Feed aggregator

Bugtraq: Re: CVE-2014-8731 - RCE in phpMemcachedAdmin <=1.2.2

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Re: CVE-2014-8731 - RCE in phpMemcachedAdmin <=1.2.2
Categories:

Bugtraq: Prey Anti-Theft for Android missing SSL certificate validation [STIC-2014-0731]

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Prey Anti-Theft for Android missing SSL certificate validation [STIC-2014-0731]
Categories:

Bugtraq: [SECURITY] [DSA 3050-3] iceweasel security update

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
[SECURITY] [DSA 3050-3] iceweasel security update
Categories:

Vuln: Oracle MySQL Server CVE-2014-6559 Remote Security Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Oracle MySQL Server CVE-2014-6559 Remote Security Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2014-6520 Remote Security Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Oracle MySQL Server CVE-2014-6520 Remote Security Vulnerability
Categories:

Vuln: Moodle CVE-2014-7833 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Moodle CVE-2014-7833 Information Disclosure Vulnerability
Categories:

Vuln: cURL/libcURL 'curl_easy_unescape()' Heap Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
cURL/libcURL 'curl_easy_unescape()' Heap Memory Corruption Vulnerability
Categories:

Vuln: cURL/libcURL NTLM connection Remote Security Bypass Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
cURL/libcURL NTLM connection Remote Security Bypass Vulnerability
Categories:

Vuln: KDE Workspace Arbitrary Command Execution Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
KDE Workspace Arbitrary Command Execution Vulnerability
Categories:

Vuln: Quassel 'cipher.cpp' Out-of-Bounds Read Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Quassel 'cipher.cpp' Out-of-Bounds Read Vulnerability
Categories:

Vuln: libgcrypt Elgamal Encryption Subkeys Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
libgcrypt Elgamal Encryption Subkeys Information Disclosure Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-3153 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel CVE-2014-3153 Local Privilege Escalation Vulnerability
Categories:

Vuln: HP System Management Homepage CVE-2014-2641 Unspecified Cross Site Request Forgery Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
HP System Management Homepage CVE-2014-2641 Unspecified Cross Site Request Forgery Vulnerability
Categories:

Vuln: Linux Kernel 'ceph/auth_x.c' Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel 'ceph/auth_x.c' Buffer Overflow Vulnerability
Categories:

Vuln: Linux Kernel LZO Implementation 'lzo1x_decompress_safe.c' Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
Linux Kernel LZO Implementation 'lzo1x_decompress_safe.c' Memory Corruption Vulnerability
Categories:

Vuln: PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7187 Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7187 Local Memory Corruption Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7169 Incomplete Fix Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7169 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Vuln: GNU Bash CVE-2014-7186 Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 17, 2014 - 12:00am
GNU Bash CVE-2014-7186 Local Memory Corruption Vulnerability
Categories:

CVE-2014-8682 Multiple Unauthenticated SQL Injections in Gogs

BugTraq Latest Security Advisories - November 16, 2014 - 11:56pm

Posted by Timo Schmid on Nov 17

Unauthenticated SQL Injection in Gogs repository search
=======================================================
Researcher: Timo Schmid <tschmid () ernw de>

Description
===========
Gogs(Go Git Service) is a painless self-hosted Git Service written in
Go. (taken
from [1])

It is very similiar to the github hosting plattform. Multiple users can
create
multiple repositories and share code with others with the git version
control
system....
Categories: