Feed aggregator

Vuln: IBM DB2 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
IBM DB2 Multiple Security Vulnerabilities
Categories:

Vuln: IBM General Parallel File System CVE-2015-0198 Unspecified Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
IBM General Parallel File System CVE-2015-0198 Unspecified Remote Code Execution Vulnerability
Categories:

Vuln: IBM General Parallel File System CVE-2015-0199 Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
IBM General Parallel File System CVE-2015-0199 Local Denial of Service Vulnerability
Categories:

Vuln: IBM General Parallel File System CVE-2015-0197 Unspecified Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
IBM General Parallel File System CVE-2015-0197 Unspecified Local Privilege Escalation Vulnerability
Categories:

Vuln: SAP Data Services Management Console CVE-2018-2466 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
SAP Data Services Management Console CVE-2018-2466 Cross Site Scripting Vulnerability
Categories:

Vuln: SAP Adaptive Server Enterprise CVE-2018-2469 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 8, 2018 - 11:00pm
SAP Adaptive Server Enterprise CVE-2018-2469 Information Disclosure Vulnerability
Categories:

[UPDATE][CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

BugTraq Latest Security Advisories - October 7, 2018 - 9:57pm

Posted by Andreas Lehmkuehler on Oct 07

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache PDFBox <= 1.8.15
Apache PDFBox <= 2.0.11
Earlier, unsupported Apache PDFBox versions may be affected as well

Description:
A carefully crafted PDF file can trigger an extremely long
running computation when parsing the page tree.

Mitigation:
Upgrade to Apache PDFBox 1.8.16 respectively 2.0.12...
Categories:

[SECURITY] [DSA 4311-1] git security update

BugTraq Latest Security Advisories - October 7, 2018 - 9:55pm

Posted by Salvatore Bonaccorso on Oct 07

-------------------------------------------------------------------------
Debian Security Advisory DSA-4311-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 05, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : git
CVE ID : CVE-2018-17456

joernchen of Phenoelit...
Categories:

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

BugTraq Latest Security Advisories - October 7, 2018 - 9:52pm

Posted by Andreas Lehmkuehler on Oct 07

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache PDFBox <= 1.8.15
Apache PDFBox <= 2.0.11
Earlier, unsupported Apache PDFBox versions may be affected as well

Description:
A carefully crafted PDF file can trigger an extremely long
running computation when parsing the page tree.

Mitigation:
Upgrade to Apache PDFBox 1.8.16 respectively 2.0.12...
Categories:

Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login

BugTraq Latest Security Advisories - October 3, 2018 - 10:43pm

Posted by Socket_0x03 on Oct 03

=====================================================================================
Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login
=====================================================================================
Categories:

[SECURITY] [DSA 4310-1] firefox-esr security update

BugTraq Latest Security Advisories - October 3, 2018 - 10:40pm

Posted by Salvatore Bonaccorso on Oct 03

-------------------------------------------------------------------------
Debian Security Advisory DSA-4310-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 03, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2018-12386 CVE-2018-12387...
Categories:

[slackware-security] mozilla-firefox (SSA:2018-276-01)

BugTraq Latest Security Advisories - October 3, 2018 - 6:00am

Posted by Slackware Security Team on Oct 03

[slackware-security] mozilla-firefox (SSA:2018-276-01)

New mozilla-firefox packages are available for Slackware 14.2 and -current to
fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/mozilla-firefox-60.2.2esr-i686-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...
Categories:

[SYSS-2018-024] Privilege Escalation in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17872)

BugTraq Latest Security Advisories - October 2, 2018 - 9:21pm

Posted by Micha Borrmann on Oct 02

Advisory ID: SYSS-2018-024
Product: Collaboration Compliance and Quality Management Platform
Manufacturer: Verint Verba
Affected Version(s): <= 9.1.1.5482
Tested Version(s): 9.1.1.5482
Vulnerability Type: Improper Access Control (CWE-284)
Risk Level: Medium
Solution Status: Fixed
Manufacturer Notification: 2018-08-29
Solution Date: 2018-08-31...
Categories:

[SYSS-2018-023] Password leakage in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17871)

BugTraq Latest Security Advisories - October 2, 2018 - 9:17pm

Posted by Micha Borrmann on Oct 02

Advisory ID: SYSS-2018-023
Product: Collaboration Compliance and Quality Management Platform
Manufacturer: Verint Verba
Affected Version(s): <= 9.1.1.5482
Tested Version(s): 9.1.1.5482
Vulnerability Type: Improper Access Control (CWE-284)
Risk Level: Medium
Solution Status: Fixed
Manufacturer Notification: 2018-08-29
Solution Date: 2018-08-31...
Categories: