[FD] Craft CMS affected by server side template injection

Craft CMS affected by server side template injection Nelson Berg & Jurgen Kloosterman, June 2016

[FD] Aramadito remote arbitrary file write in case of MiTM

Armadito (https://github.com/armadito) is a cross-platform open-source antivirus, that was originally the DAVFI project, financed through a french government program. As a security product supposed to protect computers against malware, its update system fails at multiple points: * the public

Re: [FD] [oss-security] libical 0.47 SEGV on unknown address

> On Jun 25, 2016, at 10:34 AM, Alan Coopersmith > wrote: > > On 06/24/16 06:54 AM, Brandon Perry wrote: >> I am posting this to Full Disclosure/OSS instead of reporting it because I >> have >> opened a handful of libical bugs in the Mozilla bug tracker, alerted

[FD] Riverbed SteelCentral NetProfiler & NetExpress Multiple Vulnerabilities

(, ) (, . '.' ) ('.', ). , ('. ( ) ( (_,) .'), ) _ _, / _/ / _ \ _ \ \==/ /_\ \ _/ ___\/ _ \ / \ / \/ |\\ \__( <_> ) Y Y \ /__ /\___|__ / \___ >/|__|_| / \/ \/.-.\/ \/:wq

[FD] Panda Security Privilege Escalation

(, ) (, . '.' ) ('.', ). , ('. ( ) ( (_,) .'), ) _ _, / _/ / _ \ _ \ \==/ /_\ \ _/ ___\/ _ \ / \ / \/ |\\ \__( <_> ) Y Y \ /__ /\___|__ / \___ >/|__|_| / \/ \/.-.\/ \/:wq

Re: [FD] [oss-security] libical 0.47 SEGV on unknown address

On 06/24/16 06:54 AM, Brandon Perry wrote: I am posting this to Full Disclosure/OSS instead of reporting it because I have opened a handful of libical bugs in the Mozilla bug tracker, alerted secur...@mozilla.org , and worked to show how and where to reproduce the