Bug Traq

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 6 min 18 sec ago

[slackware-security] curl (SSA:2019-142-01)

23 May, 2019 - 03:14

Posted by Slackware Security Team on May 23

[slackware-security] curl (SSA:2019-142-01)

New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/curl-7.65.0-i586-1_slack14.2.txz: Upgraded.
This release fixes the following security issues:
Integer overflows in curl_url_set
tftp: use the current blksize for recvfrom()
For more...

[CVE-2019-11604] Quest KACE Systems Management Appliance <= 9.0 kbot_service_notsoap.php METHOD Reflected Cross-Site Scripting

23 May, 2019 - 03:12

Posted by RCE Security on May 23

RCE Security Advisory
https://www.rcesecurity.com

1. ADVISORY INFORMATION
=======================
Product: Quest KACE Systems Management Appliance
Vendor URL: www.quest.com
Type: Cross-Site Scripting [CWE-79]
Date found: 2018-09-09
Date published: 2019-05-19
CVSSv3 Score: 4.7 (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N)
CVE: CVE-2019-11604

2. CREDITS
==========
This vulnerability was discovered and...

Bitbucket Server security advisory 2019-05-22

23 May, 2019 - 03:09

Posted by Anton Black on May 23

This email refers to the advisory found at
https://confluence.atlassian.com/x/V87JOQ .

CVE ID:

* CVE-2019-3397.

Product: Bitbucket Server.

Affected Bitbucket Server product versions:

5.13.0 <= version < 5.13.5
5.14.0 <= version < 5.14.3
5.15.0 <= version < 5.5.2
6.0.0 <= version < 6.0.3
6.1.0 <= version < 6.1.1

Fixed Bitbucket Server product versions:

* for 5.13.x, Bitbucket Server 5.13.5 has been released...

[SECURITY] [DSA 4449-1] ffmpeg security update

23 May, 2019 - 03:09

Posted by Moritz Muehlenhoff on May 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-4449-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 22, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ffmpeg
CVE ID : CVE-2018-15822 CVE-2018-1999011...

[SECURITY] [DSA 4448-1] firefox-esr security update

23 May, 2019 - 03:03

Posted by Moritz Muehlenhoff on May 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-4448-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 22, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2018-18511 CVE-2019-5798...

Anviz M3 RFID Access Control security issues

23 May, 2019 - 03:00

Posted by Marco on May 23

Security issues have been found in the Anviz M3 RFID Access Control
device when working in standalone mode connected to a TCP/IP network,
that could lead to access control bypass and private informations
leakage and alteration.

### Advisory information

TITLE: Anviz M3 RFID Access Control security issues
ADVISORY URL: https://github.com/wizlab-it/anviz-m3-rfid-cve-2019-11523-poc/
DATE PUBLISHED: 2019/05/22
AFFECTED VENDORS: Anviz
AFFECTED...

[SYSS-2019-002] Blue Prism Robotic Process Automation (RPA) - Privilege Escalation

22 May, 2019 - 09:06

Posted by benjamin . hess on May 22

------------------------------------------------------------------------
SySS Security Advisory: Blue Prism Robotic Process Automation (RPA) - Privilege Escalation
------------------------------------------------------------------------

Advisory ID: SYSS-2019-002
Product: Blue Prism Robotic Process Automation (RPA)
Manufacturer: Blue Prism
Affected Version(s): Before 6.5.0.12573
Tested Version(s): 6.4.0.8445, Before 6.5.0.12573
Vulnerability...

[slackware-security] mozilla-firefox (SSA:2019-141-01)

22 May, 2019 - 09:02

Posted by Slackware Security Team on May 22

[slackware-security] mozilla-firefox (SSA:2019-141-01)

New mozilla-firefox packages are available for Slackware 14.2 and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/mozilla-firefox-60.7.0esr-i686-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements. Some of the patched
flaws are considered critical, and could be used to...

[REVIVE-SA-2019-002] Revive Adserver Vulnerability

21 May, 2019 - 08:33

Posted by Matteo Beccati on May 21

========================================================================
Revive Adserver Security Advisory REVIVE-SA-2019-002
------------------------------------------------------------------------
https://www.revive-adserver.com/security/revive-sa-2019-002
------------------------------------------------------------------------
CVE-IDs: t.b.a.
Date: 2019-05-21
Risk Level: High...

CSRF in Darktrace Enterprise Immune System <=3.0.10

21 May, 2019 - 08:29

Posted by Gerwout Van der Veen on May 21

1 - Vulnerability
Darktrace Enterpise Immune System 3.0.9 and 3.0.10 contains multiple
cross site request forgery vulnerabilities. It is highly likely that
older versions are affected as well, but this has not been confirmed.
An attacker can whitelist domains and/or change core Darktrace
configuration. The below proof of concept whitelists
www.evilhackers.com, completely disables all types of alerting and it
disables the Antigena component....

WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003

21 May, 2019 - 01:41

Posted by Michael Catanzaro on May 20

------------------------------------------------------------------------
WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003
------------------------------------------------------------------------

Date reported : May 20, 2019
Advisory ID : WSA-2019-0003
WebKitGTK Advisory URL :
https://webkitgtk.org/security/WSA-2019-0003.html
WPE WebKit Advisory URL :
https://wpewebkit.org/security/WSA-2019-0003.html
CVE identifiers : CVE-2019-6237,...

Advisory: security controls configured in php.ini could be bypassed on Linux

21 May, 2019 - 01:37

Posted by Imre Rad on May 20

"PHP is a popular general-purpose scripting language that is
especially suited to web development."

PHP has deployed several features over the years that are prone to
incorrect architectural decisions (safe mode
https://www.php.net/manual/en/features.safe-mode.php or open_basedir
http://news.php.net/php.internals/105606), to have unexpected security
implications (register globals
https://www.php.net/manual/en/security.globals.php), or...

Emerson Network Power Cross Site Scripting(XSS) Vulnerability

19 May, 2019 - 22:53

Posted by Kubilay Onur Gungor on May 19

I. VULNERABILITY
-------------------------
httpGetSet/httpGet.htm on
Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter.

II. CVE REFERENCE
-------------------------
CVE-2019-12167

III. VENDOR
-------------------------
Emerson Network Power

IV. TIMELINE
-------------------------
13/05/2019 Vulnerability discovered

V. CREDIT...

local privilege escalation via CDE dtprintinfo

19 May, 2019 - 22:49

Posted by Marco Ivaldi on May 19

Dear Bugtraq,

Please find attached an advisory for the following vulnerability:

A buffer overflow in the DtPrinterAction::PrintActionExists() function in the
Common Desktop Environment 2.3.0 and earlier, as used in Oracle Solaris 10 1/13
(Update 11) and earlier, allows local users to gain root privileges via a long
printer name passed to dtprintinfo by a malicious lpstat program.

Note that Oracle Solaris CDE is based on the original CDE 1.x...

[RT-SA-2019-002] Directory Traversal in Cisco Expressway Gateway

17 May, 2019 - 06:23

Posted by RedTeam Pentesting GmbH on May 17

Advisory: Directory Traversal in Cisco Expressway Gateway

RedTeam Pentesting discovered a directory traversal vulnerability in
Cisco Expressway which enables access to administrative web interfaces.

Details
=======

Product: Cisco Expressway Gateway
Affected Versions: 11.5.1, possibly others
Fixed Versions: See Cisco Bug ID CSCvo47769 [1]
Vulnerability Type: Directory Traversal
Security Risk: medium
Vendor URL:...

[slackware-security] rdesktop (SSA:2019-135-01)

16 May, 2019 - 07:46

Posted by Slackware Security Team on May 16

[slackware-security] rdesktop (SSA:2019-135-01)

New rdesktop packages are available for Slackware 14.0, 14.1, 14.2,
and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/rdesktop-1.8.5-i586-1_slack14.2.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with...

FreeBSD Security Advisory FreeBSD-SA-19:07.mds [REVISED]

15 May, 2019 - 21:12

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

FreeBSD Security Advisory FreeBSD-SA-19:07.mds

15 May, 2019 - 21:08

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

SEC Consult SA-20190515-0 :: Authorization Bypass in RSA NetWitness (@sec_consult)

15 May, 2019 - 05:37

Posted by SEC Consult Vulnerability Lab on May 15

SEC Consult Vulnerability Lab Security Advisory < 20190515-0 >
=======================================================================
title: Authorization Bypass
product: RSA NetWitness
vulnerable version: <10.6.6.1, <11.2.1.1
fixed version: 10.6.6.1, 11.2.1.1
CVE number: CVE-2019-3724
impact: Medium
homepage: https://www.rsa.com
found: 2018-09-18...

FreeBSD Security Advisory FreeBSD-SA-19:07.mds

15 May, 2019 - 05:35

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...