|
|
Colapse all |
Post message
[security bulletin] HPESBHF03746 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-05-25 HPE Product Security Response Team (security-alert hpe com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf 03746en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbhf03746en_us Version: 1 [ more ] [ reply ] WebKitGTK+ Security Advisory WSA-2017-0004 2017-05-25 Carlos Alberto Lopez Perez (clopez igalia com) [slackware-security] samba (SSA:2017-144-01) 2017-05-24 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] samba (SSA:2017-144-01) New samba packages are available for Slackware 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ pa [ more ] [ reply ] [security bulletin] HPESBHF03751 rev.1 - HPE Aruba AirWave Glass, Remote Code Execution 2017-05-24 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf 03751en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbhf03751en_us Version: 1 HP [ more ] [ reply ] DefenseCode ThunderScan SAST Advisory: WordPress AffiliateWP Plugin Security Vulnerability 2017-05-24 DefenseCode (defensecode defensecode com) DefenseCode ThunderScan SAST Advisory: WordPress Huge-IT Video Gallery Plugin Security Vulnerability 2017-05-24 DefenseCode (defensecode defensecode com) DefenseCode ThunderScan SAST Advisory: WordPress All In One Schema.org Rich Snippets Plugin Security Vulnerability 2017-05-24 DefenseCode (defensecode defensecode com) Secunia Research: Microsoft Windows Heap-based Buffer Overflow Vulnerabilities 2017-05-23 Secunia Research (remove-vuln secunia com) HPESBHF03744 rev.1 - HPE Intelligent Management Center (iMC) PLAT running OpenSSL, Remote Denial of Service (DoS) 2017-05-22 HPE Product Security Response Team (security-alert hpe com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf 03744en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbhf03744en_us Version: 1 [ more ] [ reply ] CVE-2017-9024 Secure Auditor - v3.0 Directory Traversal 2017-05-22 apparitionsec gmail com (hyp3rlinx) CVE-2017-9046 Pegasus "winpm-32.exe" v4.72 Mailto: Link Remote Code Execution 2017-05-22 apparitionsec gmail com (hyp3rlinx) CVE-2017-9046 Mantis Bug Tracker 1.3.10 / v2.3.0 CSRF Permalink Injection 2017-05-22 apparitionsec gmail com (hyp3rlinx) May 2017 - SourceTree - Critical Security Advisory 2017-05-22 Atlassian (security atlassian com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 This email refers to the advisory found at https://confluence.atlassian.com/x/jW2xNQ . CVE ID: * CVE-2017-8768. Product: SourceTree. Affected SourceTree product versions: * SourceTree for Mac 1.4.0 <= version < 2.5.1 * SourceTree for Windows 0.8 [ more ] [ reply ] CVE-2017-9024 Secure Auditor - v3.0 Directory Traversal 2017-05-20 apparitionsec gmail com (hyp3rlinx) [SECURITY] CVE-2017-5657: Apache Archiva CSRF vulnerability for REST endpoints 2017-05-19 Martin (martin_s apache org) CVE-2017-5657: Apache Archiva CSRF vulnerabilities for various REST endpoints Severity: Important Vendor: The Apache Software Foundation Versions Affected: Archiva 2.0.0 - 2.2.1 The unsupported versions 1.x are also affected. Several REST service endpoints of Apache Archiva are not pro [ more ] [ reply ] Secunia Research: LibRaw "parse_tiff_ifd()" Memory Corruption Vulnerability 2017-05-15 Secunia Research (remove-vuln secunia com) PingID (MFA) - Reflected Cross-Site Scripting 2017-05-17 Advisories (advisories compass-security com) ############################################################# # # COMPASS SECURITY ADVISORY # https://www.compass-security.com/research/advisories/ # ############################################################# # # Product: PingID (MFA) [1] # Vendor: Ping Identity Corporation # CSNC ID: CSNC-20 [ more ] [ reply ] [slackware-security] kdelibs (SSA:2017-136-02) 2017-05-16 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] kdelibs (SSA:2017-136-02) New kdelibs packages are available for Slackware 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patc [ more ] [ reply ] [security bulletin] HPESBGN03748 rev.1 - HPE Cloud Optimizer, Remote Disclosure of Information 2017-05-18 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn 03748en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbgn03748en_us Version: 1 HP [ more ] [ reply ] Nextcloud/Owncloud - Reflected Cross Site Scripting in error pages 2017-05-15 Manuel Mancera (sinkmanu gmail com) ================================================================== Nextcloud/Owncloud - Reflected Cross Site Scripting in error pages ================================================================== Information ------------------------------------------------------------------ Name: Nextcloud/Own [ more ] [ reply ] APPLE-SA-2017-05-15-6 iTunes 12.6.1 2017-05-15 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2017-05-15-6 iTunes 12.6.1 iTunes 12.6.1 is now available and addresses the following: WebKit Available for: Windows 7 and later Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple [ more ] [ reply ] APPLE-SA-2017-05-15-4 watchOS 3.2.1 2017-05-15 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2017-05-15-4 watchOS 3.2.1 watchOS 3.2.1 is now available and addresses the following: AVEVideoEncoder Available for: All Apple Watch models Impact: An application may be able to gain kernel privileges Description: A memory corruption issu [ more ] [ reply ] [security bulletin] HPESBHF03745 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-05-14 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf 03745en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesbhf03745en_us Version: 1 HP [ more ] [ reply ] Secunia Research: FLAC "read_metadata_vorbiscomment_()" Memory Leak Denial of Service Vulnerability 2017-05-15 Secunia Research (remove-vuln secunia com) DefenseCode ThunderScan SAST Advisory: GOOGLE google-api-php-client Multiple Security Vulnerabilities 2017-05-11 DefenseCode (defensecode defensecode com) |
|
Privacy Statement |
Hash: SHA256
- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3863-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
May 25, 2017
[ more ] [ reply ]