Ubuntu Security Notice 2866-1 - Karthikeyan Bhargavan and Gaetan Leurent discovered that NSS incorrectly allowed MD5 to be used for TLS 1.2 connections. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information.
5f7a0e4e8c04ff2079359ed8d4f2293249c66be0726efcbdc91fb896e990d70a
Netgear router version 1.0.0.24 suffers from a cross site scripting vulnerability.
553df79f01efb5477e1ed5ba717b96a6ec633c78ae1d14cc8cc28af66b8e25f6
Cacti versions 0.8.8f and below suffer from a remote SQL injection vulnerability in graphs_new.php.
a78b6681709c8cc20f7d107b4b963d37f859192b55999eb8a655eb58c5f6c5c4
Adobe Flash suffers from an out-of-bounds memset in BlurFilter processing.
7df93754103d74386af9507cda9b0e9f63b8090f2874ca145b8075f6c4657327
There is a use-after-free in Adobe Flash that appears to be related to rendering the display based on multiple scripts.
6530e770b099ec2777b2f56f71ed7db9d080095d519bb156f9718115da0d804f
Proof of concept code that demonstrates a use-after-free when setting stage in Adobe Flash.
56a33a8feee32d1b84163932f678a9981b86d61dc2b9416ad00981fc6d63a20d
B-Sides Ljubljana will be held March 9th,2016 in Ljubljana, Slovenia.
1d8e6948fea0276d7013d6dce17770e3070334b28bfe119301c20856045151c7