Feed aggregator

next-20160720: linux-next

Linux Kernel Updates - July 20, 2016 - 3:05am
Version:next-20160720 (linux-next) Released:2016-07-20

Vuln: Nginx CVE-2016-1000105 Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
Nginx CVE-2016-1000105 Security Bypass Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-3572 Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL CVE-2014-3572 Security Bypass Vulnerability
Categories:

Vuln: OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
Categories:

Vuln: NTP CVE-2015-7979 Denial of Service Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
NTP CVE-2015-7979 Denial of Service Vulnerability
Categories:

Vuln: OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-3570 Unspecified Security Weakness

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL CVE-2014-3570 Unspecified Security Weakness
Categories:

Vuln: OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability
Categories:

Vuln: OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability
Categories:

Vuln: Google Chrome Prior to 51.0.2704.63 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
Google Chrome Prior to 51.0.2704.63 Multiple Security Vulnerabilities
Categories:

Vuln: Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 19, 2016 - 11:00pm
Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability
Categories:

Bugtraq: Executable installers are vulnerable^WEVIL (case 35): eclipse-inst-win*.exe vulnerable to DLL and EXE hijacking

Executable installers are vulnerable^WEVIL (case 35): eclipse-inst-win*.exe vulnerable to DLL and EXE hijacking
Categories:

Bugtraq: Django CMS v3.3.0 - (Editor Snippet) Persistent Web Vulnerability (CVE-2016-6186)

Django CMS v3.3.0 - (Editor Snippet) Persistent Web Vulnerability (CVE-2016-6186)
Categories:

Bugtraq: APPLE-SA-2016-07-18-6 iTunes 12.4.2

APPLE-SA-2016-07-18-6 iTunes 12.4.2
Categories:

CVE-2016-5080: Memory corruption in code generated by Objective Systems Inc. ASN1C compiler for C/C++ [STIC-2016-0603]

BugTraq Latest Security Advisories - July 19, 2016 - 4:35pm

Posted by Programa STIC on Jul 19

Fundación Dr. Manuel Sadosky - Programa STIC Advisory
www.fundacionsadosky.org.ar

Heap memory corruption in ASN.1 parsing code generated by Objective
Systems Inc. ASN1C compiler for C/C++

1. *Advisory Information*

Title: Heap memory corruption in ASN.1 parsing code generated by
Objective Systems Inc. ASN1C compiler for C/C++
Advisory ID: STIC-2016-0603
Advisory URL:...
Categories:

Multiple SQL injection vulnerabilities in WordPress Video Player

BugTraq Latest Security Advisories - July 19, 2016 - 4:23pm

Posted by Summer of Pwnage on Jul 19

------------------------------------------------------------------------
Multiple SQL injection vulnerabilities in WordPress Video Player
------------------------------------------------------------------------
David Vaartjes & Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
It was discovered that WordPress...
Categories:

Cross-Site Request Forgery in Icegram WordPress Plugin

BugTraq Latest Security Advisories - July 19, 2016 - 4:13pm

Posted by Summer of Pwnage on Jul 19

------------------------------------------------------------------------
Cross-Site Request Forgery in Icegram WordPress Plugin
------------------------------------------------------------------------
Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Request Forgery vulnerability was found in the Icegram...
Categories:

Multiple Cross-Site Scripting vulnerabilities in Ninja Forms WordPress Plugin

BugTraq Latest Security Advisories - July 19, 2016 - 3:00pm

Posted by Summer of Pwnage on Jul 19

------------------------------------------------------------------------
Multiple Cross-Site Scripting vulnerabilities in Ninja Forms WordPress
Plugin
------------------------------------------------------------------------
Han Sahin, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
Multiple reflected Cross-Site Scripting (XSS)...
Categories:

Bugtraq: APPLE-SA-2016-07-18-4 tvOS 9.2.2

APPLE-SA-2016-07-18-4 tvOS 9.2.2
Categories: