DSA-4283 ruby-json-jwt – security update
It was discovered that ruby-json-jwt, a Ruby implementation of JSON webtokens performed insufficient validation of GCM auth tags.
More info:
https://www.debian.org/security/2018/dsa-4283
WP Security Bloggers is now manually curated news
Finally, WP Security Bloggers got some TLC! I started this project back in 2014, so I can have a central repository for all the WordPress security news instead of following all the blogs. Over the years the idea developed into creating a WordPress security news aggregator. Though because the number of blogs from which WP … Continue reading "WP Security Bloggers is now manually curated news"
More info:
http://www.wpsecuritybloggers.com/wp-security-bloggers-update/wp-security-bloggers-is-now-manually-curated-news
Perishable Press Was Added to the Aggregate
We have just added the website Perishable Press to the aggregate of WP Security Bloggers website. Perishable Press has been around since 2005 and frequently publish interesting WordPress security articles. The website is run by Jeff Starr, who is also the developer of several plugins including the popular WordPress firewall BBQ (Block Bad Queries) plugin. … Continue reading "Perishable Press Was Added to the Aggregate"
More info:
http://www.wpsecuritybloggers.com/wp-security-bloggers-update/perishable-press-added-wp-security-bloggers
Text Based Searches and Filters for WordPress Activity Audit Log
Keeping a WordPress security and activity audit log is a good practise, but it is useless unless you can automatically search through it to find specific WordPress changes and user actions. We are happy to announce another premium extension for WP Security Audit Log plugin; Search and Filtering Extension. This extension allows you to do … Continue reading "Text Based Searches and Filters for WordPress Activity Audit Log"
More info:
http://www.wpsecuritybloggers.com/uncategorized/text-based-searches-and-filters-for-wordpress-activity-audit-log
WP Security Bloggers On Social Media
As requested by some of you we will also start pushing the WP Security Blogger feed on social media. Hence if you are not a fan of RSS you can find us on Twitter and on Facebook. I would also like to remind you that should you wish to add a blog to the WP Security … Continue reading "WP Security Bloggers On Social Media"
More info:
http://www.wpsecuritybloggers.com/wp-security-bloggers/social-media
Oracle Security Alert for CVE-2018-11776 – 31 August 2018
More info:
http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html