GnuTLS vulnerability CVE-2015-0294 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing ...
More info:
https://support.f5.com/csp/article/K54022413
GnuTLS vulnerability CVE-2015-0294 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing ...
More info:
https://support.f5.com/csp/article/K54022413
More info:
https://wpvulndb.com/vulnerabilities/9251
Project: Drupal coreDate: 2019-February-20Security risk: Highly critical 23∕25 AC:None/A:None/CI:All/II:All/E:Exploit/TD:UncommonVulnerability: Remote Code ExecutionCVE IDs: CVE-2019-6340Description: Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.A site is only affected by this if one of the following conditions is met:The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows
More info:
https://www.drupal.org/sa-core-2019-003
Kusano Kazuhiko discovered a buffer overflow vulnerability in thehandling of Internationalized Resource Identifiers (IRI) in wget, anetwork utility to retrieve files from the web, which could result inthe execution of arbitrary code or denial of service when recursivelydownloading from an untrusted server.
More info:
https://www.debian.org/security/2019/dsa-4425
Several vulnerabilities have been discovered in the chromium web browser.
More info:
https://www.debian.org/security/2019/dsa-4421
Several vulnerabilities have been discovered in the chromium web browser.
More info:
https://www.debian.org/security/2019/dsa-4421
Adam Dobrawy, Frederico Silva and Gregory Brzeski from HyperOne.comdiscovered that pdns, an authoritative DNS server, did not properlyvalidate user-supplied data when building a HTTP request from a DNSquery in the HTTP Connector of the Remote backend. This would allow aremote user to cause either a denial-of-service, or informationdisclosure.
More info:
https://www.debian.org/security/2019/dsa-4424
Adam Dobrawy, Frederico Silva and Gregory Brzeski from HyperOne.comdiscovered that pdns, an authoritative DNS server, did not properlyvalidate user-supplied data when building a HTTP request from a DNSquery in the HTTP Connector of the Remote backend. This would allow aremote user to cause either a denial-of-service, or informationdisclosure.
More info:
https://www.debian.org/security/2019/dsa-4424
Several vulnerabilities have been found in the Apache HTTP server.
More info:
https://www.debian.org/security/2019/dsa-4422
