Feed aggregator

Vuln: Adobe Acrobat and Reader CVE-2018-4990 Arbitrary Code Execution Vulnerability

Adobe Acrobat and Reader CVE-2018-4990 Arbitrary Code Execution Vulnerability
Categories:

4.16.11: stable

Linux Kernel Updates - May 22, 2018 - 11:56am
Version:4.16.11 (stable) Released:2018-05-22 Source:linux-4.16.11.tar.xz PGP Signature:linux-4.16.11.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.16.11

4.14.43: longterm

Linux Kernel Updates - May 22, 2018 - 11:54am
Version:4.14.43 (longterm) Released:2018-05-22 Source:linux-4.14.43.tar.xz PGP Signature:linux-4.14.43.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.14.43

4.9.102: longterm

Linux Kernel Updates - May 22, 2018 - 9:58am
Version:4.9.102 (longterm) Released:2018-05-22 Source:linux-4.9.102.tar.xz PGP Signature:linux-4.9.102.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.9.102

[SECURITY] [DSA 4206-1] gitlab security update

BugTraq Latest Security Advisories - May 22, 2018 - 1:35am

Posted by Moritz Muehlenhoff on May 21

-------------------------------------------------------------------------
Debian Security Advisory DSA-4206-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 21, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : gitlab
CVE ID : CVE-2017-0920 CVE-2018-8971...
Categories:

Bugtraq: [SYSS-2018-007] ILIAS e-Learning - Reflected Cross-Site-Scripting

[SYSS-2018-007] ILIAS e-Learning - Reflected Cross-Site-Scripting
Categories:

Qualys Security Advisory - Procps-ng Audit Report

BugTraq Latest Security Advisories - May 21, 2018 - 8:30am

Posted by Qualys Security Advisory on May 21

Qualys Security Advisory

Procps-ng Audit Report

========================================================================
Contents
========================================================================

Summary
1. FUSE-backed /proc/PID/cmdline
2. Unprivileged process hiding
3. Local Privilege Escalation in top (Low Impact)
4. Denial of Service in ps
5. Local Privilege Escalation in libprocps (High Impact)
5.1. Vulnerability
5.2....
Categories:

Bugtraq: MagniComp SysInfo Information Exposure [CVE-2018-7268]

MagniComp SysInfo Information Exposure [CVE-2018-7268]
Categories:

[SECURITY] [DSA 4205-1] Advance notification for upcoming end-of-life for

BugTraq Latest Security Advisories - May 21, 2018 - 5:11am

Posted by Moritz Muehlenhoff on May 21

-------------------------------------------------------------------------
Debian Security Advisory DSA-4205-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 18, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

This is an advance notice that regular security support for Debian
GNU/Linux...
Categories:

[SECURITY] [DSA 4204-1] imagemagick security update

BugTraq Latest Security Advisories - May 21, 2018 - 4:38am

Posted by Sebastien Delafond on May 21

-------------------------------------------------------------------------
Debian Security Advisory DSA-4204-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
May 18, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : imagemagick
CVE ID : CVE-2017-10995 CVE-2017-11533...
Categories:

[SYSS-2018-007] ILIAS e-Learning - Reflected Cross-Site-Scripting

BugTraq Latest Security Advisories - May 21, 2018 - 4:34am

Posted by Moritz Bechler on May 21

Advisory ID: SYSS-2018-007
Product: ILIAS
Affected Version(s): 5.3.2, 5.2.14, 5.1.25
Tested Version(s): 5.3.2, 5.2.12
Vulnerability Type: Reflected Cross-Site-Scripting
Risk Level: MEDIUM
Solution Status: Fixed
Manufacturer Notification: 2018-03-29
Solution Date: 2018-04-25
Public Disclosure: 2018-05-18
CVE Reference: CVE-2018-10428
Author of Advisory: Moritz Bechler, SySS GmbH...
Categories:

Bugtraq: [SECURITY] [DSA 4203-1] vlc security update

[SECURITY] [DSA 4203-1] vlc security update
Categories:

Bugtraq: [slackware-security] php (SSA:2018-136-02)

[slackware-security] php (SSA:2018-136-02)
Categories:

Bugtraq: [slackware-security] curl (SSA:2018-136-01)

[slackware-security] curl (SSA:2018-136-01)
Categories:

Vuln: Dell EMC RecoverPoint and RecoverPoint for Virtual Machines Multiple Security Vulnerabilities

Dell EMC RecoverPoint and RecoverPoint for Virtual Machines Multiple Security Vulnerabilities
Categories:

Vuln: Apache Solr CVE-2018-8010 XML External Entity Multiple Information Disclosure Vulnerabilities

Apache Solr CVE-2018-8010 XML External Entity Multiple Information Disclosure Vulnerabilities
Categories:

Vuln: VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities
Categories:

Vuln: VMware Fusion CVE-2018-6962 Local Security Bypass Vulnerability

VMware Fusion CVE-2018-6962 Local Security Bypass Vulnerability
Categories:

4.17-rc6: mainline

Linux Kernel Updates - May 20, 2018 - 5:31pm
Version:4.17-rc6 (mainline) Released:2018-05-20 Source:linux-4.17-rc6.tar.gz Patch:full (incremental)

MagniComp SysInfo Information Exposure [CVE-2018-7268]

BugTraq Latest Security Advisories - May 18, 2018 - 2:18am

Posted by Harry Sintonen on May 18

MagniComp SysInfo Information Exposure [CVE-2018-7268]
======================================================
The latest version of this advisory is available at:
https://sintonen.fi/advisories/magnicomp-sysinfo-information-exposure.txt

Overview
--------

MagniComp SysInfo contains a information exposure vulnerability through debug
functionality.

Description
-----------

Due to a combination of setuid binary and verbose debugging, MagniComp...
Categories: