abril 2018 – Página 15 – Javier García

6 abril, 2018

DSA-4167 sharutils – security update

A buffer-overflow vulnerability was discovered in Sharutils, a set ofutilities handle Shell Archives. An attacker with control on the input ofthe unshar command, could crash the application or execute arbitrary codein the its context. More info: https://www.debian.org/security/2018/dsa-4167

6 abril, 2018

Apache httpd vulnerability CVE-2018-1283

Apache httpd vulnerability CVE-2018-1283. Security Advisory. Security Advisory Description. In Apache httpd 2.4.0 to 2.4 ... More info: https://support.f5.com/csp/article/K94597539

6 abril, 2018

DSA-4166 openjdk-7 – security update

Several vulnerabilities have been discovered in OpenJDK, animplementation of the Oracle Java platform, resulting in denial ofservice, sandbox bypass, execution of arbitrary code, incorrectLDAP/GSS authentication, insecure use of cryptography or bypass ofdeserialisation restrictions. More info: https://www.debian.org/security/2018/dsa-4166

6 abril, 2018

RHSA-2018:0649-1: Important: libvorbis security update

Red Hat Enterprise Linux: An update for libvorbis is now available for Red Hat Enterprise Linux 6.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-5146 More info: http://rhn.redhat.com/errata/RHSA-2018-0649.html

6 abril, 2018

The BIG-IP ASM CSRF token may fail to renew when the original web server renews its session

The BIG-IP ASM CSRF token may fail to renew when the original web server renews its session. Security Advisory. Security Advisory Description. ... More info: https://support.f5.com/csp/article/K70517410

6 abril, 2018

RHSA-2018:0647-1: Important: thunderbird security update

Red Hat Enterprise Linux: An update for thunderbird is now available for Red Hat Enterprise Linux 6.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146 More info: http://rhn.redhat.com/errata/RHSA-2018-0647.html

5 abril, 2018

Month: abril 2018

DSA-4167 sharutils – security update

Apache httpd vulnerability CVE-2018-1283

DSA-4166 openjdk-7 – security update

RHSA-2018:0649-1: Important: libvorbis security update

The BIG-IP ASM CSRF token may fail to renew when the original web server renews its session

RHSA-2018:0647-1: Important: thunderbird security update

WordPress 3.7-4.9.4 – Escape Version in Generator Tag

My Calendar <= 2.5.16 – Authenticated Cross-Site Scripting (XSS)

Quagga vulnerability CVE-2016-2342

WordPress 3.7-4.9.4 – Use Safe Redirect for Login