Day: 14 junio, 2019

More info: https://wpvulndb.com/vulnerabilities/9333

Harrison Neil discovered that the getACL() command in Zookeeper, aservice for maintaining configuration information, did not validatepermissions, which could result in information disclosure. More info: https://www.debian.org/security/2019/dsa-4461

More info: https://wpvulndb.com/vulnerabilities/9331

Multiple security vulnerabilities have been discovered in MediaWiki, awebsite engine for collaborative work, which may result in authenticationbypass, denial of service, cross-site scripting, information disclosureand bypass of anti-spam measures. More info: https://www.debian.org/security/2019/dsa-4460

More info: https://wpvulndb.com/vulnerabilities/9337

Multiple security issues were discovered in the VLC media player, whichcould result in the execution of arbitrary code or denial of service ifa malformed file/stream is processed. More info: https://www.debian.org/security/2019/dsa-4459

More info: https://wpvulndb.com/vulnerabilities/9332

Greetings from the VMware Security Response Center! It has come to our attention that a previously resolved vulnerability identified by CVE-2018-6961 which affected VMware SD-WAN Edge (Velocloud) prior to R312-20180716-GA has been reported to be included as one of multiple injection methods for a newly discovered variant of the Mirai malware. Unit 42 has a […]The post VMSA-2018-0011 Revisited appeared first on VMware Security & Compliance Blog. More info: https://blogs.vmware.com/security/2019/06/vmsa-2018-0011-revisited.html

The GPG key used to sign the Firefox release manifests is expiring soon, and so we’re going to be switching over to new key shortly. The new GPG subkey’s fingerprint is 097B 3130 77AE 62A0 2F84 DA4D F1A6 668F BB7D … Continue readingThe post Updated GPG key for signing Firefox Releases appeared first on Mozilla Security Blog. More info: https://blog.mozilla.org/security/2019/06/13/updated-firefox-gpg-key/

More info: https://wpvulndb.com/vulnerabilities/9338