Mail Index
- [SECURITY] [DSA 3923-1] freerdp security update
- [CVE-2017-11494] SOL.Connect ISET-mpp meter 1.2.4.2 Authentication Bypass SQL Injection Vulnerability
- [security bulletin] HPESBGN03766 rev.1 - HPE Project and Portfolio Management (PPM), Remote Cross-Site Scripting
- [security bulletin] HPESBHF03763 rev.1 - HPE Comware 7, IMC, VCX products using OpenSSL, Remote Denial of Service (DoS)
- CVE-2017-1500 - Relected XSS in IBM WorkLight OAuth Server Web Api
- From: gabriele . gristina
- [slackware-security] gnupg (SSA:2017-213-01)
- From: Slackware Security Team
- [SECURITY] [DSA 3924-1] varnish security update
- From: Salvatore Bonaccorso
- [security bulletin] HPESB3P03767 rev.1 - HPE Proliant ML10 Gen9 servers using Intel Xeon E3-1200M v5 and 6th Generation Intel Core Processors, Unauthorized Write to Filesystem
- SEC Consult SA-20170804-0 :: phpBB Server Side Request Forgery (SSRF) vulnerability
- From: SEC Consult Vulnerability Lab
- SEC Consult SA-20170804-1 :: Ubiquiti Networks UniFi Cloud Key authenticated command injection
- From: SEC Consult Vulnerability Lab
- [SECURITY] [DSA 3925-1] qemu security update
- [SECURITY] [DSA 3926-1] chromium-browser security update
- Re: [oss-security] [CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename()
- [SECURITY] [DSA 3927-1] linux security update
- From: Salvatore Bonaccorso
- DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities
- [slackware-security] mozilla-firefox (SSA:2017-221-02)
- From: Slackware Security Team
- [slackware-security] curl (SSA:2017-221-01)
- From: Slackware Security Team
- [SECURITY] [DSA 3929-1] libsoup2.4 security update
- From: Salvatore Bonaccorso
- [SECURITY][ANNOUNCE] Apache Subversion 1.9.7 released
- [SECURITY] [DSA 3933-1] pjproject security update
- [SECURITY] [DSA 3932-1] subversion security update
- [ANN] Apache Struts: S2-049 Security Bulletin update
- [security bulletin] HPESB3P03762 rev.1 - HPE C Switch Software using Cisco Prime Data Center Network Manager (DCNM), Remote Code Execution
- [SECURITY] [DSA 3935-1] postgresql-9.4 security update
- [SECURITY] [DSA 3936-1] postgresql-9.6 security update
- [SECURITY] [DSA 3937-1] zabbix security update
- [slackware-security] mercurial (SSA:2017-223-03)
- From: Slackware Security Team
- [SECURITY] [DSA 3940-1] iortcw security update
- [CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability
- CVE-2017-9802: Apache Sling XSS vulnerability
- [SECURITY] [DSA 3943-1] gajim security update
- From: Salvatore Bonaccorso
- FreeBSD <= 10.3 jail SHM hole
- Microsoft Resnet - DNS Configuration Web Vulnerability
- [SECURITY] [DSA 3928-2] firefox-esr security update
- [SECURITY] [DSA 3946-1] libmspack security update
- [SECURITY] [DSA 3948-1] ioquake3 security update
- [SECURITY] [DSA 3950-1] libraw security update
- [RT-SA-2015-011] WebClientPrint Processor 2.0: No Validation of TLS Certificates
- From: RedTeam Pentesting GmbH
- [RT-SA-2015-010] WebClientPrint Processor 2.0: Unauthorised Proxy Modification
- From: RedTeam Pentesting GmbH
- [RT-SA-2015-009] WebClientPrint Processor 2.0: Remote Code Execution via Updates
- From: RedTeam Pentesting GmbH
- [RT-SA-2015-008] WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs
- From: RedTeam Pentesting GmbH
- [SECURITY] [DSA 3951-1] smb4k security update
- [SECURITY] [DSA 3953-1] aodh security update
- [security bulletin] HPESBHF03769 rev.1 - HPE Integrated Lights-out 4 (iLO 4) Multiple Remote Vulnerabilities
- Trend Micro Hosted Email Security (HES) - Email Interception and Direct Object Reference
- [SECURITY] [DSA 3956-1] connman security update
- [security bulletin] HPESBHF03770 rev.1 - HPE Comware 7 MSR Routers using PHP, Go, Apache Http Server, and Tomcat, Remote Arbitrary Code Execution
- From: HPE Product Security Response Team
- [SECURITY] [DSA 3957-1] ffmpeg security update
Mail converted by MHonArc