Red Hat Security Advisory 2018-2165-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include an information leakage vulnerability.
f561e982de06c9f064253679af839189ef3eca723bb0ec720497d5ecb72fa450
Ubuntu Security Notice 3705-2 - USN-3705-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, bypass same-origin restrictions, bypass CORS restrictions, bypass CSRF protections, obtain sensitive information, or execute arbitrary code. A security issue was discovered with WebExtensions. If a user were tricked in to installing a specially crafted extension, an attacker could potentially exploit this to obtain full browser permissions. Various other issues were also addressed.
b728d625cde3c3ceffd5e202afc68561c11641b669c108c08cc75064654ced01
Ubuntu Security Notice 3709-1 - It was discovered that Xapian-core incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code.
3e43ca2a5d0ae69d538dd29ae2ee92317a5bb2db9ab1a4177f13252e4dc70ea7
Ubuntu Security Notice 3706-2 - USN-3706-1 fixed a vulnerability in libjpeg-turbo. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that libjpeg-turbo incorrectly handled certain malformed JPEG images. If a user or automated system were tricked into opening a specially crafted JPEG image, a remote attacker could cause libjpeg-turbo to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
fb6d454e02f1f7af383093ed44dbbea2db259966e22aa088f0098b0a73af9780
Red Hat Security Advisory 2018-2166-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Issues addressed include a code execution vulnerability.
71654bb9ce905169c5fccddb7d22fa20365adc1aa67b696b3c986d655d13b02c
Apple Security Advisory 2018-7-9-7 - iTunes 12.8 for Windows is now available and addresses code execution and denial of service vulnerabilities.
a1eae5a71289bceaaa173df655736b58e13297944cd64fe2efca08cefc29355e
Red Hat Security Advisory 2018-2150-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Issues addressed include a code execution vulnerability.
a00b8670cfc57926b24f3b08ea5fe6992e6f8a5e55fd39518461001a7ec3d530
ELO (Elektronischer Leitz-Ordner) versions 9 and 10 suffer from a remote time-based blind SQL injection vulnerability.
2603a781501209d37bfe05201ca1225b689d29445e46486677e64b0e6b94f1cb
Red Hat Security Advisory 2018-2152-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Issues addressed include a code execution vulnerability.
4462bd4c5cc7ef6e4636b5c13e7b285c3098bdf9d273aca4077d54a8ce4172b0
Red Hat Security Advisory 2018-2147-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a code execution vulnerability.
b457b588feadfc4250ff7e8b20756c19a71edbae2dea14ab3884c61bf5753eec
Red Hat Security Advisory 2018-2151-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Issues addressed include a code execution vulnerability.
83bc063546a55e950d576b402fd5c3b88770ceec95ff8daf3204bdffcd0be456
D-Link DIR601 version 2.02 suffers from a credential disclosure vulnerability.
12427990fb2379d9872b15184c0de9bdb51b17f4dce37688d730c894ea754721
WolfSight CMS version 3.2 suffers from a remote SQL injection vulnerability.
64fb2fcfdae2d13faa28a0ec67b9b973f97498f7f8182838d7ce334a5ee00006
VLC Media Player version 2.2.8 use-after-free arbitrary code execution proof of concept exploit.
3a48ef91adb45a8f2f6681db1351e987e871313a2e75571f2f23b4f6b6dcce15
Facebook Messenger for Android can be crashed via the application's status check. This can be exploited by an MITM attacker via intercepting that call and returning a large amount of data. This happens because this status check is not done over SSL and the application did not contain logic for checking if the returned data is very large.
2b84ee490dfce23021dbf5500cae6f29e03f362c5e22820ba16e2c8d66f120a4