Mail Index

• Thread Index

• [SECURITY] [DSA 4397-1] ldb security update
  • From: Salvatore Bonaccorso
• AST-2019-001: Remote crash vulnerability with SDP protocol violation
  • From: Asterisk Security Team
• [SECURITY] [DSA 4398-1] php7.0 security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4399-1] ikiwiki security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4400-1] openssl1.0 security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4401-1] wordpress security update
  • From: Sebastien Delafond
• [slackware-security] infozip (SSA:2019-060-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4387-2] openssh security update
  • From: Yves-Alexis Perez
• [slackware-security] python (SSA:2019-062-01)
  • From: Slackware Security Team
• SAP J2EE Engine/7.01/Portal/EPP Reflected Cross Site Scripting (XSS)
  • From: Ece örsel
• SAP J2EE Engine/7.01/Fiori Reflected Cross Site Scripting (XSS)
  • From: Ece örsel
• SAP J2EE Engine/7.01/Fiori Reflected Cross Site Scripting (XSS)
  • From: Ece örsel
• [SECURITY] [DSA 4402-1] mumble security update
  • From: Moritz Muehlenhoff
• [slackware-security] ntp (SSA:2019-067-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4403-1] php7.0 security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4404-1] chromium security update
  • From: Michael Gilbert
• FlexPaper <= 2.3.6 Remote Command Execution
  • From: Red Timmy Sec -
• [SECURITY] [DSA 4405-1] openjpeg2 security update
  • From: Luciano Bello
• [**UPDATED] Microsoft Windows .Reg File Dialog Box Message Spoofing 0day
  • From: apparitionsec
• Microsoft Windows .Reg File Dialog Box Message Spoofing 0day
  • From: apparitionsec
• [SECURITY] [DSA 4406-1] waagent security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4407-1] xmltooling security update
  • From: Moritz Muehlenhoff
• Cisco Common Service Platform Collector - Hardcoded Credentials (CVE-2019-1723)
  • From: David Coomber
• IPv6 Security for IPv4 Engineers
  • From: Fernando Gont
• [SYSS-2018-033]: Fujitsu Wireless Keyboard Set LX901 - Keystroke Injection Vulnerability
  • From: matthias . deeg
• NEW: VMSA-2019-0002 - VMware Workstation update addresses elevation of privilege issues.
  • From: VMware Security Response Center
• NEW: VMSA-2019-0003 - VMware Horizon update addresses Connection Server information disclosure vulnerability
  • From: VMware Security Response Center
• [SECURITY] [DSA 4408-1] liblivemedia security update
  • From: Moritz Muehlenhoff
• Gitea 1.7.3 stored HTML injection (XSS)
  • From: Anti Räis
• [SECURITY] [DSA 4409-1] neutron security update
  • From: Moritz Muehlenhoff
• [slackware-security] libssh2 (SSA:2019-077-01)
  • From: Slackware Security Team
• [SE-2019-01] Java Card vulnerabilities
  • From: Security Explorations
• [SECURITY] [DSA 4410-1] openjdk-8 security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4411-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 4412-1] drupal7 security update
  • From: Moritz Muehlenhoff
• March 2019 Sourcetree Advisory - Multiple Remote Code Execution Vulnerabilities
  • From: Erin Jensby
• [SECURITY] [DSA 4413-1] ntfs-3g security update
  • From: Salvatore Bonaccorso
• [slackware-security] mozilla-firefox (SSA:2019-081-01)
  • From: Slackware Security Team
• [SECURITY] [DSA 4414-1] libapache2-mod-auth-mellon security update
  • From: Thijs Kinkhorst
• [SECURITY] [DSA 4415-1] passenger security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4416-1] wireshark security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4417-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• [SYSS-2018-034]: ABUS Secvest - Rolling Code - Predictable from Observable State (CWE-341)
  • From: matthias . deeg
• [SYSS-2018-035]: ABUS Secvest Remote Control - Missing Encryption of Sensitive Data (CWE-311)
  • From: matthias . deeg
• [SYSS-2018-036]: ABUS Secvest Remote Control - Denial of Service - Uncontrolled Resource Consumption (CWE-400)
  • From: matthias . deeg
• Atlassian - Confluence Security Advisory - 2019-03-20
  • From: Atlassian
• Multiple vulnerabilities in DASAN H660RM GPON router firmware
  • From: Krzysztof Burghardt
• APPLE-SA-2019-3-25-2 macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
  • From: Apple Product Security
• APPLE-SA-2019-3-25-7 Xcode 10.2
  • From: Apple Product Security
• APPLE-SA-2019-3-25-4 Safari 12.1
  • From: Apple Product Security
• APPLE-SA-2019-3-25-6 iCloud for Windows 7.11
  • From: Apple Product Security
• APPLE-SA-2019-3-25-1 iOS 12.2
  • From: Apple Product Security
• APPLE-SA-2019-3-25-3 tvOS 12.2
  • From: Apple Product Security
• APPLE-SA-2019-3-25-5 iTunes 12.9.4 for Windows
  • From: Apple Product Security
• [slackware-security] mozilla-thunderbird (SSA:2019-084-01)
  • From: Slackware Security Team
• [article2pdf (Wordpress plug-in)] Multiple vulnerabilities (CVE-2019-1000031, CVE-2019-1010257)
  • From: Christian Lerrahn
• Recon 2019 Call For Papers - June 28 - 30, 2019 - Montreal, Canada
  • From: cfp
• [RT-SA-2019-007] Code Execution via Insecure Shell Function getopt_simple
  • From: RedTeam Pentesting GmbH
• [RT-SA-2019-003] Cisco RV320 Unauthenticated Configuration Export
  • From: RedTeam Pentesting GmbH
• [RT-SA-2019-004] Cisco RV320 Unauthenticated Diagnostic Data Retrieval
  • From: RedTeam Pentesting GmbH
• [RT-SA-2019-005] Cisco RV320 Command Injection Retrieval
  • From: RedTeam Pentesting GmbH
• APPLE-SA-2019-3-27-1 watchOS 5.2
  • From: Apple Product Security
• [slackware-security] gnutls (SSA:2019-086-01)
  • From: Slackware Security Team
• [SAUTH-2019-0002] - Pydio 8 Multiple Vulnerabilities
  • From: SecureAuth Advisories
• [SECURITY] [DSA 4418-1] dovecot security update
  • From: Salvatore Bonaccorso