Mail Thread Index

• Date Index

• Secunia Research: Linux Kernel "_sctp_make_chunk()" Denial of Service Vulnerability, Secunia Research
• [security bulletin] MFSBGN03794 rev.2 - Micro Focus Operations Agent Multiple vulnerabilities, cyber-psrt
• CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor, spinfoo
  • <Possible follow-ups>
  • CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor, spinfoo
• [Newsletter/Marketing] [slackware-security] dhcp (SSA:2018-060-01), Slackware Security Team
• [SECURITY] [DSA 4127-1] simplesamlphp security update, Thijs Kinkhorst
  • <Possible follow-ups>
  • [SECURITY] [DSA 4127-1] simplesamlphp security update, Thijs Kinkhorst
• [Newsletter/Marketing] [slackware-security] ntp (SSA:2018-060-02), Slackware Security Team
• [security bulletin] MFSBGN03801 rev.1 - Micro Focus Operations Orchestration, Remote Denial of Service (DoS), cyber-psrt
• [SECURITY] [DSA 4128-1] trafficserver security update, Sebastien Delafond
  • <Possible follow-ups>
  • [SECURITY] [DSA 4128-1] trafficserver security update, Sebastien Delafond
• [SECURITY] [DSA 4120-2] linux regression update, Salvatore Bonaccorso
• [SECURITY] [DSA 4131-1] xen security update, Moritz Muehlenhoff
  • <Possible follow-ups>
  • [SECURITY] [DSA 4131-1] xen security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4132-1] libvpx security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4130-1] dovecot security update, Salvatore Bonaccorso
• KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service, KoreLogic Disclosures
  • <Possible follow-ups>
  • KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service, KoreLogic Disclosures
• [SECURITY] [DSA 4129-1] freexl security update, Moritz Muehlenhoff
  • <Possible follow-ups>
  • [SECURITY] [DSA 4129-1] freexl security update, Moritz Muehlenhoff
• DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery, Defense Code
  • <Possible follow-ups>
  • DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery, Defense Code
• DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Downloadable Products, Defense Code
• DefenseCode Security Advisory: Magento Multiple Stored Cross-Site Scripting Vulnerabilities, Defense Code
• DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Product Attributes, Defense Code
• FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec, FreeBSD Security Advisories
• [SECURITY] [DSA 4133-1] isc-dhcp security update, Salvatore Bonaccorso
• FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec [REVISED], FreeBSD Security Advisories
• [RT-SA-2018-001] Arbitrary Redirect in Tuleap, RedTeam Pentesting GmbH
• [SECURITY] [DSA 4134-1] util-linux security update, Salvatore Bonaccorso
• SEC Consult SA-20180312-0 :: Multiple Critical Vulnerabilities in SecurEnvoy SecurMail, SEC Consult Vulnerability Lab
• [SECURITY] [DSA 4135-1] samba security update, Salvatore Bonaccorso
• [RT-SA-2017-012] Shopware Cart Accessible by Third-Party Websites, RedTeam Pentesting GmbH
• [slackware-security] samba (SSA:2018-072-02), Slackware Security Team
• [slackware-security] mozilla-firefox (SSA:2018-072-01), Slackware Security Team
• FreeBSD Security Advisory FreeBSD-SA-18:03.speculative_execution, FreeBSD Security Advisories
• SEC Consult SA-20180314-0 :: Arbitrary Shortcode Execution & Local File Inclusion in WooCommerce Products Filter (PluginUs.Net), SEC Consult Vulnerability Lab
• [SECURITY] [DSA 4136-1] curl security update, Alessandro Ghedini
• [SECURITY] [DSA 4137-1] libvirt security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4138-1] mbedtls security update, Sebastien Delafond
• Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities, Secunia Research
• [slackware-security] curl (SSA:2018-074-01), Slackware Security Team
• [SECURITY] [DSA 4139-1] firefox-esr security update, Moritz Muehlenhoff
• [CVE-2017-1205] IBM Spectrum LSF Privilege Escalation, john . fitzpatrick
• [SECURITY] [DSA 4140-1] libvorbis security update, Salvatore Bonaccorso
• [SECURITY] [DSA 4141-1] libvorbisidec security update, Salvatore Bonaccorso
• RedCoded ISR: Abine Blur Password Manager Insecure Permissions (CVE-2018-8213), (RS) Tyler Schroder
• [SECURITY] [DSA 4144-1] openjdk-8 security update, Moritz Muehlenhoff
• [slackware-security] mozilla-firefox (SSA:2018-075-01), Slackware Security Team
• [SECURITY] [DSA 4142-1] uwsgi security update, Salvatore Bonaccorso
• [SECURITY] [DSA 4145-1] gitlab security update, Moritz Muehlenhoff
• [slackware-security] libvorbis (SSA:2018-076-01), Slackware Security Team
• [SECURITY] [DSA 4143-1] firefox-esr security update, Moritz Muehlenhoff
• ES2018-05 Kamailio heap overflow, Sandro Gauci
  • Unsubscribe - Re: ES2018-05 Kamailio heap overflow, Gary Frank
• CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries, Advisories
  • Unsubscribe - Re: CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries, Gary Frank
• [SECURITY] [DSA 4146-1] plexus-utils security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4147-1] polarssl security update, Sebastien Delafond
• Advisory - Bitbucket Server - CVE-2018-5225, Matthew Hart
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine hdmx Table Information Disclosure Vulnerability, Secunia Research
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine "MTX_IS_MTX_Data()" Information Disclosure Vulnerability, Secunia Research
• Secunia Research: Microsoft Windows Embedded OpenType Font Engine Font Glyphs Handling Information Disclosure Vulnerability, Secunia Research
• Kaseya AgentMon.exe <= 9.3.0.11 - Local Privilege Escalation, x ksi
• Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal, x ksi
• ModSecurity WAF 3.0 for Nginx - Denial of Service, x ksi
• [SECURITY] [DSA 4148-1] kamailio security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4149-1] plexus-utils2 security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4150-1] icu security update, Moritz Muehlenhoff
• Cross-Site Scripting vulnerability in Zimbra Collaboration Suite due to the way it handles attachment links, Securify B.V.
• [slackware-security] mozilla-thunderbird (SSA:2018-082-01), Slackware Security Team
• [SECURITY] [DSA 4151-1] librelp security update, Salvatore Bonaccorso
• [slackware-security] mozilla-firefox (SSA:2018-085-01), Slackware Security Team
• AEF CMS v1.0.9 - (PM) Persistent Cross Site Scripting Vulnerability, Vulnerability Lab
• Weblication CMS Core & Grid v12.6.24 - Multiple Cross Site Scripting Vulnerabilities, Vulnerability Lab
• Sandoba CP:Shop CMS v2016.1 - Multiple Cross Site Scripting Vulnerabilities, Vulnerability Lab
• Microsoft Skype Mobile v81.2 & v8.13 - Remote Denial of Service Vulnerability, Vulnerability Lab
• [SECURITY] [DSA 4152-1] mupdf security update, Luciano Bello
• [SECURITY] [DSA 4153-1] firefox-esr security update, Moritz Muehlenhoff
• [SECURITY] [DSA 4154-1] net-snmp security update, Salvatore Bonaccorso
• [SECURITY] [DSA 4155-1] thunderbird security update, Moritz Muehlenhoff
• CA20180328-01: Security Notice for CA API Developer Portal, Kotas, Kevin J
• [SECURITY] [DSA 4156-1] drupal7 security update, Salvatore Bonaccorso
• APPLE-SA-2018-3-29-1 iOS 11.3, Apple Product Security
• APPLE-SA-2018-3-29-6 Safari 11.1, Apple Product Security
• [SECURITY] [DSA 4158-1] openssl1.0 security update, Salvatore Bonaccorso
• [slackware-security] ruby (SSA:2018-088-01), Slackware Security Team
• APPLE-SA-2018-3-29-3 tvOS 11.3, Apple Product Security
• APPLE-SA-2018-3-29-7 iTunes 12.7.4 for Windows, Apple Product Security
• APPLE-SA-2018-3-29-5 macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan, Apple Product Security
• [SECURITY] [DSA 4157-1] openssl security update, Salvatore Bonaccorso
• APPLE-SA-2018-3-29-4 Xcode 9.3, Apple Product Security
• APPLE-SA-2018-3-29-8 iCloud for Windows 7.4, Apple Product Security
• CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center, Williams, Ken
• APPLE-SA-2018-3-29-2 watchOS 4.3, Apple Product Security