafted input strings.
Mitigation:
Users should upgrade to version 2.3.22 or later of the Sling Servlets
Post bundle....
[CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability
Posted by x62x65x6e on Aug 14
# Vulnerability type: Multiple Stored Cross Site Scripting# Vendor: Quali
# Product: CloudShell
# Affected version: v7.1.0.6508 (Patch 6)
# Patched version: v8 and up
# Credit: Benjamin Lee
# CVE ID: CVE-2017-9767
==========================================================
# Overview
Quali CloudShell (v7.1.0.6508 Patch 6) is vulnerable to multiple stored XSS vulnerabilities on its platform this can be
exploited to execute arbitrary HTML and...
Bugtraq: [slackware-security] mercurial (SSA:2017-223-03)
[slackware-security] mercurial (SSA:2017-223-03)
Bugtraq: [SECURITY] [DSA 3936-1] postgresql-9.6 security update
[SECURITY] [DSA 3936-1] postgresql-9.6 security update
[SECURITY] [DSA 3940-1] iortcw security update
Posted by Moritz Muehlenhoff on Aug 14
-------------------------------------------------------------------------Debian Security Advisory DSA-3940-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
August 13, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------
Package : iortcw
CVE ID : CVE-2017-11721
A read buffer...
[slackware-security] mercurial (SSA:2017-223-03)
Posted by Slackware Security Team on Aug 14
[slackware-security] mercurial (SSA:2017-223-03)New mercurial packages are available for Slackware 14.0, 14.1, 14.2,
and -current to fix security issues.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/mercurial-4.3.1-i586-1_slack14.2.txz: Upgraded.
Fixes security issues:
Mercurial's symlink auditing was incomplete prior to 4.3, and could
be abused to write to files outside the...
[SECURITY] [DSA 3937-1] zabbix security update
Posted by Moritz Muehlenhoff on Aug 14
-------------------------------------------------------------------------Debian Security Advisory DSA-3937-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
August 12, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------
Package : zabbix
CVE ID : CVE-2017-2824 CVE-2017-2825
Lilith...
4.13-rc5: mainline
Version:4.13-rc5 (mainline)
Released:2017-08-13
Source:linux-4.13-rc5.tar.gz
Patch:full (incremental)
- « first
- ‹ previous
- 1
- 2
- 3
