A use-after-free was found in libarchive, a multi-format archive andcompression library, which could result in denial of service andpotentially the execution of arbitrary code is a malformed archiveis processed.
More info:
https://www.debian.org/security/2019/dsa-4557
Type: Vulnerability. Xen is prone to a denial-of-service vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110680&om_rssid=sr-advisories
https://www.wpsecurityauditlog.com/wordpress-admin/important-continuously-keep-wordpress-activity-logs/ When users uninstall the WP Security Audit Log plugin from their WordPress website we ask them why they would like to uninstall the plugin. The most common answer is we no longer need it. In other words, the website administrator no longer needs to keep a log of changes that happen on the website. […]
More info:
https://www.wpsecurityauditlog.com/wordpress-admin/important-continuously-keep-wordpress-activity-logs/
Type: Vulnerability. Xen is prone to a denial-of-service vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110681&om_rssid=sr-advisories
https://wpengine.com/blog/new-updates-hubspot-marketing-plugin-for-wordpress/Integrating your WordPress sites with HubSpot’s best-in-class marketing tools just got even better, as HubSpot recently made a number of updates to its popular plugin for WordPress. The plugin, which integrates HubSpot’s top-rated CRM, Marketing, Sales, and Customer Service platform with WordPress, was already a great way for users to grow their email lists, generate… […]
More info:
https://wpengine.com/blog/new-updates-hubspot-marketing-plugin-for-wordpress/
At Mozilla we are well aware of how fragile the Web Public Key Infrastructure (PKI) can be. From fraudulent Certification Authorities (CAs) to implementation errors that leak private keys, users, often unknowingly, are put in a position where their ability … Continue readingThe post Validating Delegated Credentials for TLS in Firefox appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2019/11/01/validating-delegated-credentials-for-tls-in-firefox/
https://wpvulndb.com/vulnerabilities/9933
More info:
https://wpvulndb.com/vulnerabilities/9933
Type: Vulnerability. Honeywell equIP Series IP Cameras is prone to a denial-of-service vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110683&om_rssid=sr-advisories
https://wpvulndb.com/vulnerabilities/9932
More info:
https://wpvulndb.com/vulnerabilities/9932
Type: Vulnerability. Symantec Endpoint Protection is prone to a security-bypass vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110611&om_rssid=sr-advisories
