Feed aggregator

4.14.62: longterm

Linux Kernel Updates - August 9, 2018 - 5:16am
Version:4.14.62 (longterm) Released:2018-08-09 Source:linux-4.14.62.tar.xz PGP Signature:linux-4.14.62.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.14.62

4.17.14: stable

Linux Kernel Updates - August 9, 2018 - 5:15am
Version:4.17.14 (stable) Released:2018-08-09 Source:linux-4.17.14.tar.xz PGP Signature:linux-4.17.14.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.17.14

next-20180809: linux-next

Linux Kernel Updates - August 9, 2018 - 3:03am
Version:next-20180809 (linux-next) Released:2018-08-09

[SECURITY] [DSA 4267-1] kamailio security update

BugTraq Latest Security Advisories - August 8, 2018 - 11:59pm

Posted by Salvatore Bonaccorso on Aug 08

-------------------------------------------------------------------------
Debian Security Advisory DSA-4267-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
August 08, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : kamailio
CVE ID : CVE-2018-14767

Henning...
Categories:

Vuln: Multiple Medtronic Isulin Pumps Authentication Bypass and Information Disclosure Vulnerabilities

Security Focus Latest Security Advisories - August 8, 2018 - 11:00pm
Multiple Medtronic Isulin Pumps Authentication Bypass and Information Disclosure Vulnerabilities
Categories:

Bugtraq: WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006

Security Focus Latest Security Advisories - August 8, 2018 - 10:00pm
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006
Categories:

[CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2

BugTraq Latest Security Advisories - August 8, 2018 - 10:10am

Posted by Joachim De Zutter on Aug 08

CVE ID: CVE-2018-12584

TIMELINE

Bug report with test code sent to main reSIProcate developers: 2018-06-15
Patch created by Scott Godin: 2018-06-18
CVE ID assigned: 2018-06-19
Patch committed to reSIProcate repository: 2018-06-21
Advisory first published on website: 2018-06-22
Advisory sent to Bugtraq mailing list: 2018-08-08

DESCRIPTION

A heap overflow can be triggered in the reSIProcate SIP stack when TLS is
enabled....
Categories:

Bugtraq: New VMSA-2018-0019 - Horizon 6, 7, and Horizon Client for Windows updates address an out-of-bounds read vulnerability

Security Focus Latest Security Advisories - August 8, 2018 - 10:00am
New VMSA-2018-0019 - Horizon 6, 7, and Horizon Client for Windows updates address an out-of-bounds read vulnerability
Categories:

CA20180802-01: Security Notice for CA API Developer Portal

BugTraq Latest Security Advisories - August 8, 2018 - 8:55am

Posted by Kotas, Kevin J on Aug 08

CA20180802-01: Security Notice for CA API Developer Portal

Issued: August 2, 2018
Last Updated: August 2, 2018

CA Technologies Support is alerting customers to a potential risk
with CA API Developer Portal. A medium risk vulnerability exists that
can allow a remote attacker to conduct reflected cross-site scripting
attacks. CA published solutions to address the vulnerability.

The vulnerability, CVE-2018-6590, occurs due to insufficient...
Categories:

[CVE-2018-14429] man-cgi < 1.16 Local File Include

BugTraq Latest Security Advisories - August 8, 2018 - 8:53am

Posted by eL_Bart0 on Aug 08

man-cgi before 1.16 allows Local File Inclusion via absolute path traversal. If an Attacker provides a Filename as a
Parameter (e.g. https://example.org/cgi-bin/man-cgi?/etc/passwd) the Script will read and return the local file. This
is happening because of the way the Script calls the "man" command. Tests have shown that "man /some/random/file"
(depending on it's configuration) will first try to locate a manual...
Categories:

WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006

BugTraq Latest Security Advisories - August 8, 2018 - 8:48am

Posted by Michael Catanzaro on Aug 08

------------------------------------------------------------------------
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006
------------------------------------------------------------------------

Date reported : August 07, 2018
Advisory ID : WSA-2018-0006
WebKitGTK+ Advisory URL :
https://webkitgtk.org/security/WSA-2018-0006.html
WPE WebKit Advisory URL :...
Categories:

New VMSA-2018-0019 - Horizon 6, 7, and Horizon Client for Windows updates address an out-of-bounds read vulnerability

BugTraq Latest Security Advisories - August 8, 2018 - 8:39am

Posted by VMware Security Response Center on Aug 08

----------------------------------------------------------------------
VMware Security Advisory

Advisory ID: VMSA-2018-0019
Severity: Important
Synopsis: Horizon 6, 7, and Horizon Client for Windows updates
address an out-of-bounds read vulnerability
Issue date: 2018-08-07
Updated on: 2018-08-07 (Initial Advisory)
CVE number: CVE-2018-6970

1. Summary

Horizon 6, 7, and Horizon Client for Windows updates address an...
Categories:

Bugtraq: FreeBSD Security Advisory FreeBSD-SA-18:08.tcp

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
FreeBSD Security Advisory FreeBSD-SA-18:08.tcp
Categories:

Bugtraq: [SECURITY] [DSA 4266-1] linux security update

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
[SECURITY] [DSA 4266-1] linux security update
Categories:

Bugtraq: RE: [FD] Executable installers are vulnerable^WEVIL (case 56):arbitrary code execution WITH escalation of privilege via rufus*.exe

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
RE: [FD] Executable installers are vulnerable^WEVIL (case 56):arbitrary code execution WITH escalation of privilege via rufus*.exe
Categories:

Bugtraq: [SECURITY] [DSA 4265-1] xml-security-c security update

Security Focus Latest Security Advisories - August 8, 2018 - 8:00am
[SECURITY] [DSA 4265-1] xml-security-c security update
Categories:

next-20180808: linux-next

Linux Kernel Updates - August 8, 2018 - 2:49am
Version:next-20180808 (linux-next) Released:2018-08-08

Vuln: Apache CouchDB CVE-2018-11769 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 7, 2018 - 11:00pm
Apache CouchDB CVE-2018-11769 Remote Code Execution Vulnerability
Categories:

Vuln: Multiple HP Inkjet Printers Multiple Stack Buffer Overflow Vulnerabilities

Security Focus Latest Security Advisories - August 7, 2018 - 11:00pm
Multiple HP Inkjet Printers Multiple Stack Buffer Overflow Vulnerabilities
Categories:

next-20180807: linux-next

Linux Kernel Updates - August 7, 2018 - 6:33am
Version:next-20180807 (linux-next) Released:2018-08-07