[SECURITY] [DSA 3561-1] subversion security update

2016-04-29 Thread Salvatore Bonaccorso
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-3561-1 secur...@debian.org https://www.debian.org/security/ Salvatore Bonaccorso April 29, 2016

SQL Injection in GLPI

2016-04-29 Thread High-Tech Bridge Security Research
Advisory ID: HTB23301 Product: GLPI Vendor: INDEPNET Vulnerable Version(s): 0.90.2 and probably prior Tested Version: 0.90.2 Advisory Publication: April 8, 2016 [without technical details] Vendor Notification: April 8, 2016 Vendor Patch: April 11, 2016 Public Disclosure: April 29, 2016

Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability

2016-04-29 Thread Vulnerability Lab
Document Title: === Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1839 Release Date: = 2016-04-29 Vulnerability Laboratory ID (VL-ID):

Mozilla doesn't care for upstream security fixes, and doesn't bother to send own security fixes upstream

2016-04-29 Thread Stefan Kanthak
Hi @ll despite better knowledge and MULTIPLE bug/vulnerability reports (see , , , ...) Mozilla continues to ship Firefox and Thunderbird

[security bulletin] HPSBUX03583 SSRT110084 rev.1 - HP-UX BIND Service running Named, Remote Denial of Service (DoS)

2016-04-29 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n a-c05087821 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05087821 Version: 1 HPSBUX03583