Bugtraq: by author

Previous period

Next period

93 messages starting Mar 20 18 and ending Mar 22 18
Date index | Thread index | Author index

Advisories

CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries Advisories (Mar 20)

Alessandro Ghedini

[SECURITY] [DSA 4136-1] curl security update Alessandro Ghedini (Mar 14)

Apple Product Security

APPLE-SA-2018-3-29-4 Xcode 9.3 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-7 iTunes 12.7.4 for Windows Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-2 watchOS 4.3 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-8 iCloud for Windows 7.4 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-3 tvOS 11.3 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-1 iOS 11.3 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-6 Safari 11.1 Apple Product Security (Mar 29)
APPLE-SA-2018-3-29-5 macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan Apple Product Security (Mar 29)

cyber-psrt

[security bulletin] MFSBGN03801 rev.1 - Micro Focus Operations Orchestration, Remote Denial of Service (DoS) cyber-psrt (Mar 02)

Defense Code

DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery Defense Code (Mar 06)
DefenseCode Security Advisory: Magento Multiple Stored Cross-Site Scripting Vulnerabilities Defense Code (Mar 06)
DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Downloadable Products Defense Code (Mar 06)
DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Product Attributes Defense Code (Mar 06)
DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery Defense Code (Mar 06)

FreeBSD Security Advisories

FreeBSD Security Advisory FreeBSD-SA-18:03.speculative_execution FreeBSD Security Advisories (Mar 14)
FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec [REVISED] FreeBSD Security Advisories (Mar 07)
FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec FreeBSD Security Advisories (Mar 07)

Gary Frank

Unsubscribe - Re: CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries Gary Frank (Mar 21)
Unsubscribe - Re: ES2018-05 Kamailio heap overflow Gary Frank (Mar 21)

john . fitzpatrick

[CVE-2017-1205] IBM Spectrum LSF Privilege Escalation john . fitzpatrick (Mar 19)

KoreLogic Disclosures

KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service KoreLogic Disclosures (Mar 06)
KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service KoreLogic Disclosures (Mar 05)

Kotas, Kevin J

CA20180328-01: Security Notice for CA API Developer Portal Kotas, Kevin J (Mar 28)

Luciano Bello

[SECURITY] [DSA 4152-1] mupdf security update Luciano Bello (Mar 27)

Matthew Hart

Advisory - Bitbucket Server - CVE-2018-5225 Matthew Hart (Mar 21)

Moritz Muehlenhoff

[SECURITY] [DSA 4155-1] thunderbird security update Moritz Muehlenhoff (Mar 28)
[SECURITY] [DSA 4149-1] plexus-utils2 security update Moritz Muehlenhoff (Mar 22)
[SECURITY] [DSA 4148-1] kamailio security update Moritz Muehlenhoff (Mar 22)
[SECURITY] [DSA 4131-1] xen security update Moritz Muehlenhoff (Mar 06)
[SECURITY] [DSA 4129-1] freexl security update Moritz Muehlenhoff (Mar 06)
[SECURITY] [DSA 4146-1] plexus-utils security update Moritz Muehlenhoff (Mar 21)
[SECURITY] [DSA 4145-1] gitlab security update Moritz Muehlenhoff (Mar 19)
[SECURITY] [DSA 4131-1] xen security update Moritz Muehlenhoff (Mar 05)
[SECURITY] [DSA 4129-1] freexl security update Moritz Muehlenhoff (Mar 05)
[SECURITY] [DSA 4137-1] libvirt security update Moritz Muehlenhoff (Mar 14)
[SECURITY] [DSA 4139-1] firefox-esr security update Moritz Muehlenhoff (Mar 16)
[SECURITY] [DSA 4132-1] libvpx security update Moritz Muehlenhoff (Mar 05)
[SECURITY] [DSA 4143-1] firefox-esr security update Moritz Muehlenhoff (Mar 19)
[SECURITY] [DSA 4144-1] openjdk-8 security update Moritz Muehlenhoff (Mar 19)
[SECURITY] [DSA 4153-1] firefox-esr security update Moritz Muehlenhoff (Mar 27)
[SECURITY] [DSA 4150-1] icu security update Moritz Muehlenhoff (Mar 26)

RedTeam Pentesting GmbH

[RT-SA-2018-001] Arbitrary Redirect in Tuleap RedTeam Pentesting GmbH (Mar 08)
[RT-SA-2017-012] Shopware Cart Accessible by Third-Party Websites RedTeam Pentesting GmbH (Mar 13)

(RS) Tyler Schroder

RedCoded ISR: Abine Blur Password Manager Insecure Permissions (CVE-2018-8213) (RS) Tyler Schroder (Mar 19)

Salvatore Bonaccorso

[SECURITY] [DSA 4142-1] uwsgi security update Salvatore Bonaccorso (Mar 19)
[SECURITY] [DSA 4134-1] util-linux security update Salvatore Bonaccorso (Mar 12)
[SECURITY] [DSA 4157-1] openssl security update Salvatore Bonaccorso (Mar 29)
[SECURITY] [DSA 4154-1] net-snmp security update Salvatore Bonaccorso (Mar 28)
[SECURITY] [DSA 4120-2] linux regression update Salvatore Bonaccorso (Mar 05)
[SECURITY] [DSA 4140-1] libvorbis security update Salvatore Bonaccorso (Mar 19)
[SECURITY] [DSA 4151-1] librelp security update Salvatore Bonaccorso (Mar 26)
[SECURITY] [DSA 4130-1] dovecot security update Salvatore Bonaccorso (Mar 05)
[SECURITY] [DSA 4135-1] samba security update Salvatore Bonaccorso (Mar 13)
[SECURITY] [DSA 4133-1] isc-dhcp security update Salvatore Bonaccorso (Mar 07)
[SECURITY] [DSA 4141-1] libvorbisidec security update Salvatore Bonaccorso (Mar 19)
[SECURITY] [DSA 4158-1] openssl1.0 security update Salvatore Bonaccorso (Mar 29)
[SECURITY] [DSA 4156-1] drupal7 security update Salvatore Bonaccorso (Mar 28)

Sandro Gauci

ES2018-05 Kamailio heap overflow Sandro Gauci (Mar 20)

Sebastien Delafond

[SECURITY] [DSA 4128-1] trafficserver security update Sebastien Delafond (Mar 05)
[SECURITY] [DSA 4138-1] mbedtls security update Sebastien Delafond (Mar 15)
[SECURITY] [DSA 4147-1] polarssl security update Sebastien Delafond (Mar 21)
[SECURITY] [DSA 4128-1] trafficserver security update Sebastien Delafond (Mar 06)

SEC Consult Vulnerability Lab

SEC Consult SA-20180314-0 :: Arbitrary Shortcode Execution & Local File Inclusion in WooCommerce Products Filter (PluginUs.Net) SEC Consult Vulnerability Lab (Mar 14)
SEC Consult SA-20180312-0 :: Multiple Critical Vulnerabilities in SecurEnvoy SecurMail SEC Consult Vulnerability Lab (Mar 13)

Secunia Research

Secunia Research: Microsoft Windows Embedded OpenType Font Engine "MTX_IS_MTX_Data()" Information Disclosure Vulnerability Secunia Research (Mar 21)
Secunia Research: Microsoft Windows Embedded OpenType Font Engine Font Glyphs Handling Information Disclosure Vulnerability Secunia Research (Mar 21)
Secunia Research: Microsoft Windows Embedded OpenType Font Engine hdmx Table Information Disclosure Vulnerability Secunia Research (Mar 21)
Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities Secunia Research (Mar 16)

Securify B.V.

Cross-Site Scripting vulnerability in Zimbra Collaboration Suite due to the way it handles attachment links Securify B.V. (Mar 26)

Slackware Security Team

[Newsletter/Marketing] [slackware-security] ntp (SSA:2018-060-02) Slackware Security Team (Mar 02)
[slackware-security] ruby (SSA:2018-088-01) Slackware Security Team (Mar 29)
[slackware-security] mozilla-firefox (SSA:2018-075-01) Slackware Security Team (Mar 19)
[slackware-security] curl (SSA:2018-074-01) Slackware Security Team (Mar 16)
[slackware-security] libvorbis (SSA:2018-076-01) Slackware Security Team (Mar 19)
[Newsletter/Marketing] [slackware-security] dhcp (SSA:2018-060-01) Slackware Security Team (Mar 02)
[slackware-security] mozilla-firefox (SSA:2018-072-01) Slackware Security Team (Mar 14)
[slackware-security] mozilla-firefox (SSA:2018-085-01) Slackware Security Team (Mar 26)
[slackware-security] samba (SSA:2018-072-02) Slackware Security Team (Mar 14)
[slackware-security] mozilla-thunderbird (SSA:2018-082-01) Slackware Security Team (Mar 26)

spinfoo

CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor spinfoo (Mar 02)
CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor spinfoo (Mar 05)

Thijs Kinkhorst

[SECURITY] [DSA 4127-1] simplesamlphp security update Thijs Kinkhorst (Mar 02)
[SECURITY] [DSA 4127-1] simplesamlphp security update Thijs Kinkhorst (Mar 05)

Vulnerability Lab

Microsoft Skype Mobile v81.2 & v8.13 - Remote Denial of Service Vulnerability Vulnerability Lab (Mar 27)
AEF CMS v1.0.9 - (PM) Persistent Cross Site Scripting Vulnerability Vulnerability Lab (Mar 27)
Weblication CMS Core & Grid v12.6.24 - Multiple Cross Site Scripting Vulnerabilities Vulnerability Lab (Mar 27)
Sandoba CP:Shop CMS v2016.1 - Multiple Cross Site Scripting Vulnerabilities Vulnerability Lab (Mar 27)

Williams, Ken

CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center Williams, Ken (Mar 29)

x ksi

Kaseya AgentMon.exe <= 9.3.0.11 - Local Privilege Escalation x ksi (Mar 22)
ModSecurity WAF 3.0 for Nginx - Denial of Service x ksi (Mar 22)
Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal x ksi (Mar 22)

Previous period

Next period