Feed aggregator

CA20180802-01: Security Notice for CA API Developer Portal

BugTraq Latest Security Advisories - August 8, 2018 - 8:55am

Posted by Kotas, Kevin J on Aug 08

CA20180802-01: Security Notice for CA API Developer Portal

Issued: August 2, 2018
Last Updated: August 2, 2018

CA Technologies Support is alerting customers to a potential risk
with CA API Developer Portal. A medium risk vulnerability exists that
can allow a remote attacker to conduct reflected cross-site scripting
attacks. CA published solutions to address the vulnerability.

The vulnerability, CVE-2018-6590, occurs due to insufficient...
Categories:

[CVE-2018-14429] man-cgi < 1.16 Local File Include

BugTraq Latest Security Advisories - August 8, 2018 - 8:53am

Posted by eL_Bart0 on Aug 08

man-cgi before 1.16 allows Local File Inclusion via absolute path traversal. If an Attacker provides a Filename as a
Parameter (e.g. https://example.org/cgi-bin/man-cgi?/etc/passwd) the Script will read and return the local file. This
is happening because of the way the Script calls the "man" command. Tests have shown that "man /some/random/file"
(depending on it's configuration) will first try to locate a manual...
Categories:

WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006

BugTraq Latest Security Advisories - August 8, 2018 - 8:48am

Posted by Michael Catanzaro on Aug 08

------------------------------------------------------------------------
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006
------------------------------------------------------------------------

Date reported : August 07, 2018
Advisory ID : WSA-2018-0006
WebKitGTK+ Advisory URL :
https://webkitgtk.org/security/WSA-2018-0006.html
WPE WebKit Advisory URL :...
Categories:

New VMSA-2018-0019 - Horizon 6, 7, and Horizon Client for Windows updates address an out-of-bounds read vulnerability

BugTraq Latest Security Advisories - August 8, 2018 - 8:39am

Posted by VMware Security Response Center on Aug 08

----------------------------------------------------------------------
VMware Security Advisory

Advisory ID: VMSA-2018-0019
Severity: Important
Synopsis: Horizon 6, 7, and Horizon Client for Windows updates
address an out-of-bounds read vulnerability
Issue date: 2018-08-07
Updated on: 2018-08-07 (Initial Advisory)
CVE number: CVE-2018-6970

1. Summary

Horizon 6, 7, and Horizon Client for Windows updates address an...
Categories:

Bugtraq: FreeBSD Security Advisory FreeBSD-SA-18:08.tcp

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
FreeBSD Security Advisory FreeBSD-SA-18:08.tcp
Categories:

Bugtraq: [SECURITY] [DSA 4266-1] linux security update

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
[SECURITY] [DSA 4266-1] linux security update
Categories:

Bugtraq: RE: [FD] Executable installers are vulnerable^WEVIL (case 56):arbitrary code execution WITH escalation of privilege via rufus*.exe

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
RE: [FD] Executable installers are vulnerable^WEVIL (case 56):arbitrary code execution WITH escalation of privilege via rufus*.exe
Categories:

Bugtraq: [SECURITY] [DSA 4265-1] xml-security-c security update

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
[SECURITY] [DSA 4265-1] xml-security-c security update
Categories:

next-20180808: linux-next

Linux Kernel Updates - August 8, 2018 - 2:49am
Version:next-20180808 (linux-next) Released:2018-08-08

Vuln: Apache CouchDB CVE-2018-11769 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 7, 2018 - 11:00pm
Apache CouchDB CVE-2018-11769 Remote Code Execution Vulnerability
Categories:

Vuln: Multiple HP Inkjet Printers Multiple Stack Buffer Overflow Vulnerabilities

Security Focus Latest Security Advisories - August 7, 2018 - 11:00pm
Multiple HP Inkjet Printers Multiple Stack Buffer Overflow Vulnerabilities
Categories: