Bugtraq: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

54 messages starting Jan 16 19 and ending Jan 28 19
Date index | Thread index | Author index

Advisories

CVE-2018-13798 Siemens - SICAM A8000 Series Webinterface XXE DoS Advisories (Jan 16)

apparitionsec

Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920 apparitionsec (Jan 14)
Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920 apparitionsec (Jan 14)
Microsoft Windows ".contact" File HTML Injection Mailto: Link Remote Code Execution 0day ZDI-CAN-75 apparitionsec (Jan 27)

Apple Product Security

APPLE-SA-2019-1-22-4 tvOS 12.1.2 Apple Product Security (Jan 22)
APPLE-SA-2019-1-22-3 watchOS 5.1.3 Apple Product Security (Jan 22)
APPLE-SA-2019-1-22-5 Safari 12.0.3 Apple Product Security (Jan 22)
APPLE-SA-2019-1-22-6 iCloud for Windows 7.10 Apple Product Security (Jan 22)
APPLE-SA-2019-1-24-1 iTunes 12.9.3 for Windows Apple Product Security (Jan 24)
APPLE-SA-2019-1-22-1 iOS 12.1.3 Apple Product Security (Jan 22)
APPLE-SA-2019-1-22-2 macOS Mojave 10.14.3, Security Update 2019-001 High Sierra, Security Update 2019-001 Sierra Apple Product Security (Jan 22)

christian . pappas

[SYSS-2018-011] Portier - SQL Injection christian . pappas (Jan 13)
[SYSS-2018-011] Portier - Cryptographic Issues christian . pappas (Jan 13)

James Williams

Fwd: CA20190124-01: Security Notice for CA Automic Workload Automation James Williams (Jan 28)

Kevin Kotas

CA20190117-01: Security Notice for CA Service Desk Manager Kevin Kotas (Jan 20)

Micha Borrmann

[SYSS-2018-043] Authentication Bypass in Kentix MultiSensor LAN - CVE-2018-19783 Micha Borrmann (Jan 18)
[SYSS-2018-042] XSS in HMS Netbiter WS100 - CVE-2018-19694 Micha Borrmann (Jan 13)

Moritz Muehlenhoff

[SECURITY] [DSA 4366-1] vlc security update Moritz Muehlenhoff (Jan 13)
[SECURITY] [DSA 4364-1] ruby-loofah security update Moritz Muehlenhoff (Jan 08)
[SECURITY] [DSA 4369-1] xen security update Moritz Muehlenhoff (Jan 14)
[SECURITY] [DSA 4377-1] rssh security update Moritz Muehlenhoff (Jan 30)
[SECURITY] [DSA 4368-1] zeromq3 security update Moritz Muehlenhoff (Jan 14)
[SECURITY] [DSA 4362-1] thunderbird security update Moritz Muehlenhoff (Jan 02)
[SECURITY] [DSA 4370-1] drupal7 security update Moritz Muehlenhoff (Jan 18)
[SECURITY] [DSA 4363-1] python-django security update Moritz Muehlenhoff (Jan 08)
[SECURITY] [DSA 4376-1] firefox-esr security update Moritz Muehlenhoff (Jan 30)
[SECURITY] [DSA 4365-1] tmpreaper security update Moritz Muehlenhoff (Jan 10)

Pedro Ribeiro

[Several CVE]: NUUO CMS - multiple vulnerabilities resulting in unauth RCE Pedro Ribeiro (Jan 21)

Qualys Security Advisory

System Down: A systemd-journald exploit Qualys Security Advisory (Jan 09)

RedTeam Pentesting GmbH

[RT-SA-2018-003] Cisco RV320 Unauthenticated Diagnostic Data Retrieval RedTeam Pentesting GmbH (Jan 24)
[RT-SA-2018-004] Cisco RV320 Command Injection RedTeam Pentesting GmbH (Jan 24)
[RT-SA-2018-002] Cisco RV320 Unauthenticated Configuration Export RedTeam Pentesting GmbH (Jan 24)

Salvatore Bonaccorso

[SECURITY] [DSA 4375-1] spice security update Salvatore Bonaccorso (Jan 29)
[SECURITY] [DSA 4372-1] ghostscript security update Salvatore Bonaccorso (Jan 27)
[SECURITY] [DSA 4367-1] systemd security update Salvatore Bonaccorso (Jan 13)
[SECURITY] [DSA 4378-1] php-pear security update Salvatore Bonaccorso (Jan 30)
[SECURITY] [DSA 4367-2] systemd regression update Salvatore Bonaccorso (Jan 16)

Sebastien Delafond

[SECURITY] [DSA 4374-1] qtbase-opensource-src security update Sebastien Delafond (Jan 28)

SEC Consult Vulnerability Lab

SEC Consult SA-20190124-0 :: Cross-site scripting in CA Automic Workload Automation Web Interface (AWI) SEC Consult Vulnerability Lab (Jan 24)
SEC Consult SA-20190109-0 :: Multiple Vulnerabilities in Cisco VoIP Phones (88xx series) SEC Consult Vulnerability Lab (Jan 09)

Security Explorations

[SRP-2018-02] Security of NC+ SAT TV platform and ST chipsets Security Explorations (Jan 22)

simon . moser

[SYSS-2018-037] Pages for Bitbucket Server - Cross-Site Scripting simon . moser (Jan 31)

Slackware Security Team

[slackware-security] irssi (SSA:2019-011-01) Slackware Security Team (Jan 13)
[slackware-security] Slackware 14.2 kernel (SSA:2019-030-01) Slackware Security Team (Jan 30)
[slackware-security] httpd (SSA:2019-022-01) Slackware Security Team (Jan 22)
[slackware-security] zsh (SSA:2019-013-01) Slackware Security Team (Jan 14)
[slackware-security] mozilla-firefox (SSA:2019-029-01) Slackware Security Team (Jan 29)

Stefan Kanthak

Defense in depth -- the Microsoft way (part 59): we only fix every other vulnerability Stefan Kanthak (Jan 20)

Stig Palmquist

CVE-2019-6690: Improper Input Validation in python-gnupg Stig Palmquist (Jan 27)

Valerio Brussani

CVE-2018-13042 - 1Password Android < 7.0 - Denial Of Service Valerio Brussani (Jan 22)

vladimir . bostanov

[SYSS-2018-041] Mozilla Firefox - Information Exposure vladimir . bostanov (Jan 16)

X41 D-Sec GmbH Advisories

X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability in UA-Parser X41 D-Sec GmbH Advisories (Jan 10)

Yves-Alexis Perez

[SECURITY] [DSA 4371-1] apt security update Yves-Alexis Perez (Jan 22)
[SECURITY] [DSA 4373-1] coturn security update Yves-Alexis Perez (Jan 28)

Previous period

Next period