Feed aggregator

[SECURITY] [DSA 4367-2] systemd regression update

BugTraq Latest Security Advisories - January 16, 2019 - 9:17pm

Posted by Salvatore Bonaccorso on Jan 16

-------------------------------------------------------------------------
Debian Security Advisory DSA-4367-2 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
January 15, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : systemd

The Qualys Research Labs reported that the...
Categories:

CVE-2018-13798 Siemens - SICAM A8000 Series Webinterface XXE DoS

BugTraq Latest Security Advisories - January 16, 2019 - 9:13pm

Posted by Advisories on Jan 16

#############################################################
#
# COMPASS SECURITY ADVISORY
# https://www.compass-security.com/research/advisories/
#
#############################################################
#
# Product: SICAM A8000 Series
# Vendor: Siemens
# CSNC ID: CSNC-2019-002
# CVE ID: CVE-2018-13798
# Subject: SICAM Webinterface XXE DoS
# Risk: Medium (CVSS 3.0 Base Score: 5.3)
# CVSS 3.0:...
Categories:

4.4.171: longterm

Linux Kernel Updates - January 16, 2019 - 4:16pm
Version:4.4.171 (longterm) Released:2019-01-16 Source:linux-4.4.171.tar.xz PGP Signature:linux-4.4.171.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.4.171

4.9.151: longterm

Linux Kernel Updates - January 16, 2019 - 4:12pm
Version:4.9.151 (longterm) Released:2019-01-16 Source:linux-4.9.151.tar.xz PGP Signature:linux-4.9.151.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.9.151

4.14.94: longterm

Linux Kernel Updates - January 16, 2019 - 4:07pm
Version:4.14.94 (longterm) Released:2019-01-16 Source:linux-4.14.94.tar.xz PGP Signature:linux-4.14.94.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.14.94

4.19.16: longterm

Linux Kernel Updates - January 16, 2019 - 4:04pm
Version:4.19.16 (longterm) Released:2019-01-16 Source:linux-4.19.16.tar.xz PGP Signature:linux-4.19.16.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.19.16

4.20.3: stable

Linux Kernel Updates - January 16, 2019 - 4:03pm
Version:4.20.3 (stable) Released:2019-01-16 Source:linux-4.20.3.tar.xz PGP Signature:linux-4.20.3.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.20.3

next-20190116: linux-next

Linux Kernel Updates - January 16, 2019 - 1:36am
Version:next-20190116 (linux-next) Released:2019-01-16

Vuln: libgcrypt CVE-2017-0379 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
libgcrypt CVE-2017-0379 Information Disclosure Vulnerability
Categories:

Vuln: FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Vuln: Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
Categories:

Vuln: Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability
Categories:

Vuln: Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
Categories:

Vuln: Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
Categories:

Vuln: JQuery CVE-2015-9251 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
JQuery CVE-2015-9251 Cross Site Scripting Vulnerability
Categories:

Vuln: JasPer Multiple Denial of Service Vulnerabilities

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
JasPer Multiple Denial of Service Vulnerabilities
Categories:

Vuln: OpenSSL CVE-2018-0732 Denial of Service Vulnerability

Security Focus Latest Security Advisories - January 16, 2019 - 12:00am
OpenSSL CVE-2018-0732 Denial of Service Vulnerability
Categories:

Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920

BugTraq Latest Security Advisories - January 15, 2019 - 12:07am

Posted by apparitionsec on Jan 14

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-VCF-FILE-INSUFFICIENT-WARNING-REMOTE-CODE-EXECUTION.txt
[+] ISR: ApparitionSec
[+] Zero Day Initiative Program

[Vendor]
www.microsoft.com

[Product]
A VCF file is a standard file format for storing contact information for a person or business.
Microsoft Outlook supports the vCard and...
Categories:

Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920

BugTraq Latest Security Advisories - January 15, 2019 - 12:06am

Posted by apparitionsec on Jan 14

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-VCF-FILE-INSUFFICIENT-WARNING-REMOTE-CODE-EXECUTION.txt
[+] ISR: ApparitionSec
[+] Zero Day Initiative Program

[Vendor]
www.microsoft.com

[Product]
A VCF file is a standard file format for storing contact information for a person or business.
Microsoft Outlook supports the vCard and...
Categories:

[SECURITY] [DSA 4369-1] xen security update

BugTraq Latest Security Advisories - January 15, 2019 - 12:03am

Posted by Moritz Muehlenhoff on Jan 14

-------------------------------------------------------------------------
Debian Security Advisory DSA-4369-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : xen
CVE ID : CVE-2018-19961 CVE-2018-19962...
Categories: