Ubuntu Security Notice 3421-1 - It was discovered that Libidn2 incorrectly handled certain input. A remote attacker could possibly use this issue to cause Libidn2 to crash, resulting in a denial of service.
3bed95d5ea26f28c5276b97bdec3ac22Ubuntu Security Notice 3346-2 - USN-3346-1 fixed vulnerabilities in Bind. The fix for CVE-2017-3142 introduced a regression in the ability to receive an AXFR or IXFR in the case where TSIG is used and not every message is signed. This update fixes the problem. In addition, this update adds the new root zone key signing key. Various other issues were also addressed.
6f82feb480bd6612b9d8ced44919b34eUbuntu Security Notice 3418-1 - It was discovered that the GDK-PixBuf library did not properly handle certain jpeg images. If an user or automated system were tricked into opening a specially crafted jpeg file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that the GDK-PixBuf library did not properly handle certain tiff images. If an user or automated system were tricked into opening a specially crafted tiff file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
6ea24115becec07c142c0e43fe654aceRed Hat Security Advisory 2017-2675-01 - Red Hat Mobile Application Platform 4.5 consists of three main components: Core - development and management of apps occurs in the RHMAP Core, which can be installed either in an on-premise installation of OpenShift Container Platform 3.x. MBaaS - Application data, runtimes, and integrations are deployed to the RHMAP MBaaS installed on OpenShift Container Platform 3.x. Build Farm - deployed separately from the Core and the MBaaS, the Build Farm is shared between all instances of RHMAP. Third-party Linux, Windows, and Apple server hosting providers are used to support building client app binaries for all platforms.
99a6e0d3fc9dfeb7ace4c6a777026fdbRed Hat Security Advisory 2017-2674-01 - Red Hat Mobile Application Platform 4.5 is delivered as a set of Docker-formatted container images.
1776360c92ea4cd1c7cf60450b351280Gentoo Linux Security Advisory 201709-14 - Multiple vulnerabilities have been found in cURL, the worst of which may allow attackers to bypass intended restrictions. Versions less than 7.55.1 are affected.
377d37f8cbbeb5ad23ef30e363f705feGentoo Linux Security Advisory 201709-13 - A vulnerability in SquirrelMail might allow remote attackers to execute arbitrary code. Versions less than 1.4.23_pre20140426 are affected.
cb232401734b30b4a34acc080d281ec5Gentoo Linux Security Advisory 201709-12 - A vulnerability in module File::Path for Perl allows local attackers to set arbitrary mode values on arbitrary files bypassing security restrictions. Versions less than 5.24.1-r2 are affected.
5620847c3a8f249a70ab67b6ec52b2b1Gentoo Linux Security Advisory 201709-11 - Gentoo's GIMPS ebuilds are vulnerable to privilege escalation due to improper permissions. A local attacker could use it to gain root privileges. Versions less than 28.10-r1 are affected.
c88f541b6a168b9f0e88964c59cf0ef8Gentoo Linux Security Advisory 201709-10 - A command injection vulnerability in Git may allow remote attackers to execute arbitrary code. Versions less than 2.13.5 are affected.
87c2e76385269538182e57e567c19ac7Gentoo Linux Security Advisory 201709-9 - A command injection vulnerability in Subversion may allow remote attackers to execute arbitrary code. Versions less than 1.9.7 are affected.
1f318f458012ed3bb2fb04bcb5c3a084Debian Linux Security Advisory 3976-1 - Marcin 'Icewall' Noga of Cisco Talos discovered two vulnerabilities in freexl, a library to read Microsoft Excel spreadsheets, which might result in denial of service or the execution of arbitrary code if a malformed Excel file is opened.
8b3157a35081512438053a2d850fe273Gentoo Linux Security Advisory 201709-8 - Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. Versions less than 2.36.9 are affected.
91bc0438314b1cb99e3b7f0cad5f9366Gentoo Linux Security Advisory 201709-7 - A vulnerability in Kpathsea allows remote attackers to execute arbitrary commands by manipulating the -tex option from mpost program. Versions less than 6.2.2_p20160523 are affected.
281547b29dde2859058350726bca042bGentoo Linux Security Advisory 201709-6 - A vulnerability in Supervisor might allow remote attackers to execute arbitrary code. Versions less than 3.1.4 are affected.
9eaf02e97bea5c4a5ab2bcea2e8014caGentoo Linux Security Advisory 201709-5 - A vulnerability in chkrootkit may allow local users to gain root privileges. Versions less than 0.50 are affected.
8e8deded30eaedbb8641385e2485f018Gentoo Linux Security Advisory 201709-4 - A vulnerability in mod_gnutls allows remote attackers to spoof clients via crafted certificates. Versions less than 0.7.3 are affected.
8eb192ea905cac5222a46fbb920b8a8fGentoo Linux Security Advisory 201709-3 - Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 2.16.5 are affected.
d251d74223cbe558439a3039173afde9Gentoo Linux Security Advisory 201709-2 - Multiple vulnerabilities have been found in Binutils, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 2.28.1 are affected.
f1936ee853c46afad6ba02b59f393c46EMC Data Protection Advisor contains undocumented accounts with hard-coded passwords that could potentially be exploited by malicious users to compromise the affected system. Versions 6.3.x and 6.4.x are affected.
b3d7581eae0d75c539bfbda41e34f29cAstaro Security Gateway 7 suffers from a remote code execution vulnerability.
593db61c13a32607441358ca66907051XYZ Auto Classifieds version 1.0 suffers from a remote SQL injection vulnerability.
a59c025d364f6d4da15216c1550a1164Consumer Review Script version 1.0 suffers from a remote SQL injection vulnerability.
e9210bbf3b3d7339b5b0e9492145a413D-Link DIR8xx routers suffer from a credential disclosure vulnerability.
caed8d87329d913d76f39a2df76a112aD-Link DIR8xx routers suffers from a remote root code execution vulnerability.
d006060c6b96e9ff168c3e4b0bb47faa
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed