Mail Index

• Thread Index

• Secunia Research: Linux Kernel "_sctp_make_chunk()" Denial of Service Vulnerability
  • From: Secunia Research
• [security bulletin] MFSBGN03794 rev.2 - Micro Focus Operations Agent Multiple vulnerabilities
  • From: cyber-psrt
• CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor
  • From: spinfoo
• [Newsletter/Marketing] [slackware-security] dhcp (SSA:2018-060-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4127-1] simplesamlphp security update
  • From: Thijs Kinkhorst
• [Newsletter/Marketing] [slackware-security] ntp (SSA:2018-060-02)
  • From: Slackware Security Team
• [security bulletin] MFSBGN03801 rev.1 - Micro Focus Operations Orchestration, Remote Denial of Service (DoS)
  • From: cyber-psrt
• [SECURITY] [DSA 4128-1] trafficserver security update
  • From: Sebastien Delafond
• [SECURITY] [DSA 4120-2] linux regression update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4131-1] xen security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4132-1] libvpx security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4130-1] dovecot security update
  • From: Salvatore Bonaccorso
• KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service
  • From: KoreLogic Disclosures
• [SECURITY] [DSA 4129-1] freexl security update
  • From: Moritz Muehlenhoff
• CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor
  • From: spinfoo
• [SECURITY] [DSA 4127-1] simplesamlphp security update
  • From: Thijs Kinkhorst
• DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery
  • From: Defense Code
• DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Downloadable Products
  • From: Defense Code
• DefenseCode Security Advisory: Magento Multiple Stored Cross-Site Scripting Vulnerabilities
  • From: Defense Code
• DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Product Attributes
  • From: Defense Code
• [SECURITY] [DSA 4129-1] freexl security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4131-1] xen security update
  • From: Moritz Muehlenhoff
• DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery
  • From: Defense Code
• KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service
  • From: KoreLogic Disclosures
• [SECURITY] [DSA 4128-1] trafficserver security update
  • From: Sebastien Delafond
• FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec
  • From: FreeBSD Security Advisories
• [SECURITY] [DSA 4133-1] isc-dhcp security update
  • From: Salvatore Bonaccorso
• FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec [REVISED]
  • From: FreeBSD Security Advisories
• [RT-SA-2018-001] Arbitrary Redirect in Tuleap
  • From: RedTeam Pentesting GmbH
• [SECURITY] [DSA 4134-1] util-linux security update
  • From: Salvatore Bonaccorso
• SEC Consult SA-20180312-0 :: Multiple Critical Vulnerabilities in SecurEnvoy SecurMail
  • From: SEC Consult Vulnerability Lab
• [SECURITY] [DSA 4135-1] samba security update
  • From: Salvatore Bonaccorso
• [RT-SA-2017-012] Shopware Cart Accessible by Third-Party Websites
  • From: RedTeam Pentesting GmbH
• [slackware-security] samba (SSA:2018-072-02)
  • From: Slackware Security Team
• [slackware-security] mozilla-firefox (SSA:2018-072-01)
  • From: Slackware Security Team
• FreeBSD Security Advisory FreeBSD-SA-18:03.speculative_execution
  • From: FreeBSD Security Advisories
• SEC Consult SA-20180314-0 :: Arbitrary Shortcode Execution & Local File Inclusion in WooCommerce Products Filter (PluginUs.Net)
  • From: SEC Consult Vulnerability Lab
• [SECURITY] [DSA 4136-1] curl security update
  • From: Alessandro Ghedini
• [SECURITY] [DSA 4137-1] libvirt security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4138-1] mbedtls security update
  • From: Sebastien Delafond
• Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities
  • From: Secunia Research
• [slackware-security] curl (SSA:2018-074-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4139-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• [CVE-2017-1205] IBM Spectrum LSF Privilege Escalation
  • From: john . fitzpatrick
• [SECURITY] [DSA 4140-1] libvorbis security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4141-1] libvorbisidec security update
  • From: Salvatore Bonaccorso
• RedCoded ISR: Abine Blur Password Manager Insecure Permissions (CVE-2018-8213)
  • From: (RS) Tyler Schroder
• [SECURITY] [DSA 4144-1] openjdk-8 security update
  • From: Moritz Muehlenhoff
• [slackware-security] mozilla-firefox (SSA:2018-075-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4142-1] uwsgi security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4145-1] gitlab security update
  • From: Moritz Muehlenhoff
• [slackware-security] libvorbis (SSA:2018-076-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4143-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• ES2018-05 Kamailio heap overflow
  • From: Sandro Gauci
• CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries
  • From: Advisories
• [SECURITY] [DSA 4146-1] plexus-utils security update
  • From: Moritz Muehlenhoff
• Unsubscribe - Re: CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries
  • From: Gary Frank
• Unsubscribe - Re: ES2018-05 Kamailio heap overflow
  • From: Gary Frank
• [SECURITY] [DSA 4147-1] polarssl security update
  • From: Sebastien Delafond
• Advisory - Bitbucket Server - CVE-2018-5225
  • From: Matthew Hart
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine hdmx Table Information Disclosure Vulnerability
  • From: Secunia Research
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine "MTX_IS_MTX_Data()" Information Disclosure Vulnerability
  • From: Secunia Research
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine Font Glyphs Handling Information Disclosure Vulnerability
  • From: Secunia Research
• Kaseya AgentMon.exe <= 9.3.0.11 - Local Privilege Escalation
  • From: x ksi
• Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal
  • From: x ksi
• ModSecurity WAF 3.0 for Nginx - Denial of Service
  • From: x ksi
• [SECURITY] [DSA 4148-1] kamailio security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4149-1] plexus-utils2 security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4150-1] icu security update
  • From: Moritz Muehlenhoff
• Cross-Site Scripting vulnerability in Zimbra Collaboration Suite due to the way it handles attachment links
  • From: Securify B.V.
• [slackware-security] mozilla-thunderbird (SSA:2018-082-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4151-1] librelp security update
  • From: Salvatore Bonaccorso
• [slackware-security] mozilla-firefox (SSA:2018-085-01)
  • From: Slackware Security Team
• AEF CMS v1.0.9 - (PM) Persistent Cross Site Scripting Vulnerability
  • From: Vulnerability Lab
• Weblication CMS Core & Grid v12.6.24 - Multiple Cross Site Scripting Vulnerabilities
  • From: Vulnerability Lab
• Sandoba CP:Shop CMS v2016.1 - Multiple Cross Site Scripting Vulnerabilities
  • From: Vulnerability Lab
• Microsoft Skype Mobile v81.2 & v8.13 - Remote Denial of Service Vulnerability
  • From: Vulnerability Lab
• [SECURITY] [DSA 4152-1] mupdf security update
  • From: Luciano Bello
• [SECURITY] [DSA 4153-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4154-1] net-snmp security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4155-1] thunderbird security update
  • From: Moritz Muehlenhoff
• CA20180328-01: Security Notice for CA API Developer Portal
  • From: Kotas, Kevin J
• [SECURITY] [DSA 4156-1] drupal7 security update
  • From: Salvatore Bonaccorso
• APPLE-SA-2018-3-29-1 iOS 11.3
  • From: Apple Product Security
• APPLE-SA-2018-3-29-6 Safari 11.1
  • From: Apple Product Security
• [SECURITY] [DSA 4158-1] openssl1.0 security update
  • From: Salvatore Bonaccorso
• [slackware-security] ruby (SSA:2018-088-01)
  • From: Slackware Security Team
• APPLE-SA-2018-3-29-3 tvOS 11.3
  • From: Apple Product Security
• APPLE-SA-2018-3-29-7 iTunes 12.7.4 for Windows
  • From: Apple Product Security
• APPLE-SA-2018-3-29-5 macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan
  • From: Apple Product Security
• [SECURITY] [DSA 4157-1] openssl security update
  • From: Salvatore Bonaccorso
• APPLE-SA-2018-3-29-4 Xcode 9.3
  • From: Apple Product Security
• APPLE-SA-2018-3-29-8 iCloud for Windows 7.4
  • From: Apple Product Security
• CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center
  • From: Williams, Ken
• APPLE-SA-2018-3-29-2 watchOS 4.3
  • From: Apple Product Security