[slackware-security] mozilla-firefox (SSA:2015-132-04)

2015-05-13 Thread Slackware Security Team
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 [slackware-security] mozilla-firefox (SSA:2015-132-04) New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--+

SEC Consult SA-20150513-0 :: Multiple critical vulnerabilities in WSO2 Identity Server

2015-05-13 Thread SEC Consult Vulnerability Lab
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20150513-0 === title: Multiple critical vulnerabilities product: WSO2 Identity Server

Server buffer overflow in Pure Faction = 3.0c

2015-05-13 Thread soulsgetnothing
Application: Pure Faction http://www.purefaction.org Versions: = 3.0c Platforms: Windows Bug: server buffer overflow Risk: highly critical Exploitation: remote and automatic (requires attacker to have joined server) Date: 13 Mar 2015 Author: soulsgetnothing e-mail: soulsgetnothing (at) hotmail

Cisco Security Advisory: Command Injection Vulnerability in Multiple Cisco TelePresence Products

2015-05-13 Thread Cisco Systems Product Security Incident Response Team
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Cisco Security Advisory: Command Injection Vulnerability in Multiple Cisco TelePresence Products Advisory ID: cisco-sa-20150513-tp Revision 1.0 For Public Release 2015 May 13 16:00 UTC (GMT

Web India Solutions CMS 2015 - SQL Injection Vulnerability

2015-05-13 Thread Vulnerability Lab
Document Title: === Web India Solutions CMS 2015 - SQL Injection Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1495 Release Date: = 2015-05-13 Vulnerability Laboratory ID (VL-ID):

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

2015-05-13 Thread Cisco Systems Product Security Incident Response Team
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software Advisory ID: cisco-sa-20150513-tc Revision 1.0 For Public Release 2015 May 13 16:00 UTC (GMT

[CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities

2015-05-13 Thread CORE Advisories Team
1. Advisory Information Title: SAP LZC/LZH Compression Multiple Vulnerabilities Advisory ID: CORE-2015-0009 Advisory URL: http://www.coresecurity.com/advisories/sap-lzc-lzh-compression-multiple-vulnerabilities Date published: 2015-05-12 Date of last update: 2015-05-12 Vendors contacted: SAP

Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250

2015-05-13 Thread Onur Yilmaz
Information Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in Concrete5 Affected Software : Concrete5 Affected Versions: 5.7.3.1 and possibly below Vendor Homepage : https://www.concrete5.org Vulnerability Type : Cross-site Scripting Severity : Important CVE-ID:

[SECURITY] [DSA 3259-1] qemu security update

2015-05-13 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-3259-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff May 13, 2015

[SECURITY] [DSA 3260-1] iceweasel security update

2015-05-13 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-3260-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff May 13, 2015