QEMU Guest Agent version 2.12.50 suffers from a denial of service vulnerability.
7ca46842a4552a3f52d42e40ba042adc118e1f7768b7b449703c7f601f35f8df
phpMyAdmin version 4.8.1 suffers from a local file inclusion vulnerability that can lead to code execution.
7050bd8ba32a957693bf8e975344bff3d03e5961028dc6d3ce1b55150c1c75bd
phpLDAPadmin version 1.2.2 suffers from a server_id LDAP injection vulnerability.
ea423c43ad0fc17c12ec40d4262d0de63154ac2c90e86fc3f31f4dc03dfa7f3a
GreenCMS version 2.3.0603 suffers from a sensitive information disclosure vulnerability.
7d6c7ab895eeccc376b61f9eecae36a8cb67d36f6d7dd5c15baf2ee5e36ac928
phpMyAdmin version 4.8.1 suffers from an authenticated local file inclusion vulnerabilities.
10f1c79df42b570582f12ca0a79fda04ac535de993f89a192efc5df8747b4b0d
This whitepaper is a case study that analyzes the security of modern bluetooth keyboards. In the course of this research project, SySS GmbH analyzed three currently popular wireless keyboards using Bluetooth technology that can be bought on the Amazon marketplace for security vulnerabilities. The following three devices were tested for security issues from different attacker perspectives: 1byoneKeyboard, LogitechK480, and MicrosoftDesignerBluetoothDesktop (Model1678 2017).
c3809eac9d774959095aaa64f57d5970b03ee8190b8247907992919c1953a04e
Ubuntu Security Notice 3691-1 - It was discovered that the Security component of OpenJDK did not correctly perform merging of multiple sections for the same file listed in JAR archive file manifests. An attacker could possibly use this to modify attributes in a manifest without invalidating the signature. Francesco Palmarini, Marco Squarcina, Mauro Tempesta, and Riccardo Focardi discovered that the Security component of OpenJDK did not restrict which classes could be used when deserializing keys from the JCEKS key stores. An attacker could use this to specially craft a JCEKS key store to execute arbitrary code. Various other issues were also addressed.
7d06ec77a02bfafefe9a5d49677b3d153c5882a5ed1dc168714bceea224ce19e