DSA-4179 linux-tools – security update
This update doesnt fix a vulnerability in linux-tools, but providessupport for building Linux kernel modules with the
More info:
https://www.debian.org/security/2018/dsa-4179
WF Cookie Consent 1.1.3 – Authenticated Persistent Cross-Site Scripting (XSS)
More info:
https://wpvulndb.com/vulnerabilities/9080
NextGEN Gallery <= 2.2.44 – Cross-Site Scripting (XSS)
More info:
https://wpvulndb.com/vulnerabilities/9079
DSA-4190 jackson-databind – security update
It was discovered that jackson-databind, a Java library used to parseJSON and other data formats, improperly validated user input prior todeserializing because of an incomplete fix forCVE-2017-7525.
More info:
https://www.debian.org/security/2018/dsa-4190
DSA-4189 quassel – security update
Two vulnerabilities were found in the Quassel IRC client, which couldresult in the execution of arbitrary code or denial of service.
More info:
https://www.debian.org/security/2018/dsa-4189
DSA-4191 redmine – security update
Multiple vulnerabilities were discovered in Redmine, a projectmanagement web application. They could lead to remote code execution,information disclosure or cross-site scripting attacks.
More info:
https://www.debian.org/security/2018/dsa-4191
DSA-4191 redmine – security update
Multiple vulnerabilities were discovered in Redmine, a projectmanagement web application. They could lead to remote code execution,information disclosure or cross-site scripting attacks.
More info:
https://www.debian.org/security/2018/dsa-4191
RHSA-2018:1275-1: Important: redhat-virtualization-host security update
Red Hat Enterprise Linux: An update for redhat-release-virtualization-host and redhat-virtualization-hostis now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-1088
More info:
http://rhn.redhat.com/errata/RHSA-2018-1275.html
NextGEN Gallery <= 2.2.44 – Cross-Site Scripting (XSS)
More info:
https://wpvulndb.com/vulnerabilities/9079
RHSA-2018:1278-1: Important: java-1.7.0-openjdk security update
Red Hat Enterprise Linux: An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux7.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-2790, CVE-2018-2794, CVE-2018-2795, CVE-2018-2796, CVE-2018-2797, CVE-2018-2798, CVE-2018-2799, CVE-2018-2800,
More info:
http://rhn.redhat.com/errata/RHSA-2018-1278.html