Red Hat Security Advisory 2018-3655-01 - MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. Issues addressed include a ridiculous amount of unspecified vulnerabilities.
dfcc00ca751525154904480761efc7b9132aeacc330cada2b5b82e472c7fe96e
Red Hat Security Advisory 2018-3671-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP35. Issues addressed include a denial of service vulnerability.
b9e101d4654d1ee487628b0854b423e6a5e72265a863ae854851e88b704f39d0
Red Hat Security Advisory 2018-3672-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP35. Issues addressed include a denial of service vulnerability.
de9a35cc190a2af10e419079bbc8309b996a09cfe811621caa087d3d2b12cfa2
Ubuntu Security Notice 3826-1 - Daniel Shapira and Arash Tohidi discovered that QEMU incorrectly handled NE2000 device emulation. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. It was discovered that QEMU incorrectly handled the Slirp networking back-end. A privileged attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code on the host. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Various other issues were also addressed.
4e4c876bb878a34b2dd16b55e3b1d2a08ed115428511e04586ecb54058caa47b
Gentoo Linux Security Advisory 201811-15 - Multiple vulnerabilities have been found in MuPDF, the worst of which could allow the remote execution of arbitrary code. Versions less than 1.13.0 are affected.
84fc1bb2dacd392565404ca0665e2a21baa49ee8d248356babe74470a83a9a3a
Red Hat Security Advisory 2018-3653-01 - nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Issues addressed include a denial of service vulnerability.
cdf8832a2ee43f362646287957e86d0a848865e5cbce03448952aedf3e742e46
No-Cms version 1.0 suffers from a remote SQL injection vulnerability.
70c8dc45a5d1b796fb3ea69e6b5f19f4feddf01fdbbd17933705d365bbd73ddd
Debian Linux Security Advisory 4344-1 - Aidan Marlin discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, is prone to a cross-site scripting vulnerability in handling invalid style tag content.
61088ba4c1524225f61aba788ca2db36974325e1503cca823eabfc5a0b66ce79
MariaDB Client version 10.1.26 suffers from a denial of service vulnerability.
a054d0e347263826f67fc89d81e52aa27f6e3a54105a83b36e41a5afcc238e9c
WordPress Easy Testimonials version 3.2 suffers from a cross site scripting vulnerability.
ca72b4de993e05684b5aade461f5c5d0c3aaccf69110cfee697d504c773fc1e9
Zyxel VMG1312-B10D 5.13AAXA.8 suffers from a directory traversal vulnerability.
60c8e9a5e09699dcc7795a645cfb7557da62d34304af0a5f585f8638ad3a1365
Red Hat Security Advisory 2018-3652-01 - nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Issues addressed include a denial of service vulnerability.
13d4d0dbcb52c25e093c1a22ae583ea2870ab00c6e2cac59c54802f4b830fccc
Arm Whois version 3.11 suffers from a buffer overflow vulnerability.
a49cb25efda24f3cfb28adf894e9afdd88945abc5c1b68d5f86a2ba3a21f6906
Red Hat Security Advisory 2018-3648-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 70.0.3538.110. Issues addressed include an use-after-free vulnerability.
c03fc5ca2a56763a4889075cf695caab0284cdb260e9b4c61ee185bdae126268
Debian Linux Security Advisory 4343-1 - It was discovered that a buffer overflow in liveMedia, a set of C++ libraries for multimedia streaming could result in the execution of arbitrary code when parsing a malformed RTSP stream.
2a657e6e38cb5cf8947b1dab8cdb89fdc98f0ab6a0750b9ac6895379d8ba8f24