what you don't know can hurt you
Showing 1 - 19 of 19 RSS Feed

Files Date: 2019-10-15

Ubuntu Security Notice USN-4156-1
Posted Oct 15, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4156-1 - It was discovered that SDL incorrectly handled certain images. If a user were tricked into opening a crafted image file, a remote attacker could use this issue to cause SDL to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-13616, CVE-2019-7575, CVE-2019-7635
MD5 | aded40db24fed71b171ff88468e96cb8
Red Hat Security Advisory 2019-3067-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3067-01 - Java Security Services provides an interface between Java Virtual Machine and Network Security Services. It supports most of the security standards and encryption technologies supported by NSS including communication through SSL/TLS network protocols. JSS is primarily utilized by the Certificate Server as a part of the Identity Management System. An implicit trust issue has been addressed.

tags | advisory, java, protocol
systems | linux, redhat
advisories | CVE-2019-14823
MD5 | 7668e2b1bc669aae11f27618c9643745
Red Hat Security Advisory 2019-3055-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3055-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service, heap overflow, and use-after-free vulnerabilities.

tags | advisory, denial of service, overflow, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-20856, CVE-2019-10126, CVE-2019-3846, CVE-2019-9506
MD5 | 6998d57a608daf5ea5099c03b7be1866
Red Hat Security Advisory 2019-3076-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3076-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include heap overflow and use-after-free vulnerabilities.

tags | advisory, overflow, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-20856, CVE-2019-10126, CVE-2019-3846, CVE-2019-9506
MD5 | 2f3ea09ee723bba96373fc4da24d2f11
Red Hat Security Advisory 2019-3082-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3082-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on WildFly. This asynchronous patch is a security update for the wildfly-core package in Red Hat JBoss Enterprise Application Platform 7.2.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2019-14838
MD5 | aa0489be5f864c68dbb389053b6b612f
Red Hat Security Advisory 2019-3083-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3083-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on WildFly. This asynchronous patch is a security update for the wildfly-core package in Red Hat JBoss Enterprise Application Platform 7.2.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2019-14838
MD5 | 2430a24227658ce1c44e99ea224e938c
Ubuntu Security Notice USN-4155-1
Posted Oct 15, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4155-1 - It was discovered that Aspell incorrectly handled certain inputs. An attacker could potentially access sensitive information.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-17544
MD5 | 1ab820ca2537a2de58a75d2aa1fc9107
Bolt CMS 3.6.10 Cross Site Request Forgery
Posted Oct 15, 2019
Authored by r3m0t3nu11

Bolt CMS version 3.6.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | d8a2a4d2c981229fca77e73214e29f08
sudo 1.8.28 Security Bypass
Posted Oct 15, 2019
Authored by joev, Mohin Paramasivam

sudo version 1.8.28 suffers from a security bypass vulnerability.

tags | exploit, bypass
MD5 | 6156d8a204112f3740a39ba32ccb9066
ActiveFax Server 6.92 Build 0316 ActiveFaxServiceNT Unquoted Service Path
Posted Oct 15, 2019
Authored by Cakes

ActiveFax Server version 6.92 Build 0316 suffers from an ActiveFaxServiceNT unquoted service path vulnerability.

tags | exploit
MD5 | e7dc061d5737dcb091825c7776b3f0b9
Hacking The PS2 With Yabasic
Posted Oct 15, 2019
Authored by CTurt

Whitepaper that discusses hacking the Sony Playstation 2 with Yabasic.

tags | paper
MD5 | ef4d562726247dc6be934a633046b1bc
Debian Security Advisory 4543-1
Posted Oct 15, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4543-1 - Joe Vennix discovered that sudo, a program designed to provide limited super user privileges to specific users, when configured to allow a user to run commands as an arbitrary user via the ALL keyword in a Runas specification, allows to run commands as root by specifying the user ID - -1 or 4294967295. This could allow a user with sufficient sudo privileges to run commands as root even if the Runas specification explicitly disallows root access.

tags | advisory, arbitrary, root
systems | linux, debian
advisories | CVE-2019-14287
MD5 | ec6c909fbfdafb0f16d2670450ed784f
Slackware Security Advisory - sudo Updates
Posted Oct 15, 2019
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New sudo packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2019-14287
MD5 | b876fb4cb461a2428b17157eb3049466
Podman / Varlink Remote Code Execution
Posted Oct 15, 2019
Authored by Jeremy Brown

Remote exploit for Podman when configured with Varlink that allows for remote command execution, denial of service, directory traversal, and information disclosure vulnerabilities.

tags | exploit, remote, denial of service, vulnerability, info disclosure
MD5 | 877a6bf3a116aaaf342e4d3eba5c9537
OpenProject 10.0.1 / 9.0.3 Cross Site Scripting
Posted Oct 15, 2019
Authored by David Haintz | Site sec-consult.com

OpenProject versions 9.0.3 and below and 10.0.1 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-17092
MD5 | 9337bb16250afaa04c0cf42e5bcc7729
Red Hat Security Advisory 2019-3050-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3050-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.4 serves as a replacement for Red Hat Single Sign-On 7.2.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include bypass and code execution vulnerabilities.

tags | advisory, web, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2019-10184, CVE-2019-12086, CVE-2019-12814, CVE-2019-14379, CVE-2019-14820, CVE-2019-14832
MD5 | 0542e6d7171516c6f163a08eb0d6098b
Red Hat Security Advisory 2019-3049-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3049-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. These packages provide security updates to adapters for use with Red Hat Single Sign-On 7.3.4 for Red Hat JBoss Enterprise Application Platform 7.2. An adapter endpoint exposure issue has been addressed.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2019-14820
MD5 | 52a536c81356053ffed4d4e92c79ad10
Red Hat Security Advisory 2019-3041-01
Posted Oct 15, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3041-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. This advisory covers the RPM packages for the OpenShift Service Mesh 1.0.1 release. Issues addressed include a denial of service vulnerability.

tags | advisory, denial of service
systems | linux, redhat
advisories | CVE-2019-9511, CVE-2019-9513
MD5 | 0404134e1bde7518da003251af3d43d7
Ubuntu Security Notice USN-4154-1
Posted Oct 15, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4154-1 - Joe Vennix discovered that Sudo incorrectly handled certain user IDs. An attacker could potentially exploit this to execute arbitrary commands as the root user.

tags | advisory, arbitrary, root
systems | linux, ubuntu
advisories | CVE-2019-14287
MD5 | c56785afc4a4f41608914548b7170d11
Page 1 of 1
Back1Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    1 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    12 Files
  • 13
    Feb 13th
    18 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    19 Files
  • 20
    Feb 20th
    20 Files
  • 21
    Feb 21st
    11 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close