Slackware Security Advisory - New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
6226887b79182f2879fc61785788eeaa7e5a8629c7a587dcfebb9b97fe79d104
Slackware Security Advisory - New httpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
fabbf00be913fbc1ea322e0c9f5f56231cc9f149ec2cb6f5840f0655e2e5c915
Slackware Security Advisory - New ntp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
ce08e480bab8400e8443fea5fd46d3214d00916ac2d7a30ff9d78c085b25b805
Slackware Security Advisory - New gnupg packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
3a0f7c0ad6c6d8f3a18498acb84b48b76b0a8d05e934b6cfca87447479bf8a8a
Slackware Security Advisory - New proftpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.
97da8a8f846347404ac0427633ddc66222c5b7357000fbdadd6e7a16f4c38fa8
Slackware Security Advisory - New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues.
887f44359723d57083b4ff5a78b8cdd231efcb087fa0cda54dff6fe2ec6cf3a1
Slackware Security Advisory - New ppp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
7a48ee5a01b2016c74691deaae312c4964ac9f83da93f71edd58f4c7ac804936
Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues.
99ad1abcd26dab08695811257c2998e0a30dd4949338dc99aae75015340fafe9
Slackware Security Advisory - New mutt packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue.
66ead44099a0d5465639c8f233741f3b5fbd27855830d91d7598c88f536129c6
Slackware Security Advisory - New libssh packages are available for Slackware 14.0, 14.1, and -current to fix security issues.
d1c60898d3bb6fdb8ab9765889f38b999cc01a200e44d5db6df6716245d1769c
Slackware Security Advisory - New qt packages are available for Slackware 14.1, and -current to fix security issues.
c709353b98a3dbcad2cb559f52668e557e32b02ae90f4d4e53ba90425924c0f3
Slackware Security Advisory - New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues.
c45fafa9f2ff997e5bbc86f0c031764e5cdae36ce5381a4b1737e1bc08e492be
Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues.
1a95717c7172af2843b23cc13f8ebffc264605bd54d56e44448017d8f97efdca
HP Security Bulletin HPSBGN03308 1 - A potential security vulnerability has been identified with the HP TippingPoint Security Management System (SMS) and vSMS. A vulnerability in JBOSS RMI could be exploited to allow remote code execution. Revision 1 of this advisory.
05c04745f9f11a0f97a69946468039e77ad8bec791e1ffe357f7e70449c86622
iPassword Manager version 2.6 suffers from script insertion vulnerabilities.
415933c09968cdfa904a10dd1e9fc80833182e8486da654081386a4e06317765
Apple IOS versions 8.0 through 8.0.2 suffer from a lock bypass vulnerability.
2a4fcf39b9674e0fab493951eb2356c8e64520e510a2801dac65a943f0c92d52
HomeAdvisor suffers from filter bypass and script insertion vulnerabilities.
6d5a8398e060794ddd2c2690f9a0025e4f6d0de81b52ed89649f6a4c458ffad8
Manage Engine Event Log Analyzer version 10 build 10003 suffers from a reflective cross site scripting vulnerability.
41f2fd8644c0ad8d91ce4e952386500f322ecd719941a2efdb62bc47bef2701f
Manage Engine Firewall Analyzer version 8.3 build 8300 suffers from a reflective cross site scripting vulnerability.
7df0bf9dab340f2ee8071a709ba19934cb1b57440ddaaac953238973e3a6bd13
WordPress Add Link to Facebook plugin version 1.215 suffers from a persistent cross site scripting vulnerability.
0ac4dfb430815fc56adc2619109649b9faa56fa9e5d6347c0a4f424db4a12b7c
Open Letters remote PHP code injection exploit.
5b55b8dec7032e9a0c9a5a10c5e92faa1e847ea73b757f2e6b21d10d4274b5e0
A security issue in Linux ASLR implementation which affects some AMD processors has been found. The issue affects to all Linux process even if they are not using shared libraries (statically compiled). The problem appears because some mmapped objects (VDSO, libraries, etc.) are poorly randomized in an attempt to avoid cache aliasing penalties for AMD Bulldozer (Family 15h) processors. Affected systems have reduced the mmapped files entropy by eight. Grsecurity/PaX is also affected. The total entropy for the VVAR/VDSO, mmapped files and libraries of a processes are reduced by eight. The number of possible locations where the mapped areas can be placed are reduced by 87.5%.
775d1f12325916fd03a6f940333695b6ae0d7cad1e68d2d8d0149405f2dd39ed
A bug in Linux ASLR implementation has been found. The issue is that the mmap base address for processes is not properly randomized on some architectures due to an improper bit-mask manipulation. Affected systems have reduced the mmap area entropy of the processes by half.
5561c263f5ccd156d5f5f50185acc7545668c0275b3b60446b6c52dff9c6ea14
Red Hat Security Advisory 2015-0868-01 - KVM is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager. It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data. This issue was discovered by Paolo Bonzini of Red Hat.
7b075913a496b047a5a0a221fb888413a024e6e84d58dc1db83bd858d22be2d4
Debian Linux Security Advisory 3231-1 - Several vulnerabilities were discovered in Subversion, a version control system.
b713fc8d250561a0258c3f5d80214cbca484512f312bc325fcdb64bddbe08dba