Feed aggregator

Bugtraq: [slackware-security] mercurial (SSA:2016-123-01)

[slackware-security] mercurial (SSA:2016-123-01)
Categories:

Bugtraq: ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities

ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities
Categories:

Bugtraq: [SECURITY] [DSA 3565-1] botan1.10 security update

[SECURITY] [DSA 3565-1] botan1.10 security update
Categories:

Bugtraq: [SECURITY] [DSA 3564-1] chromium-browser security update

[SECURITY] [DSA 3564-1] chromium-browser security update
Categories:

CVE-2016-4338: Zabbix Agent 3.0.1 mysql.size shell command injection

BugTraq Latest Security Advisories - May 3, 2016 - 6:34am

Posted by Timo Juhani Lindfors on May 03

CVE-2016-4338: Zabbix Agent 3.0.1 mysql.size shell command injection
--------------------------------------------------------------------

Affected products
=================

At least Zabbix Agent 1:3.0.1-1+wheezy from
http://repo.zabbix.com/zabbix/3.0/debian is vulnerable. Other versions
were not tested.

Background
==========

"Zabbix agent is deployed on a monitoring target to actively monitor
local resources and applications (hard...
Categories:

next-20160503: linux-next

Linux Kernel Updates - May 3, 2016 - 4:35am
Version:next-20160503 (linux-next) Released:2016-05-03

[slackware-security] mercurial (SSA:2016-123-01)

BugTraq Latest Security Advisories - May 2, 2016 - 11:52pm

Posted by Slackware Security Team on May 02

[slackware-security] mercurial (SSA:2016-123-01)

New mercurial packages are available for Slackware 13.0, 13.1, 13.37, 14.0,
14.1, and -current to fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mercurial-3.8.1-i486-1_slack14.1.txz: Upgraded.
This update fixes possible arbitrary code execution when converting Git
repos. Mercurial prior to 3.8 allowed arbitrary...
Categories:

Bugtraq: [SECURITY] [DSA 3563-1] poppler security update

[SECURITY] [DSA 3563-1] poppler security update
Categories:

ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities

BugTraq Latest Security Advisories - May 2, 2016 - 1:56pm

Posted by Security Alert on May 02

ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities

EMC Identifier: ESA-2016-041

CVE Identifier: CVE-2016-0892, CVE-2016-0893, CVE-2016-0894, CVE-2016-0895

Severity Rating: CVSSv3 Base Score : Please view details below for individual CVE scores

Affected Products:

· RSA Data Loss Prevention 9.6.SP2 P4
· RSA Data Loss Prevention 9.6 SP2 P3
· RSA Data Loss Prevention 9.6 SP2 P2
· RSA Data Loss...
Categories:

Bugtraq: [SECURITY] [DSA 3562-1] tardiff security update

[SECURITY] [DSA 3562-1] tardiff security update
Categories:

Bugtraq: Exploit-DB Captcha Bypass

Exploit-DB Captcha Bypass
Categories:

Bugtraq: [slackware-security] subversion (SSA:2016-121-01)

[slackware-security] subversion (SSA:2016-121-01)
Categories:

[SECURITY] [DSA 3565-1] botan1.10 security update

BugTraq Latest Security Advisories - May 2, 2016 - 10:42am

Posted by Sebastien Delafond on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3565-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
May 02, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : botan1.10
CVE ID : CVE-2015-5726 CVE-2015-5727...
Categories:

[SECURITY] [DSA 3564-1] chromium-browser security update

BugTraq Latest Security Advisories - May 2, 2016 - 10:33am

Posted by Michael Gilbert on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3564-1 security () debian org
https://www.debian.org/security/ Michael Gilbert
May 02, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chromium-browser
CVE ID : CVE-2016-1660...
Categories:

[SECURITY] [DSA 3563-1] poppler security update

BugTraq Latest Security Advisories - May 2, 2016 - 7:19am

Posted by Moritz Muehlenhoff on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3563-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 01, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : poppler
CVE ID : CVE-2015-8868

It was discovered...
Categories:

Bugtraq: [slackware-security] php (SSA:2016-120-02)

[slackware-security] php (SSA:2016-120-02)
Categories:

Bugtraq: [slackware-security] ntp (SSA:2016-120-01)

[slackware-security] ntp (SSA:2016-120-01)
Categories:

Bugtraq: [security bulletin] HPSBGN03547 rev.3 - HPE Helion Eucalyptus Node Controller and other Helion Eucalyptus Components using glibc, Remote Arbitrary Code Execution

[security bulletin] HPSBGN03547 rev.3 - HPE Helion Eucalyptus Node Controller and other Helion Eucalyptus Components using glibc, Remote Arbitrary Code Execution
Categories:

[SECURITY] [DSA 3562-1] tardiff security update

BugTraq Latest Security Advisories - May 2, 2016 - 5:34am

Posted by Salvatore Bonaccorso on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3562-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
May 01, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tardiff
CVE ID : CVE-2015-0857 CVE-2015-0858...
Categories:

Exploit-DB Captcha Bypass

BugTraq Latest Security Advisories - May 2, 2016 - 5:25am

Posted by Rahul Pratap Singh on May 02

## FULL DISCLOSURE

#Exploit Author : Rahul Pratap Singh
#Home page Link : https://www.exploit-db.com/
#Website : https://0x62626262.wordpress.com
#Linkedin : https://in.linkedin.com/in/rahulpratapsingh94
#Date : 1/5/2016

----------------------------------------
Description:
----------------------------------------
Exploit-DB implemented a weak captcha which could be cracked easily.

----------------------------------------
POC:...
Categories: