Messages by Thread
-
APPLE-SA-2018-06-01-4 iOS 11.4
Apple Product Security
-
[SECURITY] [DSA 4191-2] redmine regression update
Salvatore Bonaccorso
-
APPLE-SA-2018-06-01-5 watchOS 4.3.1
Apple Product Security
-
[slackware-security] git (SSA:2018-152-01)
Slackware Security Team
-
[SECURITY] [DSA 4217-1] wireshark security update
Moritz Muehlenhoff
-
APPLE-SA-2018-06-01-1 macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan
Apple Product Security
-
APPLE-SA-2018-06-01-2 Safari 11.1.1
Apple Product Security
-
MachForm Multiple Vulnerabilities CVE-2018-6409/CVE-2018-6410/CVE-2018-6411
Amine Taouirsa
-
CVE-2018-11552 AXON PBX 2.02 Cross Site Scripting Vulnerability
mehta . himanshu21
-
[SECURITY] [DSA 4209-1] thunderbird security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4210-1] xen security update
Moritz Muehlenhoff
-
Ruckus (Brocade) ICX7450-48 Reflected Cross Site Scripting
Yavuz Atlas
-
Android OS Didnt use FLAG_SECURE for Sensitive Settings [CVE-2017-13243]
research
-
PHP Login & User Management <= 4.1.0 - Arbitrary File Upload (CVE-2018-11392)
reggie . dodd30
-
[security bulletin] MFSBGN03808 rev.1 - Micro Focus UCMDB, Cross-Site Scripting
cyber-psrt
-
[CVE-2018-8013] Apache Batik information disclosure vulnerability
Simon Steiner
-
K2 smartforms runtime application - 4.6.11 SSRF
fuming22
-
[slackware-security] procps-ng (SSA:2018-142-03)
Slackware Security Team
-
[slackware-security] mozilla-thunderbird (SSA:2018-142-02)
Slackware Security Team
-
[SECURITY] [DSA 4208-1] procps security update
Salvatore Bonaccorso
-
[slackware-security] Slackware 14.2 kernel (SSA:2018-142-01)
Slackware Security Team
-
[SECURITY] [DSA 4207-1] packagekit security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4206-1] gitlab security update
Moritz Muehlenhoff
-
Qualys Security Advisory - Procps-ng Audit Report
Qualys Security Advisory
-
[SECURITY] [DSA 4205-1] Advance notification for upcoming end-of-life for
Moritz Muehlenhoff
-
[SECURITY] [DSA 4204-1] imagemagick security update
Sebastien Delafond
-
[SYSS-2018-007] ILIAS e-Learning - Reflected Cross-Site-Scripting
Moritz Bechler
-
MagniComp SysInfo Information Exposure [CVE-2018-7268]
Harry Sintonen
-
[SECURITY] [DSA 4203-1] vlc security update
Moritz Muehlenhoff
-
[slackware-security] curl (SSA:2018-136-01)
Slackware Security Team
-
[slackware-security] php (SSA:2018-136-02)
Slackware Security Team
-
[SECURITY] [DSA 4202-1] curl security update
Alessandro Ghedini
-
CVE-2018-11101: Signal-desktop HTML tag injection variant 2
Alfredo Ortega
-
SEC Consult SA-20180516-0 :: XXE & XSS vulnerabilities in RSA Authentication Manager
SEC Consult Vulnerability Lab
-
[SECURITY] [DSA 4201-1] xen security update
Moritz Muehlenhoff
-
CSNC-2018-003 totemomail Encryption Gateway - Cross-Site Request Forgery
Advisories
-
CSNC-2018-002 totemomail Encryption Gateway - JSONP hijacking
Advisories
-
CVE-2018-10994: HTML tag injection in Signal-desktop
Alfredo Ortega
-
[SECURITY] [DSA 4200-1] kwallet-pam security update
Moritz Muehlenhoff
-
SEC Consult SA-20180514-0 :: Arbitrary File Upload & Cross-site scripting in MyBiz MyProcureNet
SEC Consult Vulnerability Lab
-
Vulnerabilities in IBMs Flashsystems and Storwize Products
Sebastian Neuner
-
[security bulletin] MFSBGN03807 rev.1 - HP Service Manager Software, SQL Injection
cyber-psrt
-
[SECURITY] [DSA 4199-1] firefox-esr security update
Moritz Muehlenhoff
-
[slackware-security] mariadb (SSA:2018-130-01)
Slackware Security Team
-
[security bulletin] MFSBGN03805 - HP Service Manager, Remote Disclosure of Information
cyber-psrt
-
[slackware-security] mozilla-firefox (SSA:2018-129-01)
Slackware Security Team
-
[slackware-security] wget (SSA:2018-129-02)
Slackware Security Team
-
[SECURITY] [DSA 4197-1] wavpack security updaze
Moritz Muehlenhoff
-
[security bulletin] MFSBGN03804 - HP Service Manager Software, Remote Disclosure of Information
cyber-psrt
-
[SECURITY] [DSA 4198-1] prosody security update
Moritz Muehlenhoff
-
[security bulletin] MFSBGN03806 rev.1 - HP Network Automation Software, Network Operations Management (NOM) Suite, Multiple Vulnerabilities
cyber-psrt
-
t2'18: Call For Papers 2018 (Helsinki, Finland)
Tomi Tuominen
-
[ADV170017] Defense in depth -- the Microsoft way (part 54): escalation of privilege during installation of Microsoft Office 20xy
Stefan Kanthak
-
[SECURITY] [DSA 4196-1] linux security update
Salvatore Bonaccorso
-
FreeBSD Security Advisory FreeBSD-SA-18:06.debugreg
FreeBSD Security Advisories
-
APPLE-SA-2018-05-08-1 Additional information for APPLE-SA-2018-04-24-2 Security Update 2018-001
Apple Product Security
-
[SECURITY] [DSA 4195-1] wget security update
Salvatore Bonaccorso
-
WebKitGTK+ Security Advisory WSA-2018-0004
Michael Catanzaro
-
[SECURITY] [DSA 4194-1] lucene-solr security update
Moritz Muehlenhoff
-
CANADIAN JOB VACANCY!!!
SUNCOR ENERGY
-
[SECURITY] [DSA 4193-1] wordpress security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4192-1] libmad security update
Moritz Muehlenhoff
-
[slackware-security] python (SSA:2018-124-01)
Slackware Security Team
-
APPLE-SA-2018-05-04-1 Security Update 2018-001 Swift 4.1.1 for Ubuntu 14.04
Apple Product Security
-
[slackware-security] seamonkey (SSA:2018-123-01)
Slackware Security Team
-
Updated VMSA-2018-0007.3: VMware Virtual Appliance updates address side-channel analysis due to speculative execution
VMware Security Response Center
-
[SECURITY] [DSA 4191-1] redmine security update
Sebastien Delafond
-
[SECURITY] [DSA 4190-1] jackson-databind security update
Sebastien Delafond
-
SEC Consult SA-20180503-0 :: Authentication Bypass in Oracle Access Manager (OAM)
SEC Consult Vulnerability Lab
-
Command injections via USB upgrade in MSTAR Set-Top box products
IM
-
[SECURITY] [DSA 4189-1] quassel security update
Moritz Muehlenhoff
-
CA20180501-01: Security Notice for CA Spectrum
Kotas, Kevin J
-
[SECURITY] [DSA 4188-1] linux security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4187-1] linux security update
Ben Hutchings
-
Trovebox <= 4.0.0-rc6 Authentication Bypass, SQLi, SSRF
robin . verton
-
CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability
Akira Ajisaka
-
[slackware-security] libwmf (SSA:2018-120-01)
Slackware Security Team
-
[slackware-security] mozilla-firefox (SSA:2018-120-02)
Slackware Security Team
-
Advisory - Sourcetree for Windows - CVE-2018-5226
Atlassian
-
[SECURITY] [DSA 4186-1] gunicorn security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4184-1] sdl-image1.2 security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4183-1] tor security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4185-1] openjdk-8 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4181-1] roundcube security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4182-1] chromium-browser security update
Michael Gilbert
-
[slackware-security] openvpn (SSA:2018-116-01)
Slackware Security Team
-
[HITB-Announce] HITBGSEC2018 CFP - Final Call
Hafez Kamal
-
[SECURITY] [DSA 4180-1] drupal7 security update
Salvatore Bonaccorso
-
Secunia Research: Oracle Outside In Technology Use-After-Free Vulnerability
Secunia Research
-
APPLE-SA-2018-04-24-2 Security Update 2018-001
Apple Product Security
-
APPLE-SA-2018-04-24-1 iOS 11.3.1
Apple Product Security
-
APPLE-SA-2018-04-24-3 Safari 11.1 (v. 11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4)
Apple Product Security
-
SEC Consult SA-20180424-0 :: Reflected Cross-Site Scripting in multiple Zyxel ZyWALL products
SEC Consult Vulnerability Lab
-
[SECURITY] [DSA 4179-1] linux-tools security update
Salvatore Bonaccorso
-
SEC Consult SA-20180423-0 :: Multiple Stored XSS Vulnerabilities in WSO2 Carbon and Dashboard Server
SEC Consult Vulnerability Lab
-
[SECURITY] [DSA 4176-1] mysql-5.5 security update
Salvatore Bonaccorso
-
Seagate Media Server path traversal vulnerability
Summer of Pwnage
-
[SECURITY] [DSA 4175-1] freeplane security update
Salvatore Bonaccorso
-
[SE-2011-01] The origin and impact of vulnerabilities in ST chipsets
Security Explorations
-
[SECURITY] [DSA 4178-1] libreoffice security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4177-1] libsdl2-image security update
Moritz Muehlenhoff
-
Seagate Media Server stored Cross-Site Scripting vulnerability
Summer of Pwnage
-
[slackware-security] gd (SSA:2018-108-01)
Slackware Security Team
-
WebKitGTK+ Security Advisory WSA-2018-0003
Michael Catanzaro
-
[SECURITY] [DSA 4174-1] corosync security update
Sebastien Delafond
-
[SECURITY] [DSA 4173-1] r-cran-readxl security update
Moritz Muehlenhoff
-
[security bulletin] MFSBGN03802 - Virtualization Performance Viewer (vPV) / Cloud Optimizer, Local Disclosure of Information
cyber-psrt
-
[security bulletin] MFSBGN03803 rev.1 - UCMDB, Installation File Access Control Privilege Escalation Vulnerability
cyber-psrt
-
[SECURITY] [DSA 4079-2] poppler regression update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4169-1] pcs security update
Yves-Alexis Perez
-
Call for Papers: USENIX Workshop on Offensive Technologies (WOOT '18)
Yves Younan
-
secuvera-SA-2017-04: SQL-Injection Vulnerability in OCS Inventory NG ocsreports Web application
Simon Bieber
-
[SECURITY] [DSA 4170-1] pjproject security update
Moritz Muehlenhoff
-
Defense in depth -- the Microsoft way (part 53): our MSRC doesn't know how Windows handles PATH
Stefan Kanthak
-
secuvera-SA-2017-03: Reflected Cross-Site-Scripting Vulnerabilities in OCS Inventory NG ocsreports Web application
Simon Bieber
-
[RT-SA-2017-014] CyberArk Password Vault Web Access Remote Code Execution
RedTeam Pentesting GmbH
-
[SECURITY] [DSA 4168-1] squirrelmail security update
Salvatore Bonaccorso
-
[RT-SA-2017-015] CyberArk Password Vault Memory Disclosure
RedTeam Pentesting GmbH
-
[slackware-security] patch (SSA:2018-096-01)
Slackware Security Team
-
[SECURITY] [DSA 4167-1] sharutils security update
Luciano Bello
-
Advisory - Fisheye and Crucible - CVE-2018-5223
Atlassian
-
Advisory - Bamboo - CVE-2018-5224
Atlassian
-
[SECURITY] [DSA 4166-1] openjdk-7 security update
Moritz Muehlenhoff
-
FreeBSD Security Advisory FreeBSD-SA-18:05.ipsec
FreeBSD Security Advisories
-
FreeBSD Security Advisory FreeBSD-SA-18:04.vt
FreeBSD Security Advisories
-
[SECURITY] [DSA 4165-1] ldap-account-manager security update
Luciano Bello
-
[SECURITY] [DSA 4164-1] apache2 security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4163-1] beep security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4161-1] python-django security update
Luciano Bello
-
[SECURITY] [DSA 4162-1] irssi security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4159-1] remctl security update
Moritz Muehlenhoff
-
[slackware-security] php (SSA:2018-090-01)
Slackware Security Team
-
[SECURITY] [DSA 4160-1] libevt security update
Moritz Muehlenhoff
-
APPLE-SA-2018-3-29-8 iCloud for Windows 7.4
Apple Product Security
-
APPLE-SA-2018-3-29-2 watchOS 4.3
Apple Product Security
-
APPLE-SA-2018-3-29-4 Xcode 9.3
Apple Product Security
-
CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center
Williams, Ken
-
APPLE-SA-2018-3-29-5 macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan
Apple Product Security
-
APPLE-SA-2018-3-29-3 tvOS 11.3
Apple Product Security
-
[slackware-security] ruby (SSA:2018-088-01)
Slackware Security Team
-
[SECURITY] [DSA 4158-1] openssl1.0 security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4157-1] openssl security update
Salvatore Bonaccorso
-
APPLE-SA-2018-3-29-7 iTunes 12.7.4 for Windows
Apple Product Security
-
APPLE-SA-2018-3-29-6 Safari 11.1
Apple Product Security
-
APPLE-SA-2018-3-29-1 iOS 11.3
Apple Product Security
-
[SECURITY] [DSA 4156-1] drupal7 security update
Salvatore Bonaccorso
-
CA20180328-01: Security Notice for CA API Developer Portal
Kotas, Kevin J
-
[SECURITY] [DSA 4155-1] thunderbird security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4154-1] net-snmp security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4153-1] firefox-esr security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4152-1] mupdf security update
Luciano Bello
-
Microsoft Skype Mobile v81.2 & v8.13 - Remote Denial of Service Vulnerability
Vulnerability Lab
-
Sandoba CP:Shop CMS v2016.1 - Multiple Cross Site Scripting Vulnerabilities
Vulnerability Lab
-
Weblication CMS Core & Grid v12.6.24 - Multiple Cross Site Scripting Vulnerabilities
Vulnerability Lab
-
AEF CMS v1.0.9 - (PM) Persistent Cross Site Scripting Vulnerability
Vulnerability Lab
-
[slackware-security] mozilla-firefox (SSA:2018-085-01)
Slackware Security Team
-
[SECURITY] [DSA 4151-1] librelp security update
Salvatore Bonaccorso
-
[slackware-security] mozilla-thunderbird (SSA:2018-082-01)
Slackware Security Team
-
Cross-Site Scripting vulnerability in Zimbra Collaboration Suite due to the way it handles attachment links
Securify B.V.
-
[SECURITY] [DSA 4150-1] icu security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4149-1] plexus-utils2 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4148-1] kamailio security update
Moritz Muehlenhoff
-
ModSecurity WAF 3.0 for Nginx - Denial of Service
x ksi
-
Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal
x ksi
-
Kaseya AgentMon.exe <= 9.3.0.11 - Local Privilege Escalation
x ksi
-
Secunia Research: Microsoft Windows Embedded OpenType Font Engine hdmx Table Information Disclosure Vulnerability
Secunia Research
-
Secunia Research: Microsoft Windows Embedded OpenType Font Engine "MTX_IS_MTX_Data()" Information Disclosure Vulnerability
Secunia Research
-
Advisory - Bitbucket Server - CVE-2018-5225
Matthew Hart
-
Secunia Research: Microsoft Windows Embedded OpenType Font Engine Font Glyphs Handling Information Disclosure Vulnerability
Secunia Research
-
[SECURITY] [DSA 4147-1] polarssl security update
Sebastien Delafond
-
[SECURITY] [DSA 4146-1] plexus-utils security update
Moritz Muehlenhoff
-
CSNC-2017-026 Microsoft Intune - Preserved Keychain Entries
Advisories
-
ES2018-05 Kamailio heap overflow
Sandro Gauci
-
[SECURITY] [DSA 4144-1] openjdk-8 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4143-1] firefox-esr security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4142-1] uwsgi security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4145-1] gitlab security update
Moritz Muehlenhoff
-
[slackware-security] libvorbis (SSA:2018-076-01)
Slackware Security Team
-
[slackware-security] mozilla-firefox (SSA:2018-075-01)
Slackware Security Team
-
[SECURITY] [DSA 4140-1] libvorbis security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4141-1] libvorbisidec security update
Salvatore Bonaccorso
-
[CVE-2017-1205] IBM Spectrum LSF Privilege Escalation
john . fitzpatrick
-
[SECURITY] [DSA 4139-1] firefox-esr security update
Moritz Muehlenhoff
-
[slackware-security] curl (SSA:2018-074-01)
Slackware Security Team
-
[SECURITY] [DSA 4138-1] mbedtls security update
Sebastien Delafond
-
[SECURITY] [DSA 4137-1] libvirt security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4136-1] curl security update
Alessandro Ghedini
-
SEC Consult SA-20180314-0 :: Arbitrary Shortcode Execution & Local File Inclusion in WooCommerce Products Filter (PluginUs.Net)
SEC Consult Vulnerability Lab
-
FreeBSD Security Advisory FreeBSD-SA-18:03.speculative_execution
FreeBSD Security Advisories
-
[slackware-security] mozilla-firefox (SSA:2018-072-01)
Slackware Security Team
-
[slackware-security] samba (SSA:2018-072-02)
Slackware Security Team
-
[RT-SA-2017-012] Shopware Cart Accessible by Third-Party Websites
RedTeam Pentesting GmbH
-
[SECURITY] [DSA 4135-1] samba security update
Salvatore Bonaccorso
-
SEC Consult SA-20180312-0 :: Multiple Critical Vulnerabilities in SecurEnvoy SecurMail
SEC Consult Vulnerability Lab
-
[SECURITY] [DSA 4134-1] util-linux security update
Salvatore Bonaccorso
-
[RT-SA-2018-001] Arbitrary Redirect in Tuleap
RedTeam Pentesting GmbH