Security News

Vuln: cockpit-ovirt CVE-2019-10139 Local Information Disclosure Vulnerability

Security Focus Vulnerabilities - 16 May, 2019 - 23:00
cockpit-ovirt CVE-2019-10139 Local Information Disclosure Vulnerability

Vuln: systemd CVE-2018-20839 Information Disclosure Vulnerability

Security Focus Vulnerabilities - 16 May, 2019 - 23:00
systemd CVE-2018-20839 Information Disclosure Vulnerability

Vuln: Linux Kernel CVE-2018-7191 Local Denial of Service Vulnerability

Security Focus Vulnerabilities - 16 May, 2019 - 23:00
Linux Kernel CVE-2018-7191 Local Denial of Service Vulnerability

[slackware-security] rdesktop (SSA:2019-135-01)

Bug Traq - 16 May, 2019 - 07:46

Posted by Slackware Security Team on May 16

[slackware-security] rdesktop (SSA:2019-135-01)

New rdesktop packages are available for Slackware 14.0, 14.1, 14.2,
and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/rdesktop-1.8.5-i586-1_slack14.2.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with...

Vuln: Cisco NX-OS CVE-2019-1778 Local Command Injection Vulnerability

Security Focus Vulnerabilities - 15 May, 2019 - 23:00
Cisco NX-OS CVE-2019-1778 Local Command Injection Vulnerability

Vuln: Fuji Electric Alpha7 PC Loader Out-of-Bounds Read Denial of Service Vulnerability

Security Focus Vulnerabilities - 15 May, 2019 - 23:00
Fuji Electric Alpha7 PC Loader Out-of-Bounds Read Denial of Service Vulnerability

Vuln: Symantec Messaging Gateway CVE-2019-9699 Information Disclosure Vulnerability

Security Focus Vulnerabilities - 15 May, 2019 - 23:00
Symantec Messaging Gateway CVE-2019-9699 Information Disclosure Vulnerability

FreeBSD Security Advisory FreeBSD-SA-19:07.mds [REVISED]

Bug Traq - 15 May, 2019 - 21:12

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

FreeBSD Security Advisory FreeBSD-SA-19:07.mds

Bug Traq - 15 May, 2019 - 21:08

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

SEC Consult SA-20190515-0 :: Authorization Bypass in RSA NetWitness (@sec_consult)

Bug Traq - 15 May, 2019 - 05:37

Posted by SEC Consult Vulnerability Lab on May 15

SEC Consult Vulnerability Lab Security Advisory < 20190515-0 >
=======================================================================
title: Authorization Bypass
product: RSA NetWitness
vulnerable version: <10.6.6.1, <11.2.1.1
fixed version: 10.6.6.1, 11.2.1.1
CVE number: CVE-2019-3724
impact: Medium
homepage: https://www.rsa.com
found: 2018-09-18...

FreeBSD Security Advisory FreeBSD-SA-19:07.mds

Bug Traq - 15 May, 2019 - 05:35

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

[SECURITY] [DSA 4447-1] intel-microcode security update

Bug Traq - 15 May, 2019 - 05:26

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4447-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 15, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : intel-microcode
CVE ID : CVE-2018-12126...

FreeBSD Security Advisory FreeBSD-SA-19:05.pf

Bug Traq - 15 May, 2019 - 05:21

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:05.pf Security Advisory
The FreeBSD Project

Topic: IPv6 fragment reassembly panic in pf(4)

Category: contrib
Module: pf
Announced: 2019-05-14
Credits: Synacktiv
Affects: All supported versions of FreeBSD
Corrected:...

FreeBSD Security Advisory FreeBSD-SA-19:06.pf

Bug Traq - 15 May, 2019 - 05:21

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:06.pf Security Advisory
The FreeBSD Project

Topic: ICMP/ICMP6 packet filter bypass in pf

Category: contrib
Module: pf
Announced: 2019-05-14
Credits: Synacktiv
Affects: All supported versions of FreeBSD
Corrected:...

FreeBSD Security Advisory FreeBSD-SA-19:03.wpa

Bug Traq - 15 May, 2019 - 05:20

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:03.wpa Security Advisory
The FreeBSD Project

Topic: Multiple vulnerabilities in hostapd and wpa_supplicant

Category: contrib
Module: wpa
Announced: 2019-05-14
Affects: All supported versions of FreeBSD.
Corrected:...

FreeBSD Security Advisory FreeBSD-SA-19:04.ntp

Bug Traq - 15 May, 2019 - 05:17

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:04.ntp Security Advisory
The FreeBSD Project

Topic: Authenticated denial of service in ntpd

Category: contrib
Module: ntp
Announced: 2019-05-14
Credits: Magnus Stubman
Affects: All supported versions of FreeBSD...

[SECURITY] [DSA 4446-1] lemonldap-ng security update

Bug Traq - 15 May, 2019 - 05:12

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4446-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : lemonldap-ng
CVE ID : CVE-2019-12046

It was...

[SECURITY] [DSA 4444-1] linux security update

Bug Traq - 15 May, 2019 - 05:09

Posted by Salvatore Bonaccorso on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4444-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : linux
CVE ID : CVE-2018-12126 CVE-2018-12127...

[SECURITY] [DSA 4445-1] drupal7 security update

Bug Traq - 15 May, 2019 - 05:05

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4445-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : drupal7
CVE ID : CVE-2019-11831

It was discovered...

SEC Consult SA-20190515-0 :: Authorization Bypass in RSA NetWitness (@sec_consult)

Full Disclosure - 15 May, 2019 - 03:30

Posted by SEC Consult Vulnerability Lab on May 15

SEC Consult Vulnerability Lab Security Advisory < 20190515-0 >
=======================================================================
title: Authorization Bypass
product: RSA NetWitness
vulnerable version: <10.6.6.1, <11.2.1.1
fixed version: 10.6.6.1, 11.2.1.1
CVE number: CVE-2019-3724
impact: Medium
homepage: https://www.rsa.com
found: 2018-09-18...
Syndicate content