Kernel vulnerability CVE-2018-11232
Kernel vulnerability CVE-2018-11232. Security Advisory. Security Advisory Description. The etm_setup_aux function in drivers ...
More info:
https://support.f5.com/csp/article/K57690705
How To Detect And Remove WordPress Redirects Added By Hackers
https://blog.threatpress.com/detect-remove-wordpress-redirects/Approximately 30% of Internet websites are running on WordPress, making it the world’s most popular content management system. Unfortunately, the incredible level of popularity enjoyed by WordPress has a significant downside — it makes the platform very attractive to hackers. One common attack vector used against WordPress websites involves compromising files to cause the website […]
More info:
https://blog.threatpress.com/detect-remove-wordpress-redirects/
DSA-4217 wireshark – security update
It was discovered that Wireshark, a network protocol analyzer, containedseveral vulnerabilities in the dissectors for PCP, ADB, NBAP, UMTS MAC,IEEE 802.11, SIGCOMP, LDSS, GSM A DTAP and Q.931, which result in denialof service or the execution of arbitrary code.
More info:
https://www.debian.org/security/2018/dsa-4217
DSA-4215 batik – security update
Man Yue Mo, Lars Krapf and Pierre Ernst discovered that Batik, atoolkit for processing SVG images, did not properly validate itsinput. This would allow an attacker to cause a denial-of-service,mount cross-site scripting attacks, or access restricted files on theserver.
More info:
https://www.debian.org/security/2018/dsa-4215
DSA-4215 batik – security update
Man Yue Mo, Lars Krapf and Pierre Ernst discovered that Batik, atoolkit for processing SVG images, did not properly validate itsinput. This would allow an attacker to cause a denial-of-service,mount cross-site scripting attacks, or access restricted files on theserver.
More info:
https://www.debian.org/security/2018/dsa-4215
DSA-4214 zookeeper – security update
It was discovered that Zookeeper, a service for maintaining configurationinformation, enforced no authentication/authorisation when a serverattempts to join a Zookeeper quorum.
More info:
https://www.debian.org/security/2018/dsa-4214
wpForo Forum <= 1.4.11 – Unauthenticated Reflected Cross-Site Scripting (XSS)
More info:
https://wpvulndb.com/vulnerabilities/9090
DSA-4212 git – security update
Etienne Stalmans discovered that git, a fast, scalable, distributedrevision control system, is prone to an arbitrary code executionvulnerability exploitable via specially crafted submodule names in a.gitmodules file.
More info:
https://www.debian.org/security/2018/dsa-4212
OpenSSL RSA key generation vulnerability CVE-2018-0737
OpenSSL RSA key generation vulnerability CVE-2018-0737. Security Advisory. Security Advisory Description. The OpenSSL ...
More info:
https://support.f5.com/csp/article/K43429502
TMM vulnerability CVE-2017-6153
TMM vulnerability CVE-2017-6153. Security Advisory. Security Advisory Description. Features in the BIG-IP system that utilize ...
More info:
https://support.f5.com/csp/article/K52167636