bugtraq  

Messages by Date

• 2016/08/08 phpCollab v2.5 CMS - SQL Injection Vulnerability Vulnerability Lab
• 2016/08/08 vBulletin <= 5.2.2 Preauth Server Side Request Forgery (SSRF) Dawid Golunski
• 2016/08/08 [slackware-security] openssh (SSA:2016-219-03) Slackware Security Team
• 2016/08/08 [slackware-security] curl (SSA:2016-219-01) Slackware Security Team
• 2016/08/08 [slackware-security] stunnel (SSA:2016-219-04) Slackware Security Team
• 2016/08/08 [slackware-security] mozilla-firefox (SSA:2016-219-02) Slackware Security Team
• 2016/08/08 [SECURITY] [DSA 3643-1] kde4libs security update Salvatore Bonaccorso
• 2016/08/08 [SECURITY] [DSA 3642-1] lighttpd security update Sebastien Delafond
• 2016/08/05 Ecwid Ecommerce Shopping Cart WordPress Plugin unauthenticated PHP Object injection vulnerability Summer of Pwnage
• 2016/08/05 DLL side loading vulnerability in VMware Host Guest Client Redirector Securify B.V.
• 2016/08/05 [SYSS-2016-063] VMware ESXi 6 - Improper Input Validation (CWE-20) matthias . deeg
• 2016/08/05 [SYSS-2016-063] VMware ESXi 6 - Improper Input Validation (CWE-20) matthias . deeg
• 2016/08/05 [SYSS-2016-063] VMware ESXi 6 - Improper Input Validation (CWE-20) matthias . deeg
• 2016/08/05 Sophos Mobile Control EAS Proxy Open Reverse Proxy vulnerability (CVE-2016-6597) Tim Kretschmann
• 2016/08/05 Sophos Mobile Control EAS Proxy Open Reverse Proxy vulnerability (CVE-2016-6597) Tim Kretschmann
• 2016/08/05 FortiCloud - (Reports Summary) Multiple Persistent Vulnerabilities Vulnerability Lab
• 2016/08/05 Subrion v4.0.5 CMS - SQL Injection Vulnerability Vulnerability Lab
• 2016/08/05 Typesettercms v5.0.1 - (Delete Files) CSRF Vulnerability Vulnerability Lab
• 2016/08/05 [0day] net2ftp multiple XSS on unauthenticated users Jacobo Avariento
• 2016/08/04 Stored Cross-Site Scripting vulnerability in Count per Day WordPress Plugin Summer of Pwnage
• 2016/08/04 Cross-Site Scripting in Count per Day WordPress Plugin Summer of Pwnage
• 2016/08/04 Cross-Site Scripting in FormBuilder WordPress Plugin Summer of Pwnage
• 2016/08/04 Cross-Site Scripting vulnerability in Events Made Easy WordPress plugin Summer of Pwnage
• 2016/08/04 Re: Multiple remote vulnerabilities (RCE, bof) in Nuuo NVR and NETGEAR Surveillance Pedro Ribeiro
• 2016/08/04 Multiple remote vulnerabilities (RCE, bof) in Nuuo NVR and NETGEAR Surveillance Pedro Ribeiro
• 2016/08/04 Cisco Security Advisory: Cisco IOS Software Crafted Network Time Protocol Packets Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/08/04 [SECURITY] [DSA 3641-1] openjdk-7 security update Moritz Muehlenhoff
• 2016/08/04 [SYSS-2016-065] NASdeluxe NDL-2400r: OS Command Injection klaus . eisentraut
• 2016/08/04 FortiManager (Series) - (Bookmark) Persistent Vulnerability Vulnerability Lab
• 2016/08/04 FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Web Vulnerability Vulnerability Lab
• 2016/08/04 Cross-Site Scripting in WordPress Landing Pages Plugin Summer of Pwnage
• 2016/08/04 Cross-Site Scripting in Activity Log WordPress Plugin Summer of Pwnage
• 2016/08/04 Cross-Site Scripting vulnerability in search function Activity Log WordPress Plugin Summer of Pwnage
• 2016/08/04 [SECURITY] [DSA 3640-1] firefox-esr security update Moritz Muehlenhoff
• 2016/08/03 Secunia Research: LibGD "_gdContributionsAlloc()" Integer Overflow Denial of Service Vulnerability Secunia Research
• 2016/08/03 [security bulletin] HPSBGN03633 rev.1 - HPE Release Control, Remote Denial of Service (DoS), Disclosure of Information, Unauthorized Access to Files or Server-Side Request Forgery(SSRF) security-alert
• 2016/08/03 Cisco Security Advisory: Cisco RV180 VPN and RV180W Wireless-N Multifunction VPN Routers Remote Code Execution Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/08/03 Cisco Security Advisory: Cisco RV180 VPN and RV180W Wireless-N Multifunction VPN Routers Unauthorized Access Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/08/03 Cisco Security Advisory: Cisco RV110W, RV130W, and RV215W Routers Static Credential Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/08/03 Cisco Security Advisory: Cisco Unified Communications Manager IM and Presence Service SIP Packet Processing Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/08/03 [SECURITY] [DSA 3639-1] wordpress security update Salvatore Bonaccorso
• 2016/08/03 [SECURITY] [DSA 3638-1] curl security update Alessandro Ghedini
• 2016/08/03 WorldCIST'17 - Call for Workshops Proposals; Deadline: September 5 Maria Lemos
• 2016/08/03 Arbitrary File Content Disclosure in Atutor High-Tech Bridge Security Research
• 2016/08/02 Cross-Site Scripting in WangGuard WordPress Plugin Summer of Pwnage
• 2016/08/02 Cross-Site Scripting in Uji Countdown WordPress Plugin Summer of Pwnage
• 2016/08/02 WinSaber - Unquoted Service Path Privilege Escalation Vulnerability Lab
• 2016/08/02 Docebo LMS 6.9 - (Moxie) API Calls RST Remote Code Execution Vulnerability Vulnerability Lab
• 2016/08/02 Zoll ePCR v2.6.4 iOS - Multiple Persistent Vulnerabilities Vulnerability Lab
• 2016/08/02 Car CMS v3.00.30 - Search Cross Site Scripting Vulnerability Vulnerability Lab
• 2016/08/02 Guppy CMS v5.01.03 - Client Side Cross Site Scripting Web Vulnerability Vulnerability Lab
• 2016/08/02 FortiManager (Series) - Multiple Web Vulnerabilities Vulnerability Lab
• 2016/08/01 [security bulletin] HPSBGN03564 rev.2 - HPE Release Control using Java Deserialization, Remote Code Execution security-alert
• 2016/08/01 [security bulletin] HPSBUX03632 SSRT110194 rev.1 - HP-UX Mail Server running Sendmail, Local Unauthorized Disclosure of Information security-alert
• 2016/08/01 [CVE-2016-6480] Double-Fetch Vulnerability in Linux-4.5/drivers/scsi/aacraid/commctrl.c wpengfeinudt
• 2016/08/01 Cross-Site Request Forgery in ALO EasyMail Newsletter WordPress Plugin Summer of Pwnage
• 2016/08/01 Kaspersky Safe Browser iOS Application - MITM SSL Certificate Vulnerability (CVE-2016-6231) David Coomber
• 2016/08/01 Car CMS v3.00.30 - Search Cross Site Scripting Vulnerability Vulnerability Lab
• 2016/08/01 Fortinet FortiManager & FortiAnalyzer - (filename) Persistent Web Vulnerability Vulnerability Lab
• 2016/08/01 Cross-Site Scripting in Contact Bank WordPress Plugin Summer of Pwnage
• 2016/08/01 SQL injection vulnerability in Booking Calendar WordPress Plugin Summer of Pwnage
• 2016/08/01 Cross-Site Scripting vulnerability in Booking Calendar WordPress Plugin Summer of Pwnage
• 2016/08/01 [SECURITY] [DSA 3637-1] chromium-browser security update Michael Gilbert
• 2016/08/01 Multiple vulnerabilities in All In One WP Security & Firewall plugin login CAPTCHA Summer of Pwnage
• 2016/08/01 Stored Cross-Site Scripting vulnerability in Easy Testimonials WordPress Plugin Summer of Pwnage
• 2016/08/01 Insert PHP WordPress Plugin allows authenticated user to execute arbitrary PHP Summer of Pwnage
• 2016/08/01 Huawei eSpace IAD Remote Information Disclosure Vulnerability ak47464659484
• 2016/08/01 [SECURITY] [DSA 3634-1] redis security update Sebastien Delafond
• 2016/08/01 [SECURITY] [DSA 3636-1] collectd security update Sebastien Delafond
• 2016/08/01 Elevation of Privilege Vulnerability in MediaTek Driver ( CVE-2016-6492) unlimitsec
• 2016/07/29 [SECURITY] [DSA 3635-1] libdbd-mysql-perl security update Salvatore Bonaccorso
• 2016/07/29 CVE-2016-5672: Intel Crosswalk SSL Prompt Issue research
• 2016/07/29 [SYSS-2016-038] CHERRY B.UNLIMITED AES - Keystroke Injection Vulnerability matthias . deeg
• 2016/07/29 [SYSS-2016-032] CHERRY B.UNLIMITED AES - Insufficient Protection of Code (Firmware) and Data (Cryptographic Key) matthias . deeg
• 2016/07/29 [SYSS-2016-031] CHERRY B.UNLIMITED AES - Missing Protection against Replay Attacks matthias . deeg
• 2016/07/29 [SYSS-2016-038] CHERRY B.UNLIMITED AES - Keystroke Injection Vulnerability matthias . deeg
• 2016/07/29 [SYSS-2016-032] CHERRY B.UNLIMITED AES - Insufficient Protection of Code (Firmware) and Data (Cryptographic Key) matthias . deeg
• 2016/07/29 [SYSS-2016-031] CHERRY B.UNLIMITED AES - Missing Protection against Replay Attacks matthias . deeg
• 2016/07/29 [SYSS-2016-059] Microsoft Wireless Desktop 2000 - Insufficient Verification of Data Authenticity (CWE-345) matthias . deeg
• 2016/07/29 [SYSS-2016-044] Logitech K520 - Insufficient Protection against Replay Attacks matthias . deeg
• 2016/07/29 [SYSS-2016-045] Perixx PERIDUO-710W - Insufficient Protection of Code (Firmware) and Data (Cryptographic Key) matthias . deeg
• 2016/07/29 [SYSS-2016-047] Perixx PERIDUO-710W - Keystroke Injection Vulnerability matthias . deeg
• 2016/07/29 [SYSS-2016-046] Perixx PERIDUO-710W - Missing Protection against Replay Attacks matthias . deeg
• 2016/07/29 [SYSS-2016-044] Logitech K520 - Insufficient Protection against Replay Attacks matthias . deeg
• 2016/07/29 ZMS v3.2 CMS - Multiple Client Side Cross Site Scripting Web Vulnerabilities Vulnerability Lab
• 2016/07/29 [S21SEC-047] Fotoware Fotoweb 8.0 Cross Site Scripting S21sec Vulnerability Research
• 2016/07/28 Vicon Network Cameras - Authentication Bypass reggie . dodd30
• 2016/07/28 Saveya Bounty #1 - Bypass & Persistent Vulnerability Vulnerability Lab
• 2016/07/28 Zoll Checklist v1.2.2 iOS - Multiple Persistent Vulnerabilities Vulnerability Lab
• 2016/07/28 Exponent CMS 2.3.9 - Useraccounts Persistent Vulnerability Vulnerability Lab
• 2016/07/28 Zortam Media Studio 20.60 - Buffer Overflow Vulnerability Vulnerability Lab
• 2016/07/27 [SECURITY] [DSA 3633-1] xen security update Moritz Muehlenhoff
• 2016/07/27 CVE-2016-2783 - Avaya VOSS/VSP Release 4.1.0.0 Vulnerable to SPB Traffic traversal Grebovich, Dragan (Dragan)
• 2016/07/27 [SECURITY] [DSA 3632-1] mariadb-10.0 security update Salvatore Bonaccorso
• 2016/07/27 RE: VUPlayer 2.49 - (.wax) Buffer Overflow Vulnerability Wick, Ryan (US - Chicago)
• 2016/07/27 VUPlayer 2.49 - (.wax) Buffer Overflow Vulnerability Vulnerability Lab
• 2016/07/27 VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability Vulnerability Lab
• 2016/07/27 DornCMS v1.4 - (FileManager) Persistent Cross Site Scripting Vulnerability Vulnerability Lab
• 2016/07/27 Nusiorung CMS 2016 - (Login) Auth Bypass Vulnerability Vulnerability Lab
• 2016/07/26 [SECURITY] [DSA 3631-1] php5 security update Moritz Muehlenhoff
• 2016/07/26 [SECURITY] [DSA 3630-1] libgd2 security update Salvatore Bonaccorso
• 2016/07/26 [security bulletin] HPSBST03603 rev.1 - HPE StoreVirtual Products running LeftHand OS using glibc, Remote Arbitrary Code Execution, Denial of Service (DoS) security-alert
• 2016/07/26 Cross-Site Scripting vulnerability in ColorWay WordPress Theme Summer of Pwnage
• 2016/07/26 Dropbox 6.4.14 DLL Hijacking Vulnerability mehta . himanshu21
• 2016/07/26 Huawei ISM Professional XSS Vulnerability ak47464659484
• 2016/07/26 Crashing Browsers Remotely via Insecure Search Suggestions research
• 2016/07/25 MySQL 0days followup (CVE-2016-3477) CVSS 8.1 lem . nikolas
• 2016/07/25 July 2016 - Bamboo Server - Critical Security Advisory David Black
• 2016/07/25 [SECURITY] [DSA 3629-1] ntp security update Moritz Muehlenhoff
• 2016/07/25 [security bulletin] HPSBGN03630 rev.1 - HP Operations Manager for Unix, Solaris, and Linux using Apache Commons Collections (ACC), Remote Code Execution security-alert
• 2016/07/25 Secunia Research: Reprise License Manager "akey" Buffer Overflow Vulnerability Secunia Research
• 2016/07/25 Secunia Research: Reprise License Manager "actserver" Buffer Overflow Vulnerability Secunia Research
• 2016/07/25 [SECURITY] [DSA 3628-1] perl security update Salvatore Bonaccorso
• 2016/07/25 FreeBSD Security Advisory FreeBSD-SA-16:25.bspatch FreeBSD Security Advisories
• 2016/07/25 XSS and SQLi in huge IT gallery v1.1.5 for Joomla Larry W. Cashdollar
• 2016/07/25 SEC Consult SA-20160725-0 :: Multiple vulnerabilities in Micro Focus (Novell) Filr SEC Consult Vulnerability Lab
• 2016/07/25 [SECURITY] [DSA 3627-1] phpmyadmin security update Thijs Kinkhorst
• 2016/07/25 Cross-Site Scripting in Code Snippets WordPress Plugin Summer of Pwnage
• 2016/07/25 Cross-Site Scripting in Contact Form to Email WordPress Plugin Summer of Pwnage
• 2016/07/25 Neoscreen v4.5 Cross-site scripting alex_haynes
• 2016/07/25 Neoscreen v4.5 Blind SQL injection alex_haynes
• 2016/07/25 Neoscreen v4.5 Authentication bypass alex_haynes
• 2016/07/25 [SECURITY] [DSA 3626-1] openssh security update Salvatore Bonaccorso
• 2016/07/25 Autobahn|Python Insecure allowedOrigins validation >= 0.14.1 mgill
• 2016/07/25 Defense in depth -- the Microsoft way (part 41): vulnerable by (poor implementation of bad) design Stefan Kanthak
• 2016/07/25 Executable installers are vulnerable^WEVIL (case 37): eclipse-inst-win*.exe vulnerable to DLL redirection and manifest hijacking Stefan Kanthak
• 2016/07/25 [slackware-security] bind (SSA:2016-204-01) Slackware Security Team
• 2016/07/25 CA20160721-01: Security Notice for CA eHealth Kotas, Kevin J
• 2016/07/25 [CVE-2016-5000] XML External Entity (XXE) Vulnerability in Apache POI's XLSX2CSV Example Tim Allison
• 2016/07/25 MySQL zero-day vulnerabilities (July 2016 CPU) lem . nikolas
• 2016/07/22 [SECURITY] [DSA 3625-1] squid3 security update Sebastien Delafond
• 2016/07/21 Dreammail 5 mail client XSS Vulnerability wwiinngd
• 2016/07/21 [slackware-security] gimp (SSA:2016-203-01) Slackware Security Team
• 2016/07/21 [slackware-security] php (SSA:2016-203-02) Slackware Security Team
• 2016/07/21 [security bulletin] HPSBGN03631 rev.1 - HPE IceWall Identity Manager and HPE IceWall SSO Password Reset Option running Apache Commons FileUpload, Remote Denial of Service (DoS) security-alert
• 2016/07/21 MySQL zero-day vulnerabilities (July 2016 CPU) lem . nikolas
• 2016/07/21 [SECURITY] [DSA 3624-1] mysql-5.5 security update Salvatore Bonaccorso
• 2016/07/21 Cisco Security Advisory: Vulnerability in Objective Systems ASN1C Compiler Affecting Cisco Products Cisco Systems Product Security Incident Response Team
• 2016/07/20 CVE-2016-5399: php: out-of-bounds write in bzread() Hans Jerry Illikainen
• 2016/07/20 Persistent Cross-Site Scripting in WooCommerce using image metadata (EXIF) Summer of Pwnage
• 2016/07/20 Cross-Site Scripting vulnerability in Paid Memberships Pro WordPress Plugin Summer of Pwnage
• 2016/07/20 Cisco Security Advisory: Cisco Unified Computing System Performance Manager Input Validation Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/07/20 [SEARCH-LAB advisory] UPC Hungary network problems Gergely Eberhardt
• 2016/07/20 [SEARCH-LAB advisory] Technicolor TC7200 modem/router multiple vulnerabilities Gergely Eberhardt
• 2016/07/20 [SEARCH-LAB advisory] Compal CH7465LG-LC modem/router multiple vulnerabilities Gergely Eberhardt
• 2016/07/20 [SEARCH-LAB advisory] Hitron CGNV4 modem/router multiple vulnerabilities Gergely Eberhardt
• 2016/07/20 [SEARCH-LAB advisory] Cisco EPC3925 UPC modem/router default passphrase vulnerabilities Gergely Eberhardt
• 2016/07/20 [SECURITY] [DSA 3623-1] apache2 security update Salvatore Bonaccorso
• 2016/07/19 CVE-2016-5080: Memory corruption in code generated by Objective Systems Inc. ASN1C compiler for C/C++ [STIC-2016-0603] Programa STIC
• 2016/07/19 Multiple SQL injection vulnerabilities in WordPress Video Player Summer of Pwnage
• 2016/07/19 Cross-Site Request Forgery in Icegram WordPress Plugin Summer of Pwnage
• 2016/07/19 Multiple Cross-Site Scripting vulnerabilities in Ninja Forms WordPress Plugin Summer of Pwnage
• 2016/07/19 Executable installers are vulnerable^WEVIL (case 35): eclipse-inst-win*.exe vulnerable to DLL and EXE hijacking Stefan Kanthak
• 2016/07/19 Django CMS v3.3.0 - (Editor Snippet) Persistent Web Vulnerability (CVE-2016-6186) Vulnerability Lab
• 2016/07/19 APPLE-SA-2016-07-18-6 iTunes 12.4.2 Apple Product Security
• 2016/07/19 APPLE-SA-2016-07-18-5 Safari 9.1.2 Apple Product Security
• 2016/07/19 APPLE-SA-2016-07-18-4 tvOS 9.2.2 Apple Product Security
• 2016/07/19 APPLE-SA-2016-07-18-3 watchOS 2.2.2 Apple Product Security
• 2016/07/19 APPLE-SA-2016-07-18-2 iOS 9.3.3 Apple Product Security
• 2016/07/19 APPLE-SA-2016-07-18-1 OS X El Capitan v10.11.6 and Security Update 2016-004 Apple Product Security
• 2016/07/19 [SECURITY] [DSA 3622-1] python-django security update Salvatore Bonaccorso
• 2016/07/18 [CVE-2016-1281] NOT FIXED: VeraCrypt*Setup*.exe still vulnerable to DLL hijacking Stefan Kanthak
• 2016/07/18 [SECURITY] [DSA 3621-1] mysql-connector-java security update Salvatore Bonaccorso
• 2016/07/18 [Remote Format String Exploit] Axis Communications MPQT/PACS Server Side Include (SSI) Daemon bashis
• 2016/07/17 Multiple vulns in Vodafone EasyBox 804 Tim Schughart
• 2016/07/17 [SECURITY] [DSA 3620-1] pidgin security update Salvatore Bonaccorso
• 2016/07/15 [SECURITY] [DSA 3619-1] libgd2 security update Salvatore Bonaccorso
• 2016/07/15 [security bulletin] HPSBMU03562 rev.3 - HPE Service Manager using Java Deserialization, Remote Arbitrary Code Execution security-alert
• 2016/07/14 [ERPSCAN-16-019] SAP NetWeaver Enqueue Server - DoS vulnerability ERPScan inc
• 2016/07/14 [ERPSCAN-16-020] SAP NetWeaver AS JAVA UDDI component - XXE vulnerability ERPScan inc
• 2016/07/14 [ERPSCAN-16-021] SAP xMII - Reflected XSS vulnerability ERPScan inc
• 2016/07/14 Cross-Site Scripting vulnerability in Google Forms WordPress Plugin Summer of Pwnage
• 2016/07/14 Cross-Site Scripting vulnerability in WP No External Links WordPress Plugin Summer of Pwnage
• 2016/07/14 Cross-Site Scripting vulnerability in Top 10 - Popular posts plugin for WordPress Summer of Pwnage
• 2016/07/14 Cross-Site Scripting vulnerability in Simple Membership WordPress Plugin Summer of Pwnage
• 2016/07/13 Cisco Security Advisory: Cisco IOS XR for NCS 6000 Packet Timer Leak Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team
• 2016/07/13 Open-Xchange Security Advisory 2016-07-13 Martin Heiland
• 2016/07/13 missing input validation in pmount: arbitrary mount as non-root Imre RAD
• 2016/07/13 [CVE-2016-1014, CVE-2016-4247] Executable installers are vulnerable^WEVIL (case 35): Adobe's Flash Player (un)installers Stefan Kanthak
• 2016/07/12 Easy Forms for MailChimp Local File Inclusion vulnerability Summer of Pwnage
• 2016/07/12 WP Fastest Cache Member Local File Inclusion vulnerability Summer of Pwnage
• 2016/07/12 Cross-Site Scripting vulnerability in Profile Builder WordPress Plugin Summer of Pwnage
• 2016/07/12 Cross-Site Scripting vulnerability in Email Users WordPress Plugin Summer of Pwnage
• 2016/07/12 Cross-Site Scripting vulnerability in Master Slider WordPress Plugin Summer of Pwnage
• 2016/07/12 [security bulletin] HPSBHF03608 rev.1 - HPE iMC PLAT and other Network Products using Apache Java Commons Collection (ACC), Remote Execution of Arbitrary Code security-alert
• 2016/07/12 Persistent Cross-Site Scripting in WordPress Activity Log plugin Summer of Pwnage
• 2016/07/12 [RCESEC-2016-004][CVE-2016-5005] Apache Archiva 1.3.9 admin/addProxyConnector_commit.action connector.sourceRepoId Persistent Cross-Site Scripting Julien Ahrens
• 2016/07/12 [RCESEC-2016-003][CVE-2016-4469] Apache Archiva 1.3.9 Multiple Cross-Site Request Forgeries Julien Ahrens
• 2016/07/11 Persistent Cross-Site Scripting in WP Live Chat Support plugin Summer of Pwnage
• 2016/07/11 Persistent Cross-Site Scripting in All in One SEO Pack WordPress Plugin Summer of Pwnage
• 2016/07/08 BMW - (Token) Client Side Cross Site Scripting Vulnerability Vulnerability Lab
• 2016/07/08 BMW ConnectedDrive - (Update) VIN Session Vulnerability Vulnerability Lab
• 2016/07/07 Microsoft Process Kill Utility "kill.exe" Buffer Overflow hyp3rlinx
• 2016/07/07 Microsoft WinDbg logviewer.exe Buffer Overflow DOS hyp3rlinx
• 2016/07/07 [slackware-security] samba (SSA:2016-189-01) Slackware Security Team
• 2016/07/07 [security bulletin] HPSBGN03628 rev.1 - HPE IceWall Federation Agent using libXML2 library, Remote Denial of Service (DoS), Unauthorized Modification, Unauthorized Disclosure of Information security-alert
• 2016/07/07 [KIS-2016-11] IPS Community Suite <= 4.1.12.3 Autoloaded PHP Code Injection Vulnerability Egidio Romano
• 2016/07/07 CVE-2016-4979: HTTPD webserver - X509 Client certificate based authentication can be bypassed when HTTP/2 is used [vs] Dirk-Willem van Gulik
• 2016/07/06 Acer Portal Android Application - MITM SSL Certificate Vulnerability (CVE-2016-5648) David Coomber
• 2016/07/06 [SECURITY] [DSA 3617-1] horizon security update Moritz Muehlenhoff

• Later messages