The call for papers for the upcoming Hack in The Box Security Conference 2018 in Dubai is now open.
87eb79eeed2134c3b12da6e709cd0ab600a1fb775a4d9d7a002313149b8ae23eMicro Focus Security Bulletin MFSBGN03812 1 - A potential security vulnerability has been identified in Micro Focus Application Performance Management. The vulnerability could be remotely exploited to remote cross-site tracing and Remote Disclosure of Information. Revision 1 of this advisory.
036ae2ebc4885aadfd00524527301c924ad6d398156ccf5f97b9ecd58df42728Red Hat Security Advisory 2018-2598-01 - OpenDaylight is a modular open platform for customizing and automating networks of any size and scale. The OpenDaylight Project arose out of the SDN movement, with a clear focus on network programmability. Issues addressed include a denial of service vulnerability.
52b6589c17a7e7105836c225c8116a4c762b274e3e99d888b8f0fa31bcb41619Red Hat Security Advisory 2018-2603-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include memory vulnerabilities.
3d81e96dde42a990c58ceedf86f6ffc84242f9f9b4c00806585ade31a234b825Red Hat Security Advisory 2018-2585-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Issues addressed include code execution and information leakage vulnerabilities.
c2f7fbc80a1e3aef3f121319c8acd42c0aa36597f4908da7a0a51c7f2be8bcddUbuntu Security Notice 3757-1 - Hosein Askari discovered that poppler incorrectly handled certain PDF files. An attacker could possible use this issue to cause a denial of service.
b86c980fc102c2b2063bceaad5f2650f8a38ec10c0c75e56c27c61a827da3c32Debian Linux Security Advisory 4281-1 - Several issues were discovered in the Tomcat servlet and JSP engine. They could lead to unauthorized access to protected resources, denial-of-service, or information leak.
604c5094b1c4bc66945081a57708d07c2e803518e043a3487002861f782bc32cSlackware Security Advisory - New kernel packages are available for Slackware 14.2 to mitigate security issues.
ea856943ce3323e90a62f9f0444ae61a7c2cd21247544d82273f957d98b39be2Proof of concept exploit that demonstrates a buffer overflow vulnerability in the Intel Management Engine as described in INTEL-SA-00086.
c02278512d883fa36838e5c564099cc4c6de0ef89e106b3e633e796c817b0fdaArgus Surveillance DVR version 4.0.0.0 suffers from a SYSTEM privilege escalation vulnerability.
ca718895c6670eb1498a9f11f4fff6d2a46291897fe693f0d13d92bf25fd71f6Argus Surveillance DVR version 4.0.0.0 suffers from file disclosure and traversal vulnerabilities.
a9a42e3f1d624723ce2e6a7d07ba018b7f53307e1044b0fcf7c8770660e5cf2bRSA BSAFE Micro Edition Suite and Crypto-C Micro Edition suffer from resource exhaustion, integer overflow, improper clearing of heap memory, covert timing channel, and buffer over-read vulnerabilities.
583e0d3b08d53b6fe4e94e98b388350b2654a17ad7e0454e211d8b07e6edde82Ubuntu Security Notice 3752-3 - It was discovered that, when attempting to handle an out-of-memory situation, a null pointer dereference could be triggered in the Linux kernel in some circumstances. A local attacker could use this to cause a denial of service. Wen Xu discovered that the XFS filesystem implementation in the Linux kernel did not properly validate meta-data information. An attacker could use this to construct a malicious xfs image that, when mounted, could cause a denial of service. Various other issues were also addressed.
df405822058b07d43330a4315ada3e76a4b71ec3918d891cc128c577470eaa65Red Hat Security Advisory 2018-2576-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP30. Issues addressed include denial of service and traversal vulnerabilities.
4b188d1b15ec7339ac307092c0aa9ab9a2507855f0fc347e6a99f9dfc3bcde8cRed Hat Security Advisory 2018-2575-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP20. Issues addressed include denial of service and traversal vulnerabilities.
23b1e7103f814a2701427f105de8aeeedf3a5b0e15d6ccbb1452af8c7f352335
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed