oss-sec: by date
199 messages
starting Jan 01 19 and
ending Mar 28 19
Date index |
Thread index |
Author index
Tuesday, 01 January
wget / chromium: URL metadata and potential password leaks via extended filesystem attributes Hanno Böck
Re: Asserts considered harmful (or GMP spills its sensitive information) Matthew Fernandez
Re: Asserts considered harmful (or GMP spills its sensitive information) Niels Möller
Re: Asserts considered harmful (or GMP spills its sensitive information) Vincent Lefevre
Disabling ptrace (was Re: [oss-security] Asserts considered harmful (or GMP spills its sensitive information)) Niels Möller
Re: Asserts considered harmful (or GMP spills its sensitive information) Niels Möller
Re: Re: Asserts considered harmful (or GMP spills its sensitive information) Simon McVittie
Re: Asserts considered harmful (or GMP spills its sensitive information) halfdog
Re: Re: Asserts considered harmful (or GMP spills its sensitive information) halfdog
Re: Asserts considered harmful (or GMP spills its sensitive information) Torbjörn Granlund
Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
Wednesday, 02 January
Re: wget / chromium: URL metadata and potential password leaks via extended filesystem attributes Amos Jeffries
aria2 leaks passwords for HTTP based authentication Dhiraj Mishra
Re: Disabling ptrace Jakub Wilk
Re: Disabling ptrace Niels Möller
Re: Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
Re: Re: Asserts considered harmful (or GMP spills its sensitive information) halfdog
Thursday, 03 January
Re: wget / chromium: URL metadata and potential password leaks via extended filesystem attributes Hanno Böck
Re: Asserts considered harmful (or GMP spills its sensitive information) Marco Bodrato
Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
Re: Asserts considered harmful (or GMP spills its sensitive information) Torbjörn Granlund
Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
Friday, 04 January
Django security releases issued: 2.1.5, 2.0.10, and 1.11.18 Tim Graham
Sunday, 06 January
[SECURITY] New security advisory for CVE-2018-11788 released for Apache Karaf Jean-Baptiste Onofré
Re: Asserts considered harmful (or GMP spills its sensitive information) Niels Möller
Re: Asserts considered harmful (or GMP spills its sensitive information) Jeffrey Walton
New pagecache based sidechannel attack published Marcus Meissner
Monday, 07 January
Re: New pagecache based sidechannel attack published Marcus Meissner
[SECURITY] CVE-2018-1320 Announcement James E. King III
[SECURITY] CVE-2018-11798 Announcement James E. King III
Tuesday, 08 January
Sandbox bypass in multiple Jenkins plugins Daniel Beck
Linux Kernel 4.20(21) deadlock vulnerability. Entropy Moe
KASAN stack out of bound bug Entropy Moe
Re: KASAN stack out of bound bug Entropy Moe
Re: Linux Kernel 4.20(21) deadlock vulnerability. Eric Dumazet
Re: KASAN stack out of bound bug Greg KH
Re: KASAN stack out of bound bug Entropy Moe
Re: KASAN stack out of bound bug Eric Dumazet
Re: KASAN stack out of bound bug Entropy Moe
Re: Linux Kernel 4.20(21) deadlock vulnerability. Greg KH
Re: Linux Kernel 4.20(21) deadlock vulnerability. Entropy Moe
Re: Linux Kernel 4.20(21) deadlock vulnerability. Greg KH
Re: Linux Kernel 4.20(21) deadlock vulnerability. Entropy Moe
Xen Security Advisory 277 v3 (CVE-2018-19964) - x86: incorrect error handling for guest p2m page removals Xen . org security team
Xen Security Advisory 279 v3 (CVE-2018-19965) - x86: DoS from attempting to use INVPCID with a non-canonical addresses Xen . org security team
Xen Security Advisory 276 v3 (CVE-2018-19963) - resource accounting issues in x86 IOREQ server handling Xen . org security team
Xen Security Advisory 280 v3 (CVE-2018-19966) - Fix for XSA-240 conflicts with shadow paging Xen . org security team
Xen Security Advisory 275 v3 (CVE-2018-19961,CVE-2018-19962) - insufficient TLB flushing / improper large page mappings with AMD IOMMUs Xen . org security team
Xen Security Advisory 282 v2 (CVE-2018-19967) - guest use of HLE constructs may lock up host Xen . org security team
RCE, CSRF and Information leak vulnerabilities against Airflow <= 1.8.2 (CVE-2017-15720, CVE-2017-17835, CVE-2017-17836) Ash Berlin-Taylor
CVE-2018-20245: Apache Airflow LDAP auth backend did not validate SSL certificate for <= 1.10.0 Ash Berlin-Taylor
Wednesday, 09 January
Re: Re: Linux Kernel 4.20(21) deadlock vulnerability. Michael Ellerman
Fastbin double free issue in MP4v2 2.0.0 Purushottam Choudhary
System Down: A systemd-journald exploit Qualys Security Advisory
Thursday, 10 January
Irssi 1.1.2: CVE-2019-5882 Ailin Nemui
X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability in UA-Parser X41 D-Sec GmbH Advisories
Friday, 11 January
[CVE-2018-17198] Server-side Request Forgery (SSRF) and File Enumeration vulnerability in Apache Roller Dave
Linux kernel: Bluetooth: two remote infoleaks (CVE-2019-3459, CVE-2019-3460) Solar Designer
Memory leak in libiec61850 protocol Dhiraj Mishra
Memory leak in libiec61850 Dhiraj Mishra
NULL pointer dereference in lib60870 protocol Dhiraj Mishra
SEGV in libIEC61850 protocol Dhiraj Mishra
Monday, 14 January
SCP client multiple vulnerabilities Harry Sintonen
Re: Linux kernel: Bluetooth: two remote infoleaks (CVE-2019-3459, CVE-2019-3460) Michael Ellerman
CVE-2018-16886 etcd: Improper Authentication in auth/store.go:AuthInfoFromTLS() via gRPC-gateway Paul Harvey
Statistics for distros lists updated for 2018Q4 Kristian Fiskerstrand
Wednesday, 16 January
Heap based buffer overflow in wolfSSL Dhiraj Mishra
CVE-2018-11790: Apache OpenOffice: Arithmetic overflow and wrap around during string length calculation Peter Kovacs
Re: Heap based buffer overflow in wolfSSL Alexander Potapenko
Multiple vulnerabilities in Jenkins Daniel Beck
Monday, 21 January
Apache web server use after free bugs (unfixed) Hanno Böck
Re: Apache web server use after free bugs (unfixed) Florian Weimer
GattLib 0.2 has a stack-based buffer - CVE-2019-6498 Dhiraj Mishra
Unfixed FreeBSD uninitialized memory disclosures Vlad Tsyrklevich
Re: Apache web server use after free bugs (unfixed) Craig Young
Xen Security Advisory 289 v2 - Spectre V1 gadgets exploitable with L1TF Xen . org security team
PowerDNS Security Advisories 2011-01 and 2019-02 Remi Gacogne
Xen Security Advisory 289 v3 - Cache-load gadgets exploitable with L1TF Xen . org security team
Tuesday, 22 January
Re: Re: ghostscript: 1Policy operator gives access to .forceput CVE-2018-18284 Thomas Jarosch
CVE-2018-17189: mod_http2, DoS via slow, unneeded request bodies Daniel Ruggeri
CVE-2018-17199: mod_session_cookie does not respect expiry time Daniel Ruggeri
CVE-2019-0190: mod_ssl 2.4.37 remote DoS when used with OpenSSL 1.1.1 Daniel Ruggeri
Wednesday, 23 January
[CVE-2018-11803] Apache Subversion Denial of Service Vulnerability Troy Curtis
Re: Multiple vulnerabilities in Jenkins Daniel Beck
Re: Sandbox bypass in multiple Jenkins plugins Daniel Beck
Re: Multiple vulnerabilities in Jenkins Daniel Beck
ghostscript: subroutines within pseudo-operators must themselves be pseudo-operators Tavis Ormandy
Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver) Timothy Michaud
CVE-2019-6501 QEMU: scsi-generic: possible OOB access while handling inquiry request P J P
CVE-2018-1340: Apache Guacamole: Secure flag missing from session cookie Mike Jumper
CVE-2018-1296: Apache Hadoop HDFS Permissive listXAttr Authorization Akira Ajisaka
Thursday, 24 January
Re: Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver) Yves-Alexis Perez
CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_emu() P J P
Friday, 25 January
CVE-2018-16880 Linux kernel: oob-write in drivers/vhost/net.c:get_rx_bufs() Vladis Dronov
Monday, 28 January
Multiple vulnerabilities in Jenkins plugins Daniel Beck
CVE-2019-3813: spice: Off-by-one error in array access in spice/server/memslot.c Scott Gayou
Re: CVE-2019-3813: spice: Off-by-one error in array access in spice/server/memslot.c Peter Korsgaard
Tuesday, 29 January
CVE-2018-11760: Apache Spark local privilege escalation vulnerability Imran Rashid
Wednesday, 30 January
[CVE-2018-14013] Reflected Cross-Site Scripting (XSS) vulnerabilities in Zimbra Collaboration Sysdream Labs
Thursday, 31 January
[CVE-2018-20242] Apache JSPWiki Cross-site scripting vulnerability on Apache JSPWiki Juan Pablo Santos Rodríguez
Re: [CVE-2018-20242] Apache JSPWiki Cross-site scripting vulnerability on Apache JSPWiki Henri Salo
Friday, 01 February
Re: [CVE-2018-20242] Apache JSPWiki Cross-site scripting vulnerability on Apache JSPWiki Juan Pablo Santos Rodríguez
Re: CVE-2018-1340: Apache Guacamole: Secure flag missing from session cookie Salvatore Bonaccorso
Saturday, 02 February
Re: CVE-2018-1340: Apache Guacamole: Secure flag missing from session cookie Salvatore Bonaccorso
Re: CVE-2018-1340: Apache Guacamole: Secure flag missing from session cookie Mike Jumper
Linux kernel: BPF spectre v1 mitigation bypass (CVE-2019-7308, fixed in 4.19.19 and 4.20.6) Jann Horn
Tuesday, 05 February
CVE-2019-3814: Suitable client certificate can be used to login as other user Aki Tuomi
Notes on fuzzing ImageMagick and GraphicsMagick Alex Gaynor
[SECURITY ADVISORY] curl: NTLM type-2 out-of-bounds buffer read Daniel Stenberg
[SECURITY ADVISORY] curl: NTLMv2 type-3 header stack buffer overflow Daniel Stenberg
[SECURITY ADVISORY] curl: SMTP end-of-response out-of-bounds read Daniel Stenberg
Wednesday, 06 February
Re: Notes on fuzzing ImageMagick and GraphicsMagick Hanno Böck
Re: Multiple vulnerabilities in Jenkins plugins Daniel Beck
Thursday, 07 February
Re: Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver) Ben Hutchings
Re: Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver) Timothy Michaud
Friday, 08 February
CVE-2019-7628: Pagure version 5.2 leaks API keys by e-mail Randy Barlow
Saturday, 09 February
WebKitGTK+ and WPE WebKit Security Advisory WSA-2019-0001 Michael Catanzaro
Monday, 11 February
CVE-2019-6975 -- Django fixed memory exhaustion in utils.numberformat.format(). Carlton Gibson
CVE-2019-5736: runc container breakout (all versions) Aleksa Sarai
Tuesday, 12 February
Re: CVE-2019-5736: runc container breakout (all versions) Florian Weimer
Re: CVE-2019-5736: runc container breakout (all versions) Aleksa Sarai
Re: CVE-2019-5736: runc container breakout (all versions) Steve Grubb
Re: CVE-2019-5736: runc container breakout (all versions) Aleksa Sarai
Re: CVE-2019-5736: runc container breakout (all versions) Solar Designer
Two more LXC breakouts (both privileged), apparmor issue? Alexander E. Patrakov
CVE-2017-3164: Apache Solr: SSRF issue Tomas Fernandez Lobbe
Wednesday, 13 February
Re: CVE-2019-5736: runc container breakout (all versions) Aleksa Sarai
Re: CVE-2019-5736: runc container breakout (all versions) Aleksa Sarai
CVE-2019-5736: runc container breakout exploit code Aleksa Sarai
Re: CVE-2019-5736: runc container breakout exploit code Aleksa Sarai
Re: CVE-2019-5736: runc container breakout exploit code Aleksa Sarai
[CVE-2018-11783] Apache Traffic Server vulnerability with sslheader plugin Bryan Call
Re: CVE-2019-5736: runc container breakout exploit code EJ Campbell
Re: CVE-2019-5736: runc container breakout exploit code EJ Campbell
Re: CVE-2019-5736: runc container breakout (all versions) Loganaden Velvindron
Railroader: static analysis tool for Ruby on Rails (OSS fork of Brakeman) David A. Wheeler
Thursday, 14 February
MatrixSSL stack buffer overflow Tavis Ormandy
Sunday, 17 February
CVE-2019-3812 - qemu - Out-of-bounds read in hw/i2c/i2c-ddc.c allows for memory disclosure Wade Mealing
Monday, 18 February
Linux kernel: three KVM bugs (CVE-2019-6974, CVE-2019-7221, CVE-2019-7222) Jann Horn
CVE-2019-6454: systemd (PID1) crash with specially crafted D-Bus message Chris Coulson
Tuesday, 19 February
Re: CVE-2019-6454: systemd (PID1) crash with specially crafted D-Bus message Simon McVittie
Multiple vulnerabilities in Jenkins plugins Daniel Beck
Thursday, 21 February
CVE-2019-8934 QEMU: ppc64: sPAPR emulator leaks the host hardware identity P J P
Kernel local root in SCTP / CVE-2019-8956 Marcus Meissner
CVE-2018-1002161 - Koji - SQL injection in multiple remote calls Patrick Uiterwijk
Multiple BIND CVEs disclosed (CVE-2018-5744, CVE-2018-5745, CVE-2019-6465) Michael McNally
Friday, 22 February
Xen Security Advisory 283 v2 - Withdrawn Xen Security Advisory number Xen . org security team
Saturday, 23 February
Re: Multiple vulnerabilities in Jenkins plugins Daniel Beck
Thursday, 28 February
ikiwiki: CVE-2019-9187: Server-side request forgery Simon McVittie
Friday, 01 March
Squirrelmail XSS Fixes Hanno Böck
Re: Squirrelmail XSS Fixes Hanno Böck
[SECURITY] CVE-2019-0200: Apache Qpid Broker-J Denial of Service due to malformed AMQP 0-8 to 0-10 commands Alex Rudyy
Saturday, 02 March
[SECURITY] CVE-2019-0187: Apache JMeter Missing client auth for RMI connection when distributed test is used Philippe Mouawad
Sunday, 03 March
Open Redirect in Tiny Tiny RSS (tt-rss) Hanno Böck
Re: Open Redirect in Tiny Tiny RSS (tt-rss) Mark Steward
Monday, 04 March
CVE-2018-11793: Mesos components might crash when parsing deeply nested JSON structures. Alex R
Tuesday, 05 March
Xen Security Advisory 284 v2 - grant table transfer issues on large hosts Xen . org security team
Xen Security Advisory 285 v2 - race with pass-through device hotplug Xen . org security team
Xen Security Advisory 291 v2 - x86/PV: page type reference counting issue with failed IOMMU update Xen . org security team
Xen Security Advisory 287 v2 - x86: steal_page violates page_struct access discipline Xen . org security team
Xen Security Advisory 292 v2 - x86: insufficient TLB flushing when using PCID Xen . org security team
Xen Security Advisory 288 v2 - x86: Inconsistent PV IOMMU discipline Xen . org security team
Xen Security Advisory 290 v2 - missing preemption in x86 PV page table unvalidation Xen . org security team
Xen Security Advisory 293 v3 - x86: PV kernel context switch corruption Xen . org security team
Xen Security Advisory 294 v2 - x86 shadow: Insufficient TLB flushing when using PCID Xen . org security team
Wednesday, 06 March
Linux kernel: OOB R/W in SNMP NAT module (CVE-2019-9162); virtual address 0 mappable (CVE-2019-9213) Jann Horn
Multiple vulnerabilities in Jenkins plugins Daniel Beck
Transient execution attacks leveraging port contention Mathias Payer
Thursday, 07 March
CVE-2019-0192 Deserialization of untrusted data via jmx.serviceUrl in Apache Solr Tomas Fernandez Lobbe
[CVE-2018-11789] Apache Incubator Heron file access vulnerability Neng Lu
[SECURITY] New security advisory for CVE-2019-0191 released for Apache Karaf Jean-Baptiste Onofré
Sunday, 10 March
Re: Linux kernel: OOB R/W in SNMP NAT module (CVE-2019-9162); virtual address 0 mappable (CVE-2019-9213) Solar Designer
Monday, 11 March
CVE-2018-11767: Apache Hadoop KMS ACL regression Akira Ajisaka
Wednesday, 13 March
Stack/Heap Clashing on Linux >=4.13 when loader directly invoked Ali Saidi
Re: [SECURITY] CVE-2018-1320 Apache Thrift SASL negotiation vulnerability (update) James E. King III
[CVE-2019-5420] Possible Remote Code Execution Exploit in Rails Development Mode Aaron Patterson
[CVE-2019-5419] Denial of Service Vulnerability in Action View Aaron Patterson
[CVE-2019-5418] File Content Disclosure in Action View Aaron Patterson
Friday, 15 March
libseccomp: incorrect generation of syscall argument filters Paul Moore
Saturday, 16 March
Fwd: [ANNOUNCE] libXdmcp 1.1.3 [fix for CVE-2017-2625] Alan Coopersmith
Sunday, 17 March
CVE-2019-9573 / CVE-2019-9574: WordPress plugin hrm missing server side authorization checks Henri Salo
Monday, 18 March
CVE-2019-9824 QEMU: Slirp: information leakage in tcp_emu() due to uninitialized stack variables P J P
[OSSA-2019-001] Unsupported dport option prevents applying security groups in OpenStack Neutron (CVE-2019-9735) Jeremy Stanley
[SECURITY ADVISORIES] libssh2 Daniel Stenberg
PowerDNS Security Advisory 2019-03 Erik Winkels
Tuesday, 19 March
Re: [SECURITY ADVISORIES] libssh2 Riccardo Schirone
Thursday, 21 March
ghostscript: 2 -dSAFER bypass: CVE-2019-3835 & CVE-2019-3838 Cedric Buissart
Friday, 22 March
[CVE-2019-5418] Amendment: Possible Remote Code Execution Exploit in Action View Aaron Patterson
Saturday, 23 March
CVE-2019-0204: Some Mesos components can be overwritten making arbitrary code execution possible. Alex R
Monday, 25 March
Multiple vulnerabilities in Jenkins plugins Daniel Beck
Re: Multiple vulnerabilities in Jenkins plugins Daniel Beck
Tuesday, 26 March
[CVE-2019-0224] Apache JSPWiki Cross-site scripting vulnerability Juan Pablo Santos Rodríguez
[CVE-2019-0225] Apache JSPWiki Local File Inclusion (limited ROOT folder) vulnerability leads to user information disclosure Juan Pablo Santos Rodríguez
Wednesday, 27 March
CVE-2018-20815 QEMU: device_tree: heap buffer overflow while loading device tree blob P J P
[ANNOUNCE] CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown Dejan Bosanac
[CVE-2019-0212] Apache HBase REST Server incorrect user authorization Josh Elser
Thursday, 28 March
CVE-2019-7524: Buffer overflow when reading extension header from dovecot index files Aki Tuomi
Re: Multiple vulnerabilities in Jenkins plugins Daniel Beck