Red Hat Security Advisory 2018-2825-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.
a11d5e847d6c1ff56b2c9c8a869908db8232a62f8df3b151cc7da252ed065f2a
WordPress WebARX Website Firewall plugin version 4.9.8 suffers from bypass and cross site scripting vulnerabilities.
032d4a54514c2a1ec76ac9061e0c5fa5965ebbe2cb481a055156866bc0a19f07
WordPress Breadcrumb NavXT plugin version 6.1.0 suffers from a username disclosure vulnerability.
a7d331bc7a3c3c5f71c497eb152d46ea8fb5956444bfa1d2462d1d680b57b936
gVisor reuses pagetables across levels without paging-structure invalidation.
193fccefc5c977b91f16570534ba06f19e07ed6de291fdd9b2d2eeba79b56a70
CMS ISWEB version 3.5.3 suffers from a remote SQL injection vulnerability.
2909ddd6bab3f45cee745aae9cdef49e2d801722783ac5bb7a6a1cdd2055a743
Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities.
ae39dfe4bfaaa26cd2361836889bfa69e570b2f0a6679a9b71736478c8294df6
Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.
635dd00f814500a20fbba041a4fa05e33c59282c7a7c1cf98dcbb1c9b0c6e85a
WordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.
f14b654cbda91bb779faa992b5b3d046f5e22527ea9d6ba3195379ea30041d9a
Linux suffers from an integer overflow vulnerability in create_elf_tables(). Multiple exploits provided.
96f76be0c1dab33a40b6145fd293ceab661f631350fcf639a1e4bdb1faedbb92
tekno.Portal version 0.1b suffers from a cross site scripting vulnerability.
c95f61e5098816999f4c76dfa6f6bec729509c281c66dce1c95538185d5c525c
UFONet abuses OSI Layer 7-HTTP to create/manage 'zombies' and to conduct different attacks using GET/POST, multithreading, proxies, origin spoofing methods, cache evasion techniques, etc.
dada0d3c3729f9a90986275635921a39ea612b30b2e86ec76477653bb555dcfb
Red Hat Security Advisory 2018-2745-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Issues addressed include code execution and traversal vulnerabilities.
7e875769e18ebaa154a608a8584f4e8d1008b217996ba4c1c799c3847903d7ac
Ubuntu Security Notice 3772-1 - It was discovered that UDisks incorrectly handled format strings when logging. A local attacker could possibly use this issue to cause a denial of service or obtain sensitive information.
452c28a03f26fc891684973b6c94449062649cb17b44b9ef3ddef9e13d7b4278
Red Hat Security Advisory 2018-2818-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 69.0.3497.100. Issues addressed include a signature mismatch.
e655a287cb652321c967e194a7b6a4e8dc9887f2dcb6de11ab35733ac1d5cd44
Red Hat Security Advisory 2018-2654-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.6.173.0.130. Issues addressed include a crash.
a9d428567a8a3c3a0c977c7602b1779f09bf4c4877a622aae346722e966f7fee
92 bytes small Linux/ARM bindshell null-free shellcode that binds to TCP 0.0.0.0:4444.
5e4a56099b6f728ca368e7e90a10cd1dabd783b21be356cc3342aba2efcb0b55
CrossFont version 7.5 suffers from a denial of service vulnerability.
c66356183d59c99c673b11a30662ce2a3b55f3fd236f61896c36127c01975d42
TransMac version 12.2 suffers from a denial of service vulnerability.
c6b314d8f57320e0963c40f87c4c747b40fc7f13198b6e9afd0af9efba6352e2
Linux suffers from a VMA use-after-free vulnerability via a buggy vmacache_flush_all() fastpath.
e61f826cfebf3e7bf6eb9726e31779f1707a0644cc3e2a4e3c0865759d272ace
WebKit suffers from a WebCore::InlineTextBox::paint out-of-bounds read vulnerability.
994518e9454b66b07b1cd4ca2b9c80bad5057866a1f0bfc7cba8cbaab2478e58
WebKit suffers from a WebCore::RenderMultiColumnSet::updateMinimumColumnHeight use-after-free vulnerability.
289928f02c8cd86108a4f4ba6cf5560fedff675da4f390a55442496ee5478373
WebKit suffers from a WebCore::SVGTRefElement::updateReferencedText use-after-free vulnerability.
7b9a7b1fa82bf893ede05de1b61f81670d536065bdd12d48311c4d40d6bbd860
WebKit suffers from a WebCore::AXObjectCache::handleMenuItemSelected use-after-free vulnerability.
330899d30af3312c70ec9f154cfff29bf2d70b45f25baf5fd97e1bf90cfa6820
WebKit suffers from a WebCore::Node::ensureRareData use-after-free vulnerability.
9d1cb44aa1da7300c832e19ee82fa5727954a678e6c2fb1ef76cecfab64880e8
WebKit suffers from a WebCore::SVGAnimateElementBase::resetAnimatedType use-after-free vulnerability.
3223eccb3079568323f68d5664a9a5ec3e1c8f01f9d6c86877128b0c16b23809