| Security Advisories & Vulnerabilities |
| Showing 'Security Advisories & Vulnerabilities' from 21 to 30|
| |[slackware-security] Zsh (SSA:2019-013-01) 14th Jan 2019 [6 days ago] from Seclist Posted by Slackware Security Team on Jan 14[slackware-security] zsh (SSA:2019-013-01)New zsh packages are available for Slackware 14.0, 14.1, and 14.2 to
fix security issues.Here are the details from the Slackware 14.2 ChangeLog:
| |X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability In UA-Parser 10th Jan 2019 [9 days ago] from Seclist Posted by X41 D-Sec GmbH Advisories on Jan 10X41 D-SEC GmbH Security Advisory: X41-2018-009ReDoS Vulnerability in UA-ParserSeverity Rating: Medium
Confirmed Affected Versions: 2015-05-14 and newer, commit
| |[SECURITY] [DSA 4365-1] Tmpreaper Security Update 10th Jan 2019 [9 days ago] from Seclist Posted by Moritz Muehlenhoff on Jan 10-
Debian Security Advisory DSA-4365-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 10, 2019 https://www.debian.org/security/faq
| |Shield CMS 2.2 Cross Site Request Forgery / SQL Injection Shield CMS version 2.2 suffers from cross site request forgery and remote SQL injection vulnerabilities.
| |Systemd-journald Memory Corruption / Information Leak This is a thorough analysis of how Qualys approached exploiting three vulnerabilities in systemd-journald. Although they have not released formal exploits yet, they detail in here is useful in understanding the flaws.
| |Cisco VoIP Script Insertion / Weak Passwords / Undocumented Functionality Cisco VoIP phone such as models 88XX suffer from script insertion, weak and hard-coded passwords, undocumented debug functionality, and various outdated components with known vulnerabilities.
| |System Down: A Systemd-journald Exploit 9th Jan 2019 [10 days ago] from Seclist Posted by Qualys Security Advisory on Jan 09Qualys Security AdvisorySystem Down: A systemd-journald exploit
| |SEC Consult SA-20190109-0 :: Multiple Vulnerabilities In Cisco VoIP Phones (88xx Series) 9th Jan 2019 [10 days ago] from Seclist Posted by SEC Consult Vulnerability Lab on Jan 09SEC Consult Vulnerability Lab Security Advisory 20190109-0
===title: Multiple Vulnerabilitiesproduct: Cisco VoIP Phones, e.g. models 88XXvulnerable version: See list of vulnerable devices/firmwares...
| |ZenPhoto 1.4.14 Cross Site Scripting ZenPhoto version 1.4.14 suffers from multiple cross site scripting vulnerabilities.
| |Webgalamb Information Disclosure / XSS / CSRF / SQL Injection Webgalamb suffers from remote code execution, cross site request forgery, cross site scripting, information leakage, and remote SQL injection vulnerabilities.
| « Newer 1 2 3 4 5 6 7 8 9 10 Older » |