Bugtraq: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

68 messages starting May 15 18 and ending May 24 18
Date index | Thread index | Author index

Advisories

CSNC-2018-003 totemomail Encryption Gateway - Cross-Site Request Forgery Advisories (May 15)
CSNC-2018-002 totemomail Encryption Gateway - JSONP hijacking Advisories (May 15)

Alessandro Ghedini

[SECURITY] [DSA 4202-1] curl security update Alessandro Ghedini (May 16)

Alfredo Ortega

CVE-2018-10994: HTML tag injection in Signal-desktop Alfredo Ortega (May 14)
CVE-2018-11101: Signal-desktop HTML tag injection variant 2 Alfredo Ortega (May 16)

Apple Product Security

APPLE-SA-2018-05-04-1 Security Update 2018-001 Swift 4.1.1 for Ubuntu 14.04 Apple Product Security (May 07)
APPLE-SA-2018-05-08-1 Additional information for APPLE-SA-2018-04-24-2 Security Update 2018-001 Apple Product Security (May 08)

Ben Hutchings

[SECURITY] [DSA 4187-1] linux security update Ben Hutchings (May 01)

cyber-psrt

[security bulletin] MFSBGN03805 - HP Service Manager, Remote Disclosure of Information cyber-psrt (May 10)
[security bulletin] MFSBGN03807 rev.1 - HP Service Manager Software, SQL Injection cyber-psrt (May 10)
[security bulletin] MFSBGN03806 rev.1 - HP Network Automation Software, Network Operations Management (NOM) Suite, Multiple Vulnerabilities cyber-psrt (May 09)
[security bulletin] MFSBGN03808 rev.1 - Micro Focus UCMDB, Cross-Site Scripting cyber-psrt (May 23)
[security bulletin] MFSBGN03804 - HP Service Manager Software, Remote Disclosure of Information cyber-psrt (May 09)
[security bulletin] MFSBGN03802 - Virtualization Performance Viewer (vPV) / Cloud Optimizer, Local Disclosure of Information cyber-psrt (May 10)

FreeBSD Security Advisories

FreeBSD Security Advisory FreeBSD-SA-18:06.debugreg FreeBSD Security Advisories (May 08)

fuming22

K2 smartforms runtime application - 4.6.11 SSRF fuming22 (May 23)

Harry Sintonen

MagniComp SysInfo Information Exposure [CVE-2018-7268] Harry Sintonen (May 18)

IM

Command injections via USB upgrade in MSTAR Set-Top box products IM (May 02)

Kotas, Kevin J

CA20180501-01: Security Notice for CA Spectrum Kotas, Kevin J (May 01)

Michael Catanzaro

WebKitGTK+ Security Advisory WSA-2018-0004 Michael Catanzaro (May 07)

Moritz Bechler

[SYSS-2018-007] ILIAS e-Learning - Reflected Cross-Site-Scripting Moritz Bechler (May 21)

Moritz Muehlenhoff

[SECURITY] [DSA 4200-1] kwallet-pam security update Moritz Muehlenhoff (May 14)
[SECURITY] [DSA 4192-1] libmad security update Moritz Muehlenhoff (May 07)
[SECURITY] [DSA 4199-1] firefox-esr security update Moritz Muehlenhoff (May 10)
[SECURITY] [DSA 4205-1] Advance notification for upcoming end-of-life for Moritz Muehlenhoff (May 21)
[SECURITY] [DSA 4206-1] gitlab security update Moritz Muehlenhoff (May 21)
[SECURITY] [DSA 4210-1] xen security update Moritz Muehlenhoff (May 24)
[SECURITY] [DSA 4198-1] prosody security update Moritz Muehlenhoff (May 09)
[SECURITY] [DSA 4203-1] vlc security update Moritz Muehlenhoff (May 18)
[SECURITY] [DSA 4197-1] wavpack security updaze Moritz Muehlenhoff (May 09)
[SECURITY] [DSA 4189-1] quassel security update Moritz Muehlenhoff (May 02)
[SECURITY] [DSA 4201-1] xen security update Moritz Muehlenhoff (May 15)
[SECURITY] [DSA 4194-1] lucene-solr security update Moritz Muehlenhoff (May 07)
[SECURITY] [DSA 4209-1] thunderbird security update Moritz Muehlenhoff (May 24)

Qualys Security Advisory

Qualys Security Advisory - Procps-ng Audit Report Qualys Security Advisory (May 21)

reggie . dodd30

PHP Login & User Management <= 4.1.0 - Arbitrary File Upload (CVE-2018-11392) reggie . dodd30 (May 24)

research

Android OS Didnt use FLAG_SECURE for Sensitive Settings [CVE-2017-13243] research (May 24)

robin . verton

Trovebox <= 4.0.0-rc6 Authentication Bypass, SQLi, SSRF robin . verton (May 01)

Salvatore Bonaccorso

[SECURITY] [DSA 4196-1] linux security update Salvatore Bonaccorso (May 09)
[SECURITY] [DSA 4195-1] wget security update Salvatore Bonaccorso (May 08)
[SECURITY] [DSA 4193-1] wordpress security update Salvatore Bonaccorso (May 07)
[SECURITY] [DSA 4208-1] procps security update Salvatore Bonaccorso (May 23)
[SECURITY] [DSA 4207-1] packagekit security update Salvatore Bonaccorso (May 23)
[SECURITY] [DSA 4188-1] linux security update Salvatore Bonaccorso (May 01)

Sebastian Neuner

Vulnerabilities in IBMs Flashsystems and Storwize Products Sebastian Neuner (May 14)

Sebastien Delafond

[SECURITY] [DSA 4190-1] jackson-databind security update Sebastien Delafond (May 03)
[SECURITY] [DSA 4204-1] imagemagick security update Sebastien Delafond (May 21)
[SECURITY] [DSA 4191-1] redmine security update Sebastien Delafond (May 03)

SEC Consult Vulnerability Lab

SEC Consult SA-20180503-0 :: Authentication Bypass in Oracle Access Manager (OAM) SEC Consult Vulnerability Lab (May 03)
SEC Consult SA-20180516-0 :: XXE & XSS vulnerabilities in RSA Authentication Manager SEC Consult Vulnerability Lab (May 16)
SEC Consult SA-20180514-0 :: Arbitrary File Upload & Cross-site scripting in MyBiz MyProcureNet SEC Consult Vulnerability Lab (May 14)
Re: SEC Consult SA-20180514-0 :: Arbitrary File Upload & Cross-site scripting in MyBiz MyProcureNet SEC Consult Vulnerability Lab (May 15)

Simon Steiner

[CVE-2018-8013] Apache Batik information disclosure vulnerability Simon Steiner (May 23)

Slackware Security Team

[slackware-security] procps-ng (SSA:2018-142-03) Slackware Security Team (May 23)
[slackware-security] mozilla-thunderbird (SSA:2018-142-02) Slackware Security Team (May 23)
[slackware-security] python (SSA:2018-124-01) Slackware Security Team (May 07)
[slackware-security] wget (SSA:2018-129-02) Slackware Security Team (May 10)
[slackware-security] mariadb (SSA:2018-130-01) Slackware Security Team (May 10)
[slackware-security] mozilla-firefox (SSA:2018-129-01) Slackware Security Team (May 10)
[slackware-security] Slackware 14.2 kernel (SSA:2018-142-01) Slackware Security Team (May 23)
[slackware-security] seamonkey (SSA:2018-123-01) Slackware Security Team (May 04)
[slackware-security] php (SSA:2018-136-02) Slackware Security Team (May 17)
[slackware-security] curl (SSA:2018-136-01) Slackware Security Team (May 17)

Stefan Kanthak

[ADV170017] Defense in depth -- the Microsoft way (part 54): escalation of privilege during installation of Microsoft Office 20xy Stefan Kanthak (May 09)

SUNCOR ENERGY

CANADIAN JOB VACANCY!!! SUNCOR ENERGY (May 07)

Tomi Tuominen

t2'18: Call For Papers 2018 (Helsinki, Finland) Tomi Tuominen (May 09)

VMware Security Response Center

Updated VMSA-2018-0007.3: VMware Virtual Appliance updates address side-channel analysis due to speculative execution VMware Security Response Center (May 03)

Yavuz Atlas

Ruckus (Brocade) ICX7450-48 Reflected Cross Site Scripting Yavuz Atlas (May 24)

Previous period

Next period