Mail Index
- [security bulletin] HPESBHF03787 rev.1 - Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT, Deserialization of Untrusted Data, Remote Code Execution
- [slackware-security] wget (SSA:2017-300-02)
- From: Slackware Security Team
- [VulnWatch] Advisory 02/2002: PHP remote vulnerability
- [SECURITY] [DSA 4009-1] shadowsocks-libev security update
- [security bulletin] HPESBHF03785 rev.1 - HPE B-Series SAN Network Advisor Software, Multiple Remote Vulnerabilities
- From: HPE Product Security Response Team
- [SECURITY] [DSA 4012-1] libav security update
- APPLE-SA-2017-10-31-4 watchOS 4.1
- From: Apple Product Security
- APPLE-SA-2017-10-31-9 Additional information for APPLE-SA-2017-09-19-1 iOS 11
- From: Apple Product Security
- APPLE-SA-2017-10-31-7 iCloud for Windows 7.1
- From: Apple Product Security
- APPLE-SA-2017-10-31-10 Additional information for APPLE-SA-2017-09-20-2 watchOS 4
- From: Apple Product Security
- APPLE-SA-2017-10-31-3 tvOS 11.1
- From: Apple Product Security
- APPLE-SA-2017-10-31-12 Additional information for APPLE-SA-2017-09-25-9 macOS Server 5.4
- From: Apple Product Security
- APPLE-SA-2017-10-31-2 macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, Security Update 2017-004 El Capitan
- From: Apple Product Security
- APPLE-SA-2017-10-31-11 Additional information for APPLE-SA-2017-09-20-3 tvOS 11
- From: Apple Product Security
- APPLE-SA-2017-10-31-6 iTunes 12.7.1 for Windows
- From: Apple Product Security
- [SECURITY] [DSA 4015-1] openjdk-8 security update
- KL-001-2017-022 : Splunk Local Privilege Escalation
- From: KoreLogic Disclosures
- [SECURITY] [DSA 4016-1] irssi security update
- From: Salvatore Bonaccorso
- Webmin v1.850 Remote Code Execution (hyp3rlinx / apparitionsec)
- Call for papers - WorldCIST'18 - Naples, Italy - Extended deadline: November 22
- [SECURITY] [DSA 4019-1] imagemagick security update
- CVE-2017-9096 iText XML External Entity Vulnerability
- [SECURITY] [DSA 4020-1] chromium-browser security update
- [SECURITY] [DSA 4021-1] otrs2 security update
- [SECURITY] [DSA 4025-1] libpam4j security update
- AST-2017-011: Memory leak in pjsip session resource
- From: Asterisk Security Team
- AST-2017-010: Buffer overflow in CDR's set user
- From: Asterisk Security Team
- AST-2017-009: Buffer overflow in pjproject header parsing can cause crash in Asterisk
- From: Asterisk Security Team
- Datto Windows Agent 1.0.5.0 Remote Command Execution [CVE-2017-16673][CVE-2017-16674]
- [SECURITY] [DSA 4026-1] bchunk security update
- [SECURITY] [DSA 4027-1] postgresql-9.4 security update
- [SECURITY] [DSA 4028-1] postgresql-9.6 security update
- [SECURITY] [DSA 4029-1] postgresql-common security update
- [RT-SA-2016-008] XML External Entity Expansion in Ladon Webservice
- From: RedTeam Pentesting GmbH
- WebKitGTK+ Security Advisory WSA-2017-0009
- From: Carlos Alberto Lopez Perez
- Advisory X41-2017-006: Multiple Vulnerabilities in PSFTPd Windows FTP Server
- From: X41 D-Sec GmbH Advisories
- [SECURITY] [DSA 4006-2] mupdf security update
- Bypassable authentication in SingTel / Aztech DSL8900GR(AC) router
- [SECURITY] [DSA 4031-1] ruby2.3 security update
- From: Salvatore Bonaccorso
- [SECURITY] [DSA 4032-1] imagemagick security update
- Symantec Endpoint Protection (SEP) v12.1 Tamper-protection Bypass CVE-2017-6331 (hyp3rlinx)
- [CVE-2017-15288] A privilege escalation vulnerability in the Scala compilation daemon
- [SECURITY] [DSA 4033-1] konversation security update
- From: Salvatore Bonaccorso
- CA20171114-01: Security Notice for CA Identity Governance
- Call for papers - WorldCIST'18 - Naples, Italy - Extended deadline: November 26
- [SECURITY] [DSA 4035-1] firefox-esr security update
- [SECURITY] [DSA 4036-1] mediawiki security update
- FreeBSD Security Advisory FreeBSD-SA-17:08.ptrace
- From: FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-17:09.shm
- From: FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-17:10.kldstat
- From: FreeBSD Security Advisories
- [security bulletin] HPESBHF03705 rev.4 - HPE Integrated Lights-Out 4, 3, 2 and Moonshot Remote Console Administrator (iLO 4 and MRCA) Remote Disclosure of Information
- [SECURITY] [DSA 4039-1] opensaml2 security update
- From: Salvatore Bonaccorso
- [SECURITY] [DSA 4037-1] jackson-databind security update
- [security bulletin] HPESBMU03795 rev.1 - HPE Matrix Operating Environment, Multiple Remote Vulnerabilities
- [security bulletin] HPESBMU03794 rev.1 - HPE Insight Control, Multiple Remote Vulnerabilities
- [CVE-2017-15044] DocuWare FullText Search - Incorrect Access Control vulnerability
- FreeBSD Security Advisory FreeBSD-SA-17:10.kldstat [REVISED]
- From: FreeBSD Security Advisories
- CSNC-2017-030 MyTy Reflected Cross-Site Scripting (XSS)
- [SECURITY] [DSA 4044-1] swauth security update
- [security bulletin] HPESBHF03798 rev.1 - HPE Proliant Gen10 Servers, DL20 Gen9, ML30 Gen9 and Certain Apollo Servers Using Intel Server Platform Service (SPS) v4.0, Local Denial of Service and Execution of Arbitrary Code
- CSNC-2017-029 MyTy Blind SQL Injection
- [SECURITY] [DSA 4045-1] vlc security update
- Secunia Research: Oracle Outside In Denial of Service Vulnerability
- [SECURITY] [DSA 4046-1] libspring-ldap-java security update
- Edward Snowden free speech at JBFone - Data Security & Privacy
- [SECURITY] [DSA 4050-1] xen security update
- Advisory - Remote code execution in HipChat for Mac desktop client - CVE-2017-14586
- Advisory - Hipchat Data Center, Hipchat Server - CVE-2017-14585
Mail converted by MHonArc