Hi all,
I found this double-fetch vulnerability when I was doing my research on double
fetch issue analysis, and I’d like to make an announcement here.
This was found in Linux kernel file
Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use
memcpy_fromio() to fetch t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian Security Advisory DSA-3893-1 secur...@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
June 22, 2017
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[slackware-security] openvpn (SSA:2017-172-01)
New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
14.2, and -current to fix security issues.
Here are the details from the Slackware 14.2 ChangeLog:
+
Sitecore 7.1-7.2 Cross Site Scripting Vulnerability
Information
Author: Hamed Izadi
Email: ("hamedizadi", "@", "gmail", ".com");
Name: XSS Vulnerability in Sitecore
Affected Software : Sitecore.NET
Affected Versions: v7.2-7.1 and possibly below
Vendor Homepage : http://www.si
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian Security Advisory DSA-3890-1 secur...@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
June 21, 2017