|
|
Colapse all |
Post message
CSNC-2017-030 MyTy Reflected Cross-Site Scripting (XSS) 2017-11-21 Advisories (advisories compass-security com) ############################################################# # # COMPASS SECURITY ADVISORY # https://www.compass-security.com/research/advisories/ # ############################################################# # # Product: MyTy # Vendor: Finlane GmbH # CSNC ID: CSNC-2017-030 # CVE ID: - # Su [ more ] [ reply ] FreeBSD Security Advisory FreeBSD-SA-17:10.kldstat [REVISED] 2017-11-21 FreeBSD Security Advisories (security-advisories freebsd org) [CVE-2017-15044] DocuWare FullText Search - Incorrect Access Control vulnerability 2017-11-20 Graham Leggett (minfrin sharp fm) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 CVE-2017-15044: DocuWare FullText Search - Incorrect Access Control vulnerability Severity: High - ------------------------------------------ Vendor: DocuWare Europe GmbH Therese-Giehse-Platz 2 82110 Germering Germany - ------------------------ [ more ] [ reply ] [security bulletin] HPESBMU03794 rev.1 - HPE Insight Control, Multiple Remote Vulnerabilities 2017-11-16 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu 03794en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbmu03794en_us Version: 1 HP [ more ] [ reply ] [security bulletin] HPESBMU03795 rev.1 - HPE Matrix Operating Environment, Multiple Remote Vulnerabilities 2017-11-16 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu 03795en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbmu03795en_us Version: 1 HP [ more ] [ reply ] [SECURITY] [DSA 4037-1] jackson-databind security update 2017-11-16 Sebastien Delafond (seb debian org) [SECURITY] [DSA 4039-1] opensaml2 security update 2017-11-16 Salvatore Bonaccorso (carnil debian org) [security bulletin] HPESBHF03705 rev.4 - HPE Integrated Lights-Out 4, 3, 2 and Moonshot Remote Console Administrator (iLO 4 and MRCA) Remote Disclosure of Information 2017-11-15 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-HPESBHF 03705en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: HPESBHF03705en_us Version: 4 HP [ more ] [ reply ] FreeBSD Security Advisory FreeBSD-SA-17:10.kldstat 2017-11-15 FreeBSD Security Advisories (security-advisories freebsd org) FreeBSD Security Advisory FreeBSD-SA-17:09.shm 2017-11-15 FreeBSD Security Advisories (security-advisories freebsd org) FreeBSD Security Advisory FreeBSD-SA-17:08.ptrace 2017-11-15 FreeBSD Security Advisories (security-advisories freebsd org) Call for papers - WorldCIST'18 - Naples, Italy - Extended deadline: November 26 2017-11-15 Maria Lemos (marialemos72 gmail com) * Proceedings by Springer ** Extended versions of best selected papers will be published in JCR/SCI/SSCI journals ------------------------------------------------------------------------ --------------------------- WorldCist'18 - 6th World Conference on Information Systems and Technologies [ more ] [ reply ] CA20171114-01: Security Notice for CA Identity Governance 2017-11-14 Kotas, Kevin J (Kevin Kotas ca com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CA20171114-01: Security Notice for CA Identity Governance Issued: November 14, 2017 Last Updated: November 14, 2017 CA Technologies support is alerting customers to a potential risk with CA Identity Governance. A vulnerability exists that can potent [ more ] [ reply ] [SECURITY] [DSA 4033-1] konversation security update 2017-11-13 Salvatore Bonaccorso (carnil debian org) [CVE-2017-15288] A privilege escalation vulnerability in the Scala compilation daemon 2017-11-13 jason zaugg lightbend com A privilege escalation vulnerability has been identified in the Scala compilation daemon. The compile daemon is started explicitly by the `fsc` command, or implicitly by executing a Scala source file as a script (e.g `scala MyScript.scala`). Note: Using the `scala` command to start a REPL or to run [ more ] [ reply ] Symantec Endpoint Protection (SEP) v12.1 Tamper-protection Bypass CVE-2017-6331 (hyp3rlinx) 2017-11-13 apparitionsec gmail com Bypassable authentication in SingTel / Aztech DSL8900GR(AC) router 2017-11-11 cort accelerateworkshop com Credit: Cort Date: 5 Aug 2017 CVE: Not assigned Vendor: Aztech (https://www.aztech.com) / SingTel (https://www.singtel.com/) Product: Aztech DSL8900GR(AC) router Versions Affected: firmware 340.6.1-007 (latest available as of 9 Nov 2017) CVSS v3 Base Score: 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) [ more ] [ reply ] Advisory X41-2017-006: Multiple Vulnerabilities in PSFTPd Windows FTP Server 2017-11-10 X41 D-Sec GmbH Advisories (advisories x41-dsec de) X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung Vend [ more ] [ reply ] WebKitGTK+ Security Advisory WSA-2017-0009 2017-11-10 Carlos Alberto Lopez Perez (clopez igalia com) [RT-SA-2016-008] XML External Entity Expansion in Ladon Webservice 2017-11-09 RedTeam Pentesting GmbH (release redteam-pentesting de) Advisory: XML External Entity Expansion in Ladon Webservice Attackers who can send SOAP messages to a Ladon webservice via the HTTP interface of the Ladon webservice can exploit an XML external entity expansion vulnerability and read local files, forge server side requests or overload the service w [ more ] [ reply ] [SECURITY] [DSA 4029-1] postgresql-common security update 2017-11-09 Moritz Muehlenhoff (jmm debian org) [SECURITY] [DSA 4028-1] postgresql-9.6 security update 2017-11-09 Moritz Muehlenhoff (jmm debian org) [SECURITY] [DSA 4027-1] postgresql-9.4 security update 2017-11-09 Moritz Muehlenhoff (jmm debian org) |
|
Privacy Statement |
Hash: SHA512
- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4044-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Yves-Alexis Perez
November 21, 2017
[ more ] [ reply ]