Security News

Vuln: Oracle Java SE CVE-2019-2698 Remote Security Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Oracle Java SE CVE-2019-2698 Remote Security Vulnerability

Vuln: Oracle Java SE CVE-2019-2602 Remote Security Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Oracle Java SE CVE-2019-2602 Remote Security Vulnerability

Vuln: Oracle Java SE CVE-2019-2684 Remote Security Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Oracle Java SE CVE-2019-2684 Remote Security Vulnerability

Vuln: Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability

Vuln: Linux Kernel CVE-2019-11479 Denial of Service Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Linux Kernel CVE-2019-11479 Denial of Service Vulnerability

Vuln: ABB PB610 Multiple Security Vulnerabilities

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
ABB PB610 Multiple Security Vulnerabilities

Vuln: Multiple ABB Products CVE-2019-7225 Hardcoded Credentials Vulnerability

Security Focus Vulnerabilities - 30 June, 2019 - 23:00
Multiple ABB Products CVE-2019-7225 Hardcoded Credentials Vulnerability

[slackware-security] irssi (SSA:2019-180-01)

Bug Traq - 30 June, 2019 - 22:56

Posted by Slackware Security Team on Jun 30

[slackware-security] irssi (SSA:2019-180-01)

New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current
to fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/irssi-1.1.3-i586-1_slack14.2.txz: Upgraded.
This update fixes a security issue: Use after free when sending SASL login
to the server found by ilbelkyr. May affect the stability of Irssi. SASL...

[SECURITY] [DSA 4473-1] rdesktop security update

Bug Traq - 30 June, 2019 - 22:46

Posted by Salvatore Bonaccorso on Jun 30

-------------------------------------------------------------------------
Debian Security Advisory DSA-4473-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
June 28, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : rdesktop
Debian Bug : 930387

Multiple security issues...

[XSS] IFrame Buster tools and news

Full Disclosure - 28 June, 2019 - 11:51

Posted by Zmx on Jun 28

*History*
Almost two years ago I reported to the full disclosure list my finding
about the usage of IFrameBusterKit (often provided by Google) in order to
help advertising.

Sadly a lot of those file (that you host on your own domain) have really
easy XSS include in them.

After the report, Google quickly remove most of the kit, and email user to
warn them about removing those file:
https://support.google.com/admanager/answer/7622991

*The Tools*...

[SECURITY] [DSA 4472-1] expat security update

Bug Traq - 28 June, 2019 - 07:45

Posted by Salvatore Bonaccorso on Jun 28

-------------------------------------------------------------------------
Debian Security Advisory DSA-4472-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
June 28, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : expat
CVE ID : CVE-2018-20843
Debian Bug :...
Syndicate content