Twenty Year Anniversary
Showing 26 - 50 of 34,053 RSS Feed

Operating System: Linux

Slackware Security Advisory - php Updates
Posted Sep 17, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

tags | advisory, php
systems | linux, slackware
MD5 | 5f3e62dec417873d80984702db0e07ef
Ubuntu Security Notice USN-3765-2
Posted Sep 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3765-2 - USN-3765-1 fixed a vulnerability in curl. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that curl incorrectly handled certain inputs. An attacker could possibly use this to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-14618
MD5 | 046498323331b3221476fc8637909661
Ubuntu Security Notice USN-3765-1
Posted Sep 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3765-1 - It was discovered that curl incorrectly handled certain inputs. An attacker could possibly use this to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-14618
MD5 | a456fd55f32a80ce8985878450202aa9
Debian Security Advisory 4295-1
Posted Sep 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4295-1 - safety errors and use-after-frees may lead to the execution of arbitrary code or denial of service.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2018-12361, CVE-2018-12367, CVE-2018-12371, CVE-2018-5156, CVE-2018-5187
MD5 | c01b31084c3ffcfaf809a853f36ca1f8
Ubuntu Security Notice USN-3761-3
Posted Sep 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3761-3 - USN-3761-1 fixed vulnerabilities in Firefox. The update caused several regressions affecting spellchecker dictionaries and search engines, which were partially fixed by USN-3761-2. This update contains the remaining fix. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, or execute arbitrary code. It was discovered that if a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords would still be accessible. A local user could exploit this to obtain sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2018-12378, CVE-2018-12383
MD5 | 6d86615e6427f6c484cd9030a34da1d7
Debian Security Advisory 4294-1
Posted Sep 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4294-1 - Tavis Ormandy discovered multiple vulnerabilites in Ghostscript, an interpreter for the PostScript language, which could result in the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2018-16509, CVE-2018-16802
MD5 | 5536e1e864054d6f82660441d74f9e19
Debian Security Advisory 4293-1
Posted Sep 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4293-1 - Several heap buffer overflows were found in discount, an implementation of the Markdown markup language, that could be triggered witth specially crafted Markdown data and would cause discount to read past the end of internal buffers.

tags | advisory, overflow
systems | linux, debian
advisories | CVE-2018-11468, CVE-2018-11503, CVE-2018-11504, CVE-2018-12495
MD5 | 4421b9685d73866006c16d1c98ab0cb1
Debian Security Advisory 4273-2
Posted Sep 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4273-2 - This update ships updated CPU microcode for additional models of Intel CPUs which were not yet covered by the Intel microcode update released as DSA-4273-1 (and thus provides SSBD support (needed to address "Spectre v4") and fixes for "Spectre v3a")).

tags | advisory
systems | linux, debian
advisories | CVE-2018-3639, CVE-2018-3640
MD5 | 8d3bff6c7eba959568a9bbd92b2ec137
Slackware Security Advisory - ghostscript Updates
Posted Sep 14, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New ghostscript packages are available for Slackware 14.2 and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2018-16509
MD5 | c7cf1534fe66bdfbfa621895e3534502
Red Hat Security Advisory 2018-2707-01
Posted Sep 14, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2707-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 31.0.0.108. Issues addressed include an information leakage vulnerability.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2018-15967
MD5 | 34118cbfe8ebbee97aa46dfbadbd9e17
Linux/x86 Random Bytewise XOR + Insertion Encoder Shellcode
Posted Sep 14, 2018
Authored by Ray Doyle

54 bytes small Linux/x86 random bytewise XOR + insertion encoder shellcode.

tags | x86, shellcode
systems | linux
MD5 | 06349f5063d609d0069f113064a877b7
Linux/x86 File Modification(/etc/hosts) Polymorphic Shellcode
Posted Sep 14, 2018
Authored by Ray Doyle

99 bytes small Linux/x86 file modification (/etc/hosts) polymorphic shellcode.

tags | x86, shellcode
systems | linux
MD5 | b6b68473df8cea8e32cab90f6a2fb2df
Linux/x86 Read File (/etc/passwd) MSF Optimized Shellcode
Posted Sep 14, 2018
Authored by Ray Doyle

61 bytes small Linux/x86 read file (/etc/passwd) MSF optimized shellcode.

tags | x86, shellcode
systems | linux
MD5 | 774bb96e53da0cf6170ece1a360e3be1
Linux/x86 Add User(r00t/blank) Polymorphic Shellcode
Posted Sep 14, 2018
Authored by Ray Doyle

103 bytes small Linux/x86 add user (r00t/blank) polymorphic shellcode.

tags | x86, shellcode
systems | linux
MD5 | 688f6c9dd5bbf7d04ce90d82048badff
Ubuntu Security Notice USN-3747-2
Posted Sep 13, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3747-2 - USN-3747-1 fixed vulnerabilities in OpenJDK 10 for Ubuntu 18.04 LTS. Unfortunately, that update introduced a regression around accessability support that prevented some Java applications from starting. This update fixes the problem. Various other issues were also addressed.

tags | advisory, java, vulnerability
systems | linux, ubuntu
advisories | CVE-2018-2952, CVE-2018-2972
MD5 | 67a9c4972cb887b4f256e30f4bdf6d68
Ubuntu Security Notice USN-3747-2
Posted Sep 13, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3747-2 - USN-3747-1 fixed vulnerabilities in OpenJDK 10 for Ubuntu 18.04 LTS. Unfortunately, that update introduced a regression around accessibility support that prevented some Java applications from starting. This update fixes the problem. Various other issues were also addressed.

tags | advisory, java, vulnerability
systems | linux, ubuntu
advisories | CVE-2018-2952, CVE-2018-2972
MD5 | 67a9c4972cb887b4f256e30f4bdf6d68
Red Hat Security Advisory 2018-2701-01
Posted Sep 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2701-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 5 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.

tags | advisory, java, web, denial of service
systems | linux, redhat
advisories | CVE-2018-1336
MD5 | c1ec2a452487dc0b8e2d9f2a129a2558
Linux dmesg Arbitrary Kernel Read
Posted Sep 13, 2018
Authored by Jann Horn, Google Security Research

Linux suffers from an arbitrary kernel read into dmesg via a missing address check in the segfault handler.

tags | advisory, arbitrary, kernel
systems | linux
MD5 | 06e9283f3dd8c10929847de0f7b403d2
Red Hat Security Advisory 2018-2700-01
Posted Sep 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2700-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 5 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.

tags | advisory, java, web, denial of service
systems | linux, redhat
advisories | CVE-2018-1336
MD5 | 630cabf1a1c0aa7715f1511ab0c02a93
Red Hat Security Advisory 2018-2693-01
Posted Sep 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2693-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.2.0 ESR. Issues addressed include bypass and use-after-free vulnerabilities.

tags | advisory, web, vulnerability
systems | linux, redhat
advisories | CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379
MD5 | ba202b454b0aa867d68b359535603f85
Ubuntu Security Notice USN-3764-1
Posted Sep 13, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3764-1 - It was discovered that Zsh incorrectly handled certain scripts. An attacker could possibly use this issue to execute arbitrary code. Richard Maciel Costa discovered that Zsh incorrectly handled certain scripts. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-0502, CVE-2018-1100
MD5 | 96d2efb770040fbb9f4157fad27c0c2e
Red Hat Security Advisory 2018-2692-01
Posted Sep 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2692-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.2.0 ESR. Issues addressed include bypass and use-after-free vulnerabilities.

tags | advisory, web, vulnerability
systems | linux, redhat
advisories | CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379
MD5 | 174a341e1a9432fb9bf9abde31e54dfa
Red Hat Security Advisory 2018-2684-01
Posted Sep 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2684-01 - .NET Core is a managed software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. A new version of .NET Core that addresses several security vulnerabilities is now available. The updated version of the runtime is 2.1.4. The updated version of the SDK is 2.1.402. These versions correspond to the September 2018 security release by .NET Core upstream projects.

tags | advisory, vulnerability
systems | linux, redhat
MD5 | daa05cbc1fd8bb4138ff1edf62c3b8ee
Debian Security Advisory 4292-1
Posted Sep 13, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4292-1 - Henning Westerholt discovered a flaw related to the Via header processing in kamailio, a very fast, dynamic and configurable SIP server. An unauthenticated attacker can take advantage of this flaw to mount a denial of service attack via a specially crafted SIP message with an invalid Via header.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2018-16657
MD5 | 07fdefb37bbfd74dba449492e9ff5d87
Debian Security Advisory 4291-1
Posted Sep 13, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4291-1 - Two input sanitization failures have been found in the faxrunq and faxq binaries in mgetty, a smart modem getty replacement. An attacker could leverage them to insert commands via shell metacharacters in jobs id and have them executed with the privilege of the faxrunq/faxq user.

tags | advisory, shell
systems | linux, debian
advisories | CVE-2018-16741
MD5 | be0cb8e6db32850d296d214e389adee1
Page 2 of 1,363
Back12345Next

File Archive:

September 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    3 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    18 Files
  • 6
    Sep 6th
    18 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    2 Files
  • 9
    Sep 9th
    2 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    17 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    29 Files
  • 14
    Sep 14th
    21 Files
  • 15
    Sep 15th
    3 Files
  • 16
    Sep 16th
    1 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    16 Files
  • 19
    Sep 19th
    29 Files
  • 20
    Sep 20th
    18 Files
  • 21
    Sep 21st
    5 Files
  • 22
    Sep 22nd
    2 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close