secure-testing-team  

Messages by Date

• 2017/08/06 [Secure-testing-team] Bug#871024: swftools: CVE-2017-11100 Salvatore Bonaccorso
• 2017/08/06 [Secure-testing-team] Bug#871022: swftools: CVE-2017-11101 Salvatore Bonaccorso
• 2017/08/06 [Secure-testing-team] Bug#871020: swftools: CVE-2017-11098 Salvatore Bonaccorso
• 2017/08/06 [Secure-testing-team] Bug#871018: swftools: CVE-2017-11099 Salvatore Bonaccorso
• 2017/08/06 [Secure-testing-team] Bug#870903: CVE-2017-12583 Moritz Muehlenhoff
• 2017/08/06 [Secure-testing-team] Bug#870900: CVE-2017-12481 CVE-2017-12482 Moritz Muehlenhoff
• 2017/08/05 [Secure-testing-team] Bug#870870: libxml2: CVE-2017-0663: Heap buffer overflow in xmlAddID Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870867: libxml2: CVE-2017-7375: Missing validation for external entities in xmlParsePEReference Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870865: libxml2: CVE-2017-7376: Incorrect limit used for port values Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870860: openjfx: CVE-2017-10086 CVE-2017-10114 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870856: soundtouch: CVE-2017-9259 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870857: soundtouch: CVE-2017-9260 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870854: soundtouch: CVE-2017-9258 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870852: rubocop: CVE-2017-8418 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870848: jackson-databind: CVE-2017-7525: Deserialization vulnerability via readValue method of ObjectMapper Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870817: libytnef: CVE-2017-12144 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870816: libytnef: CVE-2017-12142: SEGV in ytnef.c in SwapDWord Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870815: libytnef: CVE-2017-12141: heap-buffer-overflow Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870809: lame: CVE-2017-11720 Salvatore Bonaccorso
• 2017/08/05 [Secure-testing-team] Bug#870799: mpg123: CVE-2017-9545 Salvatore Bonaccorso
• 2017/08/04 [Secure-testing-team] Bug#870752: 389-ds-base: CVE-2017-7551: Locked account provides different return code if password is correct Salvatore Bonaccorso
• 2017/08/04 [Secure-testing-team] Bug#870725: CVE-2017-11721 Moritz Muehlenhoff
• 2017/08/03 [Secure-testing-team] Bug#870650: glibc: CVE-2017-12132 Salvatore Bonaccorso
• 2017/08/03 [Secure-testing-team] Bug#870648: glibc: CVE-2017-12133: Use-after-free in error path in clntudp_call Salvatore Bonaccorso
• 2017/08/03 [Secure-testing-team] Bug#870608: CVE-2017-11548 Moritz Muehlenhoff
• 2017/08/02 [Secure-testing-team] Bug#870467: varnish: DoS vulnerability Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870406: libmad: CVE-2017-11552 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870356: potrace: CVE-2017-12067 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870354: cacti: CVE-2017-12066 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870353: cacti: CVE-2017-12065 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870342: libvorbis: CVE-2017-11735 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870341: libvorbis: CVE-2017-11333 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870338: timidity: CVE-2017-11546 CVE-2017-11547 CVE-2017-11549 Salvatore Bonaccorso
• 2017/08/01 [Secure-testing-team] Bug#870333: libid3tag: CVE-2017-11551 Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870328: sox: CVE-2017-11332 CVE-2017-11358 CVE-2017-11359 Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870326: yaml-cpp: CVE-2017-11692 Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870307: tinyproxy: CVE-2017-11747: Creating PID file after privileges dropping allows local DoS Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870271: zookeeper: insecure permissions of /var/lib/zookeeper Christoph Anton Mitterer
• 2017/07/31 [Secure-testing-team] Bug#870266: chicken: CVE-2017-11343 Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870264: cairo: CVE-2017-7475: NULL pointer dereference with a crafted font file Salvatore Bonaccorso
• 2017/07/31 [Secure-testing-team] Bug#870243: cacti: Followup fix to CVE-2017-11691 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870233: smplayer: executes javascript code downloaded from insecure URL Jonas Smedegaard
• 2017/07/30 [Secure-testing-team] Bug#870197: libytnef: CVE-2017-9473: memory allocation failure in TNEFFillMapi Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870196: libytnef: CVE-2017-9470: NULL pointer dereference in MAPIPrint Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870194: libytnef: CVE-2017-9471: heap-based-buffer overflow in SwapWord Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870193: libytnef: CVE-2017-9472: heap-based buffer overflow in SwapDWord Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870192: libytnef: CVE-2017-9474: heap-based buffer overflow in DecompressRTF Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870188: CVE-2017-11610 Markus Koschany
• 2017/07/30 [Secure-testing-team] Bug#870187: supervisor: CVE-2017-11610: Command injection via malicious XML-RPC request Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870184: libsass: CVE-2017-11605 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870186: libsass: CVE-2017-11608 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870183: libgxps: CVE-2017-11590 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870182: libsass: CVE-2017-11554 CVE-2017-11555 CVE-2017-11556 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870180: wireshark: CVE-2017-11410 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870179: wireshark: CVE-2017-11411 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870175: wireshark: CVE-2017-9766: Malformed DCERPC PNIO packet decode, exception handler invalid pointer reference Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870174: wireshark: CVE-2017-9617: DAAP dissector dissect_daap_one_tag recursion stack exhausted Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870173: wireshark: CVE-2017-9616: Over deep mp4 chunks may cause stack Exhausted Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870172: wireshark: CVE-2017-11406 CVE-2017-11407 CVE-2017-11408 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870170: wolfssl: CVE-2017-8855 Salvatore Bonaccorso
• 2017/07/30 [Secure-testing-team] Bug#870149: CVE-2017-11636, CVE-2017-11637, CVE-2017-11638, CVE-2017-11641, CVE-2017-11642, CVE-2017-11643, CVE-2017-11722 Markus Koschany
• 2017/07/28 [Secure-testing-team] Bug#869977: ghostscript: CVE-2017-11714: Out of bounds read in igc_reloc_struct_ptr() Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869927: libjpeg-turbo: CVE-2017-9614: invalid memory access in the fill_input_buffer function Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869922: policykit-1: members of group sudo become root with pkexec while ignoring /etc/sudoers mviereck
• 2017/07/27 [Secure-testing-team] Bug#869917: ghostscript: CVE-2017-9611: heap-buffer-overflow in Ins_MIRP(base/ttinterp.c) Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869916: ghostscript: CVE-2017-9612: heap-use-after-free in Ins_IP(base/ttinterp.c) Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869915: ghostscript: CVE-2017-9726: heap-use-after-free in Ins_MDRP(base/ttinterp.c) Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869913: ghostscript: CVE-2017-9727: heap-buffer-overflow in gx_ttfReader__Read(base/gxttfb.c) Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869912: zookeeper: JMX opened for remote hosts Christoph Anton Mitterer
• 2017/07/27 [Secure-testing-team] Bug#869910: ghostscript: CVE-2017-9739: heap-buffer-overflow in Ins_JMPR Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869907: ghostscript: CVE-2017-9835: heap-buffer-overflow in gs_alloc_ref_array(ialloc.c) Salvatore Bonaccorso
• 2017/07/27 [Secure-testing-team] Bug#869880: CVE-2017-2834 CVE-2017-2835 CVE-2017-2836 CVE-2017-2837 CVE-2017-2838 CVE-2017-2839 Moritz Muehlenhoff
• 2017/07/27 [Secure-testing-team] Bug#869879: ghostscript: CVE-2017-9610 CVE-2017-9618 CVE-2017-9619 CVE-2017-9620 CVE-2017-9740 Salvatore Bonaccorso
• 2017/07/26 [Secure-testing-team] Bug#869848: cacti: Cross-site scripting vulnerability in auth_profile.php Salvatore Bonaccorso
• 2017/07/26 [Secure-testing-team] Bug#869823: tiff: CVE-2017-11613 Salvatore Bonaccorso
• 2017/07/26 [Secure-testing-team] Bug#869803: sipcrack: CVE-2017-11654 CVE-2017-11655 Salvatore Bonaccorso
• 2017/07/25 [Secure-testing-team] Bug#869708: jbigkit: CVE-2017-9937 Salvatore Bonaccorso
• 2017/07/25 [Secure-testing-team] Bug#869706: qemu: CVE-2017-10911 Salvatore Bonaccorso
• 2017/07/25 [Secure-testing-team] Bug#869702: rbenv: CVE-2017-1000047 Salvatore Bonaccorso
• 2017/07/25 [Secure-testing-team] Bug#869639: firmware-brcm80211: BroadPwn vulnerability CVE-2017-8386 Mark Robinson
• 2017/07/25 [Secure-testing-team] Bug#869633: CVE-2015-5191 Moritz Muehlenhoff
• 2017/07/24 [Secure-testing-team] Bug#869614: fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577 Salvatore Bonaccorso
• 2017/07/23 [Secure-testing-team] Bug#869428: radare2: CVE-2017-9761 Salvatore Bonaccorso
• 2017/07/23 [Secure-testing-team] Bug#869426: radare2: CVE-2017-9762 Salvatore Bonaccorso
• 2017/07/23 [Secure-testing-team] Bug#869423: radare2: CVE-2017-9763 Salvatore Bonaccorso
• 2017/07/22 [Secure-testing-team] Bug#869404: resiprocate: CVE-2017-11521: Adding too many media connections may lead to memory exhaustion Salvatore Bonaccorso
• 2017/07/22 [Secure-testing-team] Bug#869263: libgd2: CVE-2017-7890: Buffer over-read into uninitialized memory Salvatore Bonaccorso
• 2017/07/21 [Secure-testing-team] Bug#869261: CVE-2017-7537 Moritz Muehlenhoff
• 2017/07/21 [Secure-testing-team] Bug#869260: CVE-2017-11368 Moritz Muehlenhoff
• 2017/07/21 [Secure-testing-team] Bug#869242: CVE-2017-11468 Moritz Muehlenhoff
• 2017/07/21 [Secure-testing-team] Bug#869220: agrep crash caused by double free Stefan Weil
• 2017/07/21 [Secure-testing-team] Bug#869173: exec: oob access during dma operation Guido Günther
• 2017/07/21 [Secure-testing-team] Bug#869171: slirp: out-of-bounds read while parsing dhcp options Guido Günther
• 2017/07/20 [Secure-testing-team] Bug#869129: librsvg: CVE-2017-11464 Salvatore Bonaccorso
• 2017/07/19 [Secure-testing-team] Bug#868988: phamm: CVE-2017-0378 reflected XSS in phamm John Lightsey
• 2017/07/19 [Secure-testing-team] Bug#868956: libmspack: CVE-2017-11423 Salvatore Bonaccorso
• 2017/07/19 [Secure-testing-team] Bug#868950: imagemagick: CVE-2017-11446 Salvatore Bonaccorso
• 2017/07/19 [Secure-testing-team] restaurant à céder 75016 Jean-Michel Geslin
• 2017/07/18 [Secure-testing-team] Bug#868831: apport: CVE-2017-10708 Salvatore Bonaccorso
• 2017/07/18 [Secure-testing-team] Bug#868765: freeradius: New upstream version 3.0.15 fixing security critical bugs Karsten Heymann
• 2017/07/17 [Secure-testing-team] Bug#868730: rkhunter: /var/lib/rkhunter/tmp shouldn't be world-readable Christoph Anton Mitterer
• 2017/07/17 [Secure-testing-team] Bug#868705: gnome-exe-thumbnailer: Thumbnail generation for MSI files executes arbitrary VBScript Nils Dagsson Moskopp
• 2017/07/17 [Secure-testing-team] Bug#868701: memcached: CVE-2017-9951: Heap-based buffer over-read in try_read_command function Salvatore Bonaccorso
• 2017/07/16 [Secure-testing-team] Bug#868580: cairo: CVE-2017-9814 Salvatore Bonaccorso
• 2017/07/16 [Secure-testing-team] Bug#868578: CVE-2017-11335 CVE-2017-11336 CVE-2017-11337 CVE-2017-11338 CVE-2017-11339 CVE-2017-11340 Moritz Muehlenhoff
• 2017/07/16 [Secure-testing-team] Bug#868577: CVE-2017-11341 CVE-2017-11342 Moritz Muehlenhoff
• 2017/07/16 [Secure-testing-team] Bug#868572: ruby-mixlib-archive: CVE-2017-1000026 Salvatore Bonaccorso
• 2017/07/16 [Secure-testing-team] Bug#868513: tiff: CVE-2017-11335: tiff2pdf: heap based buffer write overflow Salvatore Bonaccorso
• 2017/07/16 [Secure-testing-team] Bug#868508: fedmsg: CVE-2017-1000001 Salvatore Bonaccorso
• 2017/07/15 [Secure-testing-team] Bug#868500: atril: CVE-2017-1000083 Salvatore Bonaccorso
• 2017/07/15 [Secure-testing-team] Bug#868469: imagemagick: Incomplete fix for CVE-2017-9144 Salvatore Bonaccorso
• 2017/07/15 [Secure-testing-team] Bug#868467: apache2: CVE-2017-9788 Salvatore Bonaccorso
• 2017/07/15 [Secure-testing-team] Bug#868466: php-cas: CVE-2017-1000071 Salvatore Bonaccorso
• 2017/07/12 [Secure-testing-team] Bug#868208: CVE-2017-11103: MitM attack, impersonation of the Kerberos client, know as Orpheus Lyre Raphael Hertzog
• 2017/07/12 [Secure-testing-team] actif a céder - Société de bâtiment et travaux publics Jean-Michel Geslin
• 2017/07/12 [Secure-testing-team] Bug#868185: CVE-2016-4383 Moritz Muehlenhoff
• 2017/07/12 [Secure-testing-team] Bug#868184: CVE-2017-11141 CVE-2017-11166 CVE-2017-11170 CVE-2017-11188 Moritz Muehlenhoff
• 2017/07/12 [Secure-testing-team] Bug#868162: July 11th Security release Moritz Muehlenhoff
• 2017/07/11 [Secure-testing-team] Bug#868109: nginx: CVE-2017-7529 Integer overflow in the range filter Christos Trochalakis
• 2017/07/11 [Secure-testing-team] Bug#868083: CVE-2017-7506 Moritz Muehlenhoff
• 2017/07/11 [Secure-testing-team] Bug#868080: CVE-2017-11163 Moritz Muehlenhoff
• 2017/07/11 [Secure-testing-team] Stop being fat, and start being healthy test
• 2017/07/10 [Secure-testing-team] Bug#867988: CVE-2017-11111 CVE-2017-10686 Moritz Muehlenhoff
• 2017/07/10 [Secure-testing-team] Bug#867986: CVE-2016-10396 Moritz Muehlenhoff
• 2017/07/09 [Secure-testing-team] Bug#867778: imagemagick: CVE-2017-9500: assertion failed in ResetImageProfileIterator Salvatore Bonaccorso
• 2017/07/09 [Secure-testing-team] Bug#867747: rsyslog: /var/log/dmesg world-readable despite kernel.dmesg_restrict = 1 mv87
• 2017/07/09 [Secure-testing-team] Bug#867746: graphicsmagick: CVE-2017-11102 Salvatore Bonaccorso
• 2017/07/09 [Secure-testing-team] Bug#867751: qemu: CVE-2017-10806: usb-redirect: stack buffer overflow in debug logging Salvatore Bonaccorso
• 2017/07/09 [Secure-testing-team] Bug#867748: imagemagick: CVE-2017-10995 Salvatore Bonaccorso
• 2017/07/08 [Secure-testing-team] Bug#867725: CVE-2017-9869 CVE-2017-9870 CVE-2017-9871 CVE-2017-9872 Moritz Muehlenhoff
• 2017/07/08 [Secure-testing-team] Bug#867724: Multiple security issues Moritz Muehlenhoff
• 2017/07/08 [Secure-testing-team] Bug#867720: CVE-2017-11109 Moritz Muehlenhoff
• 2017/07/08 [Secure-testing-team] Bug#867719: phpldapadmin: CVE-2017-11107 Salvatore Bonaccorso
• 2017/07/08 [Secure-testing-team] Bug#867718: CVE-2017-11108 Moritz Muehlenhoff
• 2017/07/08 [Secure-testing-team] Bug#867717: CVE-2017-11110 Moritz Muehlenhoff
• 2017/07/08 [Secure-testing-team] Bug#867712: lucene-solr: CVE-2017-3163 Salvatore Bonaccorso
• 2017/07/07 [Secure-testing-team] Bug#867618: sqlite3: CVE-2017-10989 Salvatore Bonaccorso
• 2017/07/07 [Secure-testing-team] Restaurant haut de gamma a céder - Paris 75016 Jean-Michel Geslin
• 2017/07/07 [Secure-testing-team] Bug#867601: slim: should no longer run the Xorg server as root Salvatore Bonaccorso
• 2017/07/07 [Secure-testing-team] Bug#867598: irssi: CVE-2017-10965 CVE-2017-10966 Salvatore Bonaccorso
• 2017/07/07 [Secure-testing-team] Bug#867560: netfilter-persistent fails randomly during boot; restarting later works David
• 2017/07/06 [Secure-testing-team] Bug#867532: cacti: CVE-2017-10970: XSS vulnerability via link.php Salvatore Bonaccorso
• 2017/07/06 [Secure-testing-team] Bug#867495: CVE-2017-9840 Moritz Muehlenhoff
• 2017/07/06 [Secure-testing-team] Bug#867493: CVE-2016-2141 Moritz Muehlenhoff
• 2017/07/06 [Secure-testing-team] Bug#867492: xorg-server: CVE-2017-10971 CVE-2017-10972 Salvatore Bonaccorso
• 2017/07/06 [Secure-testing-team] Bug#867477: poppler: CVE-2017-9865 stack-based overflow leading to denial-of-service Antoine Beaupre
• 2017/07/06 [Secure-testing-team] Bug#867398: libtasn1-6: CVE-2017-10790 Salvatore Bonaccorso
• 2017/07/05 [Secure-testing-team] Bug#867369: radare2: CVE-2017-10929 Salvatore Bonaccorso
• 2017/07/05 [Secure-testing-team] Bug#867367: imagemagick: CVE-2017-10928 Salvatore Bonaccorso
• 2017/07/04 [Secure-testing-team] Bug#867229: CVE-2017-0647 Moritz Muehlenhoff
• 2017/07/04 [Secure-testing-team] Actif à céder - Société de securité et gardiennage Jean-Michel Geslin
• 2017/07/03 [Secure-testing-team] Bug#867085: graphicsmagick: CVE-2017-10794 Salvatore Bonaccorso
• 2017/07/03 [Secure-testing-team] Bug#867077: graphicsmagick: CVE-2017-10799: denial of service (OOM) can occur inReadDPXImage() Salvatore Bonaccorso
• 2017/07/03 [Secure-testing-team] Bug#867060: graphicsmagick: CVE-2017-10800: OOM in ReadMATImage() Salvatore Bonaccorso
• 2017/07/03 [Secure-testing-team] Bug#867032: jabberd2 allowing anyone to authenticate using SASL ANONYMOUS, even when the option is not enabled Sergey Korobitsin
• 2017/07/02 [Secure-testing-team] Bug#866968: dwarfutils: CVE-2017-9998: SEGV libdwarf/dwarf_leb.c:291 in _dwarf_decode_s_leb128_chk Salvatore Bonaccorso
• 2017/07/02 [Secure-testing-team] Bug#866890: CVE-2017-10791 CVE-2017-10792 Moritz Muehlenhoff
• 2017/07/02 [Secure-testing-team] Bug#866860: mpg123: CVE-2017-10683 Salvatore Bonaccorso
• 2017/07/02 [Secure-testing-team] Bug#866821: libdbd-mysql-perl: CVE-2017-10789 Salvatore Bonaccorso
• 2017/07/02 [Secure-testing-team] Bug#866818: libdbd-mysql-perl: CVE-2017-10788 Salvatore Bonaccorso
• 2017/07/01 [Secure-testing-team] Bug#866799: tor: CVE-2017-0377: TROVE-2017-006: Path selection issue Salvatore Bonaccorso
• 2017/07/01 [Secure-testing-team] Bug#866769: keepassx fails to clear KDE clipboard history, leaving passwords visible Henrik Størner
• 2017/07/01 [Secure-testing-team] Bug#866722: ntopng: CVE-2017-7416 Salvatore Bonaccorso
• 2017/07/01 [Secure-testing-team] Bug#866721: ntopng: CVE-2017-7458 Salvatore Bonaccorso
• 2017/07/01 [Secure-testing-team] Bug#866719: ntopng: CVE-2017-7459: HTTP Response Splitting Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Bug#866711: mcollective: CVE-2017-2292: Remote code execution via YAML deserialization Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Bug#866677: rkhunter: CVE-2017-7480: File download via http might lead to RCE Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Bug#866676: libxml-libxml-perl: CVE-2017-10672: Use-after-free in XML::LibXML::Node::replaceChild Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Bug#866674: qemu: CVE-2017-10664: qemu-nbd: server breaks with SIGPIPE upon client abort Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Bug#866672: libsass: CVE-2017-10687: heap based buffer overflow Salvatore Bonaccorso
• 2017/06/30 [Secure-testing-team] Say goodbye to false promises. Utilize your body's natural weight loss system osman . cerrahoglu
• 2017/06/30 [Secure-testing-team] Bug#866611: tiff: CVE-2017-10688 Salvatore Bonaccorso
• 2017/06/29 [Secure-testing-team] Bug#866564: bind9: CVE-2017-3142 CVE-2017-3143 Salvatore Bonaccorso
• 2017/06/29 [Secure-testing-team] The beginning of your success story is just one click away notifiche
• 2017/06/28 [Secure-testing-team] 5 Gründe warum NIU Econ Scooters
• 2017/06/28 [Secure-testing-team] Bug#866257: tpm2-tools: CVE-2017-7524 Salvatore Bonaccorso
• 2017/06/28 [Secure-testing-team] Bug#866200: phpunit: CVE-2017-9841 Salvatore Bonaccorso
• 2017/06/27 [Secure-testing-team] Bug#866147: systemd: CVE-2017-9445: Out-of-bounds write in systemd-resolved with crafted TCP payload Salvatore Bonaccorso
• 2017/06/27 [Secure-testing-team] Bug#866113: tiff: CVE-2017-9936: Memory leak in tif_jbig.c can lead to DoS Salvatore Bonaccorso
• 2017/06/27 [Secure-testing-team] Bug#866109: tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf Salvatore Bonaccorso
• 2017/06/26 [Secure-testing-team] Bug#866068: radare2: CVE-2017-9949 Salvatore Bonaccorso
• 2017/06/26 [Secure-testing-team] Bug#866022: lrzip: CVE-2017-9928: Stack buffer overflow in get_fileinfoin lrzip.c, allows attackers to cause DoS Salvatore Bonaccorso
• 2017/06/26 [Secure-testing-team] Bug#866020: lrzip: CVE-2017-9929: Stack buffer overflow in get_fileinfoin lrzip.c:1074, allows attackers to cause DoS Salvatore Bonaccorso
• 2017/06/25 [Secure-testing-team] Bug#865959: mosquitto: CVE-2017-9868: mosquitto.db can be read by all Salvatore Bonaccorso
• 2017/06/25 [Secure-testing-team] Bug#865909: faac: CVE-2017-9129 CVE-2017-9130 Salvatore Bonaccorso
• 2017/06/25 [Secure-testing-team] Bug#865845: libtorrent-rasterbar: CVE-2017-9847 Salvatore Bonaccorso
• 2017/06/24 [Secure-testing-team] Bug#865782: yara: CVE-2017-9465 Salvatore Bonaccorso
• 2017/06/24 [Secure-testing-team] Bug#865778: mruby: CVE-2017-9527: heap-based use-after-free Salvatore Bonaccorso
• 2017/06/24 [Secure-testing-team] Bug#865755: qemu: CVE-2017-9524: nbd: segmentation fault due to client non-negotiation Salvatore Bonaccorso
• 2017/06/24 [Secure-testing-team] Bug#865754: qemu: CVE-2017-9503: megasas: null pointer dereference while processing megasas command Salvatore Bonaccorso
• 2017/06/23 [Secure-testing-team] Bug#865712: ocaml: CVE-2017-9772: local privilege escalation issue with ocaml binaries Salvatore Bonaccorso
• 2017/06/23 [Secure-testing-team] Bug#865680: poppler: CVE-2017-9775: stack buffer overflow in GfxState.cc Salvatore Bonaccorso
• 2017/06/23 [Secure-testing-team] Bug#865679: poppler: CVE-2017-9776: integer overflow leading to heap buffer overflow in JBIG2Stream.cc via a crafted PDF document Salvatore Bonaccorso
• 2017/06/23 [Secure-testing-team] Bug#865678: knot: Improper TSIG validity period check can allow TSIG forgery Salvatore Bonaccorso
• 2017/06/23 [Secure-testing-team] Learn how a college professor made a legitimate discovery loretta . squire
• 2017/06/23 [Secure-testing-team] Bug#865647: php-horde-ingo: XSS vulnerability in rule search Philip Frei
• 2017/06/22 [Secure-testing-team] Bug#865607: gdb: CVE-2017-9778: Fail to detect invalid FDE header, can exhaust gdb process's virtual memory and terminate debug session Salvatore Bonaccorso
• 2017/06/22 [Secure-testing-team] Acitif à céder Jean-Michel Geslin
• 2017/06/21 [Secure-testing-team] Bug#865505: php-horde-image: CVE-2017-9774: RCE via crafted GET request for authenticated users Salvatore Bonaccorso
• 2017/06/21 [Secure-testing-team] Bug#865504: php-horde-image: CVE-2017-9773: DoS via crafted URL to the Null image driver Salvatore Bonaccorso

• Earlier messages
• Later messages