-
Operating System: Debian ≈ Packet Storm
Jul 17, 2019 | 20:44 pm
Debian Linux Security Advisory 4483-1 - Two security issues have been discovered in LibreOffice.
Read more...
-
Advisories - Linux Security
Jul 16, 2019 | 19:14 pm
Two security issues have been discovered in LibreOffice: CVE-2019-9848
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 15, 2019 | 17:28 pm
Debian Linux Security Advisory 4482-1 - Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
Read more...
-
Advisories - Linux Security
Jul 14, 2019 | 18:11 pm
Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 13, 2019 | 20:22 pm
Debian Linux Security Advisory 4481-1 - Harsh Jaiswal discovered a remote shell execution vulnerability in ruby-mini-magick, a Ruby library providing a wrapper around ImageMagick or GraphicsMagick, exploitable when using MiniMagick::Image.open with specially crafted URLs coming from unsanitized user input.
Read more...
-
Advisories - Linux Security
Jul 13, 2019 | 11:36 am
Harsh Jaiswal discovered a remote shell execution vulnerability in ruby-mini-magick, a Ruby library providing a wrapper around ImageMagick or GraphicsMagick, exploitable when using MiniMagick::Image.open with specially crafted URLs coming from unsanitized user input.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 12, 2019 | 14:15 pm
This Metasploit module exploits a command injection vulnerability in Xymon versions before 4.3.25 which allows authenticated users to execute arbitrary operating system commands as the web server user. When adding a new user to the system via the web interface[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 12, 2019 | 14:13 pm
Debian Linux Security Advisory 4480-1 - Multiple vulnerabilities were discovered in the HyperLogLog implementation of Redis, a persistent key-value database, which could result in denial of service or potentially the execution of arbitrary code.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 12, 2019 | 14:12 pm
Debian Linux Security Advisory 4479-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 12, 2019 | 01:02 am
Debian Linux Security Advisory 4478-1 - Two vulnerabilities were discovered in the DOSBox emulator, which could result in the execution of arbitrary code on the host running DOSBox when running a malicious executable in the emulator.
Read more...
-
Advisories - Linux Security
Jul 11, 2019 | 18:59 pm
Multiple vulnerabilities were discovered in the HyperLogLog implementation of Redis, a persistent key-value database, which could result in denial of service or potentially the execution of arbitrary code.
Read more...
-
Advisories - Linux Security
Jul 11, 2019 | 18:56 pm
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
Read more...
-
Advisories - Linux Security
Jul 10, 2019 | 18:24 pm
Two vulnerabilities were discovered in the DOSBox emulator, which could result in the execution of arbitrary code on the host running DOSBox when running a malicious executable in the emulator.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 9, 2019 | 01:22 am
Debian Linux Security Advisory 4477-1 - Fang-Pen Lin discovered a stack-based buffer-overflow flaw in ZeroMQ, a lightweight messaging kernel library. A remote, unauthenticated client connecting to an application using the libzmq library, running with a socket listening with CURVE encryption/authentication[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 8, 2019 | 16:38 pm
Debian Linux Security Advisory 4476-1 - Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitization of clickable links or missing redirects of HTTP requests to HTTPS.
Read more...
-
Advisories - Linux Security
Jul 8, 2019 | 14:13 pm
Fang-Pen Lin discovered a stack-based buffer-overflow flaw in ZeroMQ, a lightweight messaging kernel library. A remote, unauthenticated client connecting to an application using the libzmq library, running with a socket listening with CURVE encryption/authentication enabled, can take
Read more...
-
Advisories - Linux Security
Jul 5, 2019 | 16:03 pm
Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitisation of clickable links or missing redirects of HTTP requests to HTTPS.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 2, 2019 | 16:07 pm
Debian Linux Security Advisory 4474-1 - A sandbox escape was found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code if combined with additional vulnerabilities.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jul 2, 2019 | 16:03 pm
This Metasploit module attempts to gain root privileges on systems running Serv-U FTP Server versions prior to 15.1.7. The Serv-U executable is setuid root, and uses ARGV[0] in a call to system(), without validation, when invoked with the -prepareinstallation flag,[…]
Read more...
-
Advisories - Linux Security
Jul 1, 2019 | 19:12 pm
Joran Dirk Greef discovered that overly long nonces used with ChaCha20-Poly1305 were incorrectly processed and could result in nonce reuse. This doesn't affect OpenSSL-internal uses of ChaCha20-Poly1305 such as TLS.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 28, 2019 | 21:32 pm
Debian Linux Security Advisory 4473-1 - Multiple security issues were found in the rdesktop RDP client, which could result in denial of service and the execution of arbitrary code.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 28, 2019 | 16:16 pm
Debian Linux Security Advisory 4472-1 - It was discovered that Expat, an XML parsing C library, did not properly handled XML input including XML names that contain a large number of colons, potentially resulting in denial of service.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 26, 2019 | 01:50 am
Debian Linux Security Advisory 4471-1 - Multiple security issues have been found in Thunderbird which may lead to the execution of arbitrary code if malformed email messages are read.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 25, 2019 | 00:54 am
Debian Linux Security Advisory 4467-2 - The update for vim released as DSA 4467-1 introduced a regression which broke syntax highlighting in some circumstances. Updated vim packages are now available to correct this issue.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 23, 2019 | 21:22 pm
Debian Linux Security Advisory 4470-1 - Two vulnerabilities have been discovered in pdns, an authoritative DNS server which may result in denial of service via malformed zone records and excessive NOTIFY packets in a master/slave setup.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 22, 2019 | 20:33 pm
Debian Linux Security Advisory 4469-1 - Two vulnerabilities were discovered in Libvirt, a virtualisation abstraction library, allowing an API client with read-only permissions to execute arbitrary commands via the virConnectGetDomainCapabilities API, or read or execute arbitrary files via the virDomainSaveImageGetXMLDesc[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 22, 2019 | 15:33 pm
Debian Linux Security Advisory 4468-1 - A path traversal vulnerability due to an unsanitized POST parameter was discovered in php-horde-form, a package providing form rendering, validation, and other functionality for the Horde Application Framework. An attacker can take advantage of[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 21, 2019 | 21:32 pm
Debian Linux Security Advisory 4447-2 - DSA 4447-1 shipped updated CPU microcode for most types of Intel CPUs as mitigations for the MSBDS, MFBDS, MLPDS and MDSUM hardware vulnerabilities.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 19, 2019 | 19:12 pm
Debian Linux Security Advisory 4465-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 17, 2019 | 19:15 pm
Debian Linux Security Advisory 4464-1 - Multiple security issues have been found in Thunderbird which may lead to the execution of arbitrary code if malformed email messages are read.
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 17, 2019 | 19:00 pm
Debian Linux Security Advisory 4463-1 - Two vulnerabilities were discovered in the ZNC IRC bouncer which could result in remote code execution (CVE-2019-12816) or denial of service via invalid encoding (CVE-2019-9917).
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 14, 2019 | 00:22 am
Debian Linux Security Advisory 4462-1 - Joe Vennix discovered an authentication bypass vulnerability in dbus, an asynchronous inter-process communication system. The implementation of the DBUS_COOKIE_SHA1 authentication mechanism was susceptible to a symbolic link attack. A local attacker could take advantage[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Jun 12, 2019 | 20:59 pm
Debian Linux Security Advisory 4461-1 - Harrison Neil discovered that the getACL() command in Zookeeper, a service for maintaining configuration information, did not validate permissions, which could result in information disclosure.
Read more...
Jedesmal, wenn mit eingeschaltetem AdBlocker eine Webseite besucht wird, stirbt in einem Labor ein unschuldiges, niedliches Kaninchen einen grausamen Tod! Zusätzlich werden einige Funktionen dieser Webseite durch den AdBlocker blockiert. Bitte deaktivieren Sie Ihren AdBlocker für diese Webseite und retten Sie unschuldige Kaninchen!