Blog

More info: https://wpvulndb.com/vulnerabilities/9882

Linux kernel vulnerability CVE-2019-12615 Security Advisory Security Advisory Description An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel ... More info: https://support.f5.com/csp/article/K60924046

CPU vulnerability CVE-2019-11184 Security Advisory Security Advisory Description A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an ... More info: https://support.f5.com/csp/article/K43220413

Multiple vulnerabilities have been discovered in the Dino XMPP client,which could allow spoofing message, manipulation of a users roster(contact list) and unauthorised sending of message carbons. More info: https://www.debian.org/security/2019/dsa-4524

Multiple vulnerabilities have been discovered in the Dino XMPP client,which could allow spoofing message, manipulation of a users roster(contact list) and unauthorised sending of message carbons. More info: https://www.debian.org/security/2019/dsa-4524

libpng vulnerability CVE-2017-12652 Security Advisory Security Advisory Description libpng before 1.6.32 does not properly check the length of chunks against the user limit. (CVE-2017-12652) Impact More info: https://support.f5.com/csp/article/K88124225

Multiple vulnerabilities have been discovered in faad2, the Freeware AdvancedAudio Coder. These vulnerabilities might allow remote attackers to causedenial-of-service, or potentially execute arbitrary code if crafted MPEG AACfiles are processed. More info: https://www.debian.org/security/2019/dsa-4522

Apache HTTPD vulnerability CVE-2019-10098 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when ... More info: https://support.f5.com/csp/article/K25126370

http://feedproxy.google.com/~r/sucuri/blog/~3/14qhYm0gpJs/misuse-of-wordpress-update_option-function-leads-to-website-infections.html In the past four months, Sucuri has seen an increase in the number of plugins affected by the misuse of WordPress’ update_option() function. This function is used to update a named option/value in the options database table. If developers do not implement the permission flow correctly, attackers can gain admin access or inject arbitrary […] More info: http://feedproxy.google.com/~r/sucuri/blog/~3/14qhYm0gpJs/misuse-of-wordpress-update_option-function-leads-to-website-infections.html

iControl REST vulnerability CVE-2019-6646 Security Advisory Security Advisory Description REST users with guest privileges may be able to escalate their privileges and run commands with admin ... More info: https://support.f5.com/csp/article/K53990093