[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c

Hi all, I found this double-fetch vulnerability when I was doing my research on double fetch issue analysis, and I’’d like to make an announcement here. This was found in Linux kernel file Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use memcpy_fromio() to fetch t

[SECURITY] [DSA 3893-1] jython security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-3893-1 secur...@debian.org https://www.debian.org/security/ Salvatore Bonaccorso June 22, 2017

[slackware-security] openvpn (SSA:2017-172-01)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 [slackware-security] openvpn (SSA:2017-172-01) New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +

Sitecore 7.1-7.2 Cross Site Scripting Vulnerability

Sitecore 7.1-7.2 Cross Site Scripting Vulnerability Information Author: Hamed Izadi Email: ("hamedizadi", "@", "gmail", ".com"); Name: XSS Vulnerability in Sitecore Affected Software : Sitecore.NET Affected Versions: v7.2-7.1 and possibly below Vendor Homepage : http://www.si

[SECURITY] [DSA 3890-1] spip security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-3890-1 secur...@debian.org https://www.debian.org/security/ Salvatore Bonaccorso June 21, 2017