Bugtraq: by date

PreviousPrevious period
Next periodNext

55 messages starting Dec 02 18 and ending Dec 31 18
Date index | Thread index | Author index

Sunday, 02 December

SEC Consult SA-20181130-0 :: Multiple Vulnerabilities in Siglent Technologies SDS 1202X-E Digital Oscilloscope SEC Consult Vulnerability Lab
[SECURITY] [DSA 4348-1] openssl security update Moritz Muehlenhoff
[SECURITY] [DSA 4349-1] tiff security update Moritz Muehlenhoff
CSRF Vulnerability in MicroStrategy Web application wissam . bashour

Monday, 03 December

[slackware-security] mozilla-nss (SSA:2018-337-01) Slackware Security Team

Tuesday, 04 December

FreeBSD Security Advisory FreeBSD-SA-18:14.bhyve FreeBSD Security Advisories
Hasan MWB v1.0 - Multiple Time-Based SQL Injections Socket_0x03

Wednesday, 05 December

APPLE-SA-2018-12-05-2 macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra Apple Product Security
APPLE-SA-2018-12-05-1 iOS 12.1.1 Apple Product Security
APPLE-SA-2018-12-05-4 Safari 12.0.2 Apple Product Security
APPLE-SA-2018-12-05-5 iTunes 12.9.2 for Windows Apple Product Security
APPLE-SA-2018-12-05-3 tvOS 12.1.1 Apple Product Security
SEC Consult SA-20181205-0 :: Inadequate cryptography implementation in Kerio Control VPN protocol SEC Consult Vulnerability Lab
APPLE-SA-2018-12-05-6 iCloud for Windows 7.9 Apple Product Security
APPLE-SA-2018-12-05-7 Shortcuts 2.1.2 Apple Product Security

Thursday, 06 December

[slackware-security] nettle (SSA:2018-339-02) Slackware Security Team
[slackware-security] gnutls (SSA:2018-339-01) Slackware Security Team
APPLE-SA-2018-12-06-1 watchOS 5.1.2 Apple Product Security
[SECURITY] [DSA 4350-1] policykit-1 security update Moritz Muehlenhoff

Sunday, 09 December

[SECURITY] [DSA 4351-1] libphp-phpmailer security update Salvatore Bonaccorso
[SECURITY] [DSA 4352-1] chromium-browser security update Michael Gilbert
[slackware-security] php (SSA:2018-341-01) Slackware Security Team

Tuesday, 11 December

[SECURITY] [DSA 4353-1] php7.0 security update Moritz Muehlenhoff
Zoho ManageEngine OpManager 12.3 before Build 123237 has XSS via the domainController API. Murat Aydemir

Wednesday, 12 December

[slackware-security] mozilla-firefox (SSA:2018-345-01) Slackware Security Team
[security bulletin] MFSBGN03837 rev.1 - Network Node Manager i, Multiple Vulnerabilities security-alert
[security bulletin] MFSBGN03835 rev.1 - Fortify Software Security Center (SSC), Remote Unauthorized Access security-alert
[SECURITY] [DSA 4354-1] firefox-esr security update Moritz Muehlenhoff

Thursday, 13 December

WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0009 Michael Catanzaro

Monday, 17 December

Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via the getGraphData API Murat Aydemir
Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities Secunia Research
Secunia Research: libexif EXIF_IFD_INTEROPERABILITY / EXIF_IFD_EXIF Denial of Service Vulnerability Secunia Research

Wednesday, 19 December

[security bulletin] MFSBGN03835 rev.1 - Fortify Software Security Center (SSC), Remote Unauthorized Access security-alert
FreeBSD Security Advisory FreeBSD-SA-18:15.bootpd FreeBSD Security Advisories
[SECURITY] [DSA 4355-1] openssl1.0 security update Moritz Muehlenhoff

Thursday, 20 December

[SECURITY] [DSA 4356-1] netatalk security update Salvatore Bonaccorso
[SECURITY] [DSA 4357-1] libapache-mod-jk security update Salvatore Bonaccorso

Friday, 21 December

Zoho ManageEngine OpManager 12.3 before build 123239 allows SQL injection in the Alarms section Murat Aydemir
Zoho ManageEngine OpManager 12.3 before build 123239 allows XSS in the Notes column of the Alarms section Murat Aydemir

Sunday, 23 December

[slackware-security] netatalk (SSA:2018-355-01) Slackware Security Team
[SECURITY] [DSA 4346-2] ghostscript regression update Salvatore Bonaccorso

Friday, 28 December

[SECURITY] [DSA 4358-1] ruby-sanitize security update Salvatore Bonaccorso
[SECURITY] [DSA 4359-1] wireshark security update Moritz Muehlenhoff
[SECURITY] [DSA 4360-1] libarchive security update Moritz Muehlenhoff

Sunday, 30 December

[SECURITY] [DSA 4361-1] libextractor security update Moritz Muehlenhoff

Monday, 31 December

[security bulletin] MFSBGN03838 rev.1 - UCMDB Configuration Management Service, Multiple Vulnerabilities security-alert
Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
[KIS-2018-01] Oracle Application Express (AnyChart) Flash-based Cross-Site Scripting Vulnerability Egidio Romano
[KIS-2018-05] SugarCRM (SaveDropDown) PHP Code Injection Vulnerability Egidio Romano
[KIS-2018-02] SugarCRM (WorkFlow module) PHP Code Injection Vulnerability Egidio Romano
[KIS-2018-03] SugarCRM (portal_get_related_notes) SQL Injection Vulnerability Egidio Romano
[KIS-2018-07] SugarCRM (Web Logic Hooks module) PHP Code Injection Vulnerability Egidio Romano
[KIS-2018-04] SugarCRM (ConnectorsController) Server-Side Request Forgery Vulnerability Egidio Romano
[KIS-2018-08] SugarCRM (Web Logic Hooks module) Path Traversal Vulnerability Egidio Romano
[KIS-2018-06] SugarCRM (addLabels) PHP Code Injection Vulnerability Egidio Romano
PreviousPrevious period
Next periodNext