Feed aggregator

Vuln: cURL/libcURL NTLM connection Remote Security Bypass Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
cURL/libcURL NTLM connection Remote Security Bypass Vulnerability
Categories:

Vuln: KDE Workspace Arbitrary Command Execution Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
KDE Workspace Arbitrary Command Execution Vulnerability
Categories:

Vuln: Quassel 'cipher.cpp' Out-of-Bounds Read Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Quassel 'cipher.cpp' Out-of-Bounds Read Vulnerability
Categories:

Vuln: libgcrypt Elgamal Encryption Subkeys Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
libgcrypt Elgamal Encryption Subkeys Information Disclosure Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-3153 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel CVE-2014-3153 Local Privilege Escalation Vulnerability
Categories:

Vuln: HP System Management Homepage CVE-2014-2641 Unspecified Cross Site Request Forgery Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
HP System Management Homepage CVE-2014-2641 Unspecified Cross Site Request Forgery Vulnerability
Categories:

Vuln: Linux Kernel 'ceph/auth_x.c' Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel 'ceph/auth_x.c' Buffer Overflow Vulnerability
Categories:

Vuln: Linux Kernel LZO Implementation 'lzo1x_decompress_safe.c' Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel LZO Implementation 'lzo1x_decompress_safe.c' Memory Corruption Vulnerability
Categories:

Vuln: PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7187 Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7187 Local Memory Corruption Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7169 Incomplete Fix Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7169 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7186 Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7186 Local Memory Corruption Vulnerability
Categories:

CVE-2014-8682 Multiple Unauthenticated SQL Injections in Gogs

BugTraq Latest Security Advisories - November 16, 2014 - 11:56pm

Posted by Timo Schmid on Nov 17

Unauthenticated SQL Injection in Gogs repository search
=======================================================
Researcher: Timo Schmid <tschmid () ernw de>

Description
===========
Gogs(Go Git Service) is a painless self-hosted Git Service written in
Go. (taken
from [1])

It is very similiar to the github hosting plattform. Multiple users can
create
multiple repositories and share code with others with the git version
control
system....
Categories:

3.18-rc5: mainline

Linux Kernel Updates - November 16, 2014 - 7:36pm
Version:3.18-rc5 (mainline) Released:2014-11-17 Source:linux-3.18-rc5.tar.xz PGP Signature:linux-3.18-rc5.tar.sign Patch:patch-3.18-rc5.xz