Blog – Página 300 – Javier García

24 febrero, 2020

DSA-4630 python-pysaml2 – security update

It was discovered that pysaml2, a Python implementation of SAML to beused in a WSGI environment, was susceptible to XML signature wrappingattacks, which could result in a bypass of signature verification. More info: https://www.debian.org/security/2020/dsa-4630

24 febrero, 2020

DSA-4631 pillow – security update

Multiple security issues were discovered in Pillow, a Python imaginglibrary, which could result in denial of service and potentially theexecution of arbitrary code if malformed PCX, FLI, SGI or TIFF imagesare processed. More info: https://www.debian.org/security/2020/dsa-4631

24 febrero, 2020

DSA-4632 ppp – security update

Ilja Van Sprundel reported a logic flaw in the Extensible AuthenticationProtocol (EAP) packet parser in the Point-to-Point Protocol Daemon(pppd). An unauthenticated attacker can take advantage of this flaw totrigger a stack-based buffer overflow, leading to denial of service(pppd daemon crash). More info: https://www.debian.org/security/2020/dsa-4632

23 febrero, 2020

Chained Quiz < 1.1.9.1 – Authenticated Stored XSS

More info: https://wpvulndb.com/vulnerabilities/10082

22 febrero, 2020

PHP CVE-2020-7063 Insecure File Permissions Vulnerability

Type: Vulnerability. PHP is prone to an insecure file-permissions vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111975&om_rssid=sr-advisories

22 febrero, 2020

Cisco Unified Contact Center Enterprise CVE-2020-3163 Denial of Service Vulnerability

Type: Vulnerability. Cisco Unified Contact Center Enterprise is prone to a denial-of-service vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111976&om_rssid=sr-advisories

22 febrero, 2020

Cisco Meeting Server CVE-2020-3160 Denial of Service Vulnerability

Type: Vulnerability. Cisco Meeting Server is prone to a remote denial-of-service vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111977&om_rssid=sr-advisories

22 febrero, 2020

PHP CVE-2020-7062 Denial of Service Vulnerability

Type: Vulnerability. PHP is prone to a denial-of-service vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111978&om_rssid=sr-advisories

22 febrero, 2020

Multiple IBM DB2 Products CVE-2020-4200 Denial of Service Vulnerability

Type: Vulnerability. Multiple IBM DB2 products are prone to a denial-of-service vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111979&om_rssid=sr-advisories

22 febrero, 2020

PHP CVE-2020-7061 Heap Buffer Overflow Vulnerability

Type: Vulnerability. PHP is prone to a heap-based buffer-overflow vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111974&om_rssid=sr-advisories

jQuery(document).ready(function ($) { var wgm_map = new google.maps.Map(document.getElementById("srm_gmp_embed_1"), { center: new google.maps.LatLng(40.19124029999999,-3.6740181999999777), zoom: 13, mapTypeId: google.maps.MapTypeId.ROADMAP, scrollwheel: true, zoomControl: true, mapTypeControl: true, streetViewControl: true, fullscreenControl: true, draggable: true, disableDoubleClickZoom: false, panControl: true }); var wgm_theme_json = null; if (wgm_theme_json && wgm_theme_json.length > 0) { try { wgm_map.setOptions({ styles: JSON.parse(wgm_theme_json) }); } catch (e) { console.error('Invalid map theme JSON:', e); } } // To view directions form and data var wgm_data_1 = { 'action': 'wpgmapembed_p_get_markers_by_map_id', _wgm_p_nonce: '6d14390072', 'data': { map_id: '106' } }; var wgm_ajaxurl_1 = 'https://garsan.synology.me/wordpress/wp-admin/admin-ajax.php' jQuery.post(wgm_ajaxurl_1, wgm_data_1, function (response) { response = JSON.parse(response); if (response.markers.length === 1) { var wgm_marker_to_1 = response.markers[0].marker_desc; jQuery('#srm_gmap_to_1').val(wgm_marker_to_1.replace(/(]+)>)/gi, "")); } var wgm_default_marker_icon_1 = 'https://maps.gstatic.com/mapfiles/api-3/images/spotlight-poi2.png'; if (response.markers.length > 0) { var custom_markers = []; var custom_marker_infowindows = []; response.markers.forEach(function (wgm_marker, i) { var wgm_marker_lat_lng_1 = wgm_marker.lat_lng.split(','); wgm_custom_marker_1 = new google.maps.Marker({ position: new google.maps.LatLng(wgm_marker_lat_lng_1[0], wgm_marker_lat_lng_1[1]), title: wgm_marker.marker_name, animation: google.maps.Animation.DROP, icon: (wgm_marker.icon === '') ? wgm_default_marker_icon_1 : wgm_marker.icon }); custom_markers[i] = wgm_custom_marker_1; wgm_custom_marker_1.setMap(wgm_map); var wgm_marker_name_1 = (wgm_marker.marker_name !== null) ? ('' + wgm_marker.marker_name + '
') : ''; custom_marker_infowindow = new google.maps.InfoWindow({ content: wgm_marker_name_1 + wgm_marker.marker_desc }); custom_marker_infowindows[i] = custom_marker_infowindow; if (wgm_marker.show_desc_by_default === '1') { custom_marker_infowindow.open({ anchor: wgm_custom_marker_1, shouldFocus: false }); } else { google.maps.event.addListener(wgm_custom_marker_1, 'click', function () { custom_marker_infowindows[i].open({ anchor: custom_markers[i], shouldFocus: false }); }); } if (wgm_marker.have_marker_link === '1') { google.maps.event.addListener(wgm_custom_marker_1, 'click', function () { var wgm_target = '_self'; if (wgm_marker.marker_link_new_tab === '1') { wgm_target = '_blank'; } window.open(wgm_marker.marker_link, wgm_target); }); } }); } }); });

Translate »