It was discovered that incorrect validation of frame widths in the libvpxmultimedia library may result in denial of service and potentially theexecution of arbitrary code.
More info:
https://www.debian.org/security/2018/dsa-4132
Multiple vulnerabilities have been discovered in the Xen hypervisor:
More info:
https://www.debian.org/security/2018/dsa-4131
More info:
https://wpvulndb.com/vulnerabilities/9037
Multiple heap buffer over reads were discovered in freexl, a library toread Microsoft Excel spreadsheets, which could result in denial ofservice.
More info:
https://www.debian.org/security/2018/dsa-4129
More info:
https://wpvulndb.com/vulnerabilities/9034
Expat XML library vulnerability CVE-2015-2716. Security Advisory. Security Advisory Description. Buffer overflow in the XML ...
More info:
https://support.f5.com/csp/article/K50459349
End users rely on the address bar of a web browser to identify what web page they are on. However, most end users are not aware of the concept of a data URL which can contain a legitimate address string … Continue readingThe post Blocking Top-Level Navigations to data URLs for Firefox 59 appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2017/11/27/blocking-top-level-navigations-data-urls-firefox-59/
The BIG-IP APM logon page may expose an XSS security risk. Security Advisory. Security Advisory Description. This issue ...
More info:
https://support.f5.com/csp/article/K40507733
Linux kernel vulnerability CVE-2017-15127. Security Advisory. Security Advisory Description. A flaw was found in the hugetlb_mcopy_atomic_pte ...
More info:
https://support.f5.com/csp/article/K41900062
Several vulnerabilities have been discovered in the Dovecot emailserver. The Common Vulnerabilities and Exposures project identifies thefollowing issues:
More info:
https://www.debian.org/security/2018/dsa-4130
