Feed aggregator

Vuln: Google Android Qualcomm Pin Controller Driver CVE-2017-0619 Privilege Escalation Vulnerability

Google Android Qualcomm Pin Controller Driver CVE-2017-0619 Privilege Escalation Vulnerability
Categories:

Vuln: LibreOffice 'vcl/source/filter/jpeg/jpegc.cxx' Heap Buffer Overflow Vulnerability

LibreOffice 'vcl/source/filter/jpeg/jpegc.cxx' Heap Buffer Overflow Vulnerability
Categories:

Vuln: Cisco IOS and IOS XE Software CVE-2017-3881 Remote Code Execution Vulnerability

Cisco IOS and IOS XE Software CVE-2017-3881 Remote Code Execution Vulnerability
Categories:

Vuln: NVIDIA GeForce Experience CVE-2017-6250 Local Code Execution Vulnerability

NVIDIA GeForce Experience CVE-2017-6250 Local Code Execution Vulnerability
Categories:

next-20170518: linux-next

Linux Kernel Updates - May 17, 2017 - 10:23pm
Version:next-20170518 (linux-next) Released:2017-05-18

PingID (MFA) - Reflected Cross-Site Scripting

BugTraq Latest Security Advisories - May 17, 2017 - 3:59am

Posted by Advisories on May 17

#############################################################
#
# COMPASS SECURITY ADVISORY
# https://www.compass-security.com/research/advisories/
#
#############################################################
#
# Product: PingID (MFA) [1]
# Vendor: Ping Identity Corporation
# CSNC ID: CSNC-2017-013
# Subject: Reflected Cross-Site Scripting
# Risk: High
# Effect: Remotely exploitable
# Author: Stephan Sekula...
Categories:

[slackware-security] kdelibs (SSA:2017-136-02)

BugTraq Latest Security Advisories - May 17, 2017 - 3:46am

Posted by Slackware Security Team on May 17

[slackware-security] kdelibs (SSA:2017-136-02)

New kdelibs packages are available for Slackware 13.37, 14.0, 14.1, 14.2,
and -current to fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/kdelibs-4.14.32-i586-1_slack14.2.txz: Upgraded.
This update fixes a security issue with KAuth that can lead to gaining
root from an unprivileged account.
For more information,...
Categories:

next-20170517: linux-next

Linux Kernel Updates - May 16, 2017 - 11:13pm
Version:next-20170517 (linux-next) Released:2017-05-17

[SYSS-2017-010] HP Wireless Mouse: Spoofing Attack (CWE-345)

BugTraq Latest Security Advisories - May 16, 2017 - 9:31am

Posted by Micha Borrmann on May 16

Advisory ID: SYSS-2017-010
Product: Wireless Mouse (part of Wireless Desktop Set ERK-321A, which is shipped together with HP Elite Slice)
Manufacturer: HP
Affected Version(s): MORFGIUO
Tested Version(s): MORFGIUO
Vulnerability Type: Insufficient Verification of Data Authenticity (CWE-345)
Mouse Spoofing Attack
Risk Level: Medium
Solution Status: Open
Manufacturer Notification: 2017-03-02
Solution Date: -
Public Disclosure:...
Categories: