SOLDIERX.COM Nobody Can Stop Information Insemination

cockpit-ovirt CVE-2019-10139 Local Information Disclosure Vulnerability

systemd CVE-2018-20839 Information Disclosure Vulnerability

Linux Kernel CVE-2018-7191 Local Denial of Service Vulnerability

Posted by Slackware Security Team on May 16

[slackware-security] rdesktop (SSA:2019-135-01)

New rdesktop packages are available for Slackware 14.0, 14.1, 14.2,
and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/rdesktop-1.8.5-i586-1_slack14.2.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with...

Cisco NX-OS CVE-2019-1778 Local Command Injection Vulnerability

Fuji Electric Alpha7 PC Loader Out-of-Bounds Read Denial of Service Vulnerability

Symantec Messaging Gateway CVE-2019-9699 Information Disclosure Vulnerability

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

Posted by SEC Consult Vulnerability Lab on May 15

SEC Consult Vulnerability Lab Security Advisory < 20190515-0 >
=======================================================================
title: Authorization Bypass
product: RSA NetWitness
vulnerable version: <10.6.6.1, <11.2.1.1
fixed version: 10.6.6.1, 11.2.1.1
CVE number: CVE-2019-3724
impact: Medium
homepage: https://www.rsa.com
found: 2018-09-18...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:07.mds Security Advisory
The FreeBSD Project

Topic: Microarchitectural Data Sampling (MDS)

Category: core
Module: kernel
Announced: 2019-05-14
Credits: Refer to Intel's security advisory at the URL below for...

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4447-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 15, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : intel-microcode
CVE ID : CVE-2018-12126...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:05.pf Security Advisory
The FreeBSD Project

Topic: IPv6 fragment reassembly panic in pf(4)

Category: contrib
Module: pf
Announced: 2019-05-14
Credits: Synacktiv
Affects: All supported versions of FreeBSD
Corrected:...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:06.pf Security Advisory
The FreeBSD Project

Topic: ICMP/ICMP6 packet filter bypass in pf

Category: contrib
Module: pf
Announced: 2019-05-14
Credits: Synacktiv
Affects: All supported versions of FreeBSD
Corrected:...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:03.wpa Security Advisory
The FreeBSD Project

Topic: Multiple vulnerabilities in hostapd and wpa_supplicant

Category: contrib
Module: wpa
Announced: 2019-05-14
Affects: All supported versions of FreeBSD.
Corrected:...

Posted by FreeBSD Security Advisories on May 15

=============================================================================
FreeBSD-SA-19:04.ntp Security Advisory
The FreeBSD Project

Topic: Authenticated denial of service in ntpd

Category: contrib
Module: ntp
Announced: 2019-05-14
Credits: Magnus Stubman
Affects: All supported versions of FreeBSD...

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4446-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : lemonldap-ng
CVE ID : CVE-2019-12046

It was...

Posted by Salvatore Bonaccorso on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4444-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : linux
CVE ID : CVE-2018-12126 CVE-2018-12127...

Posted by Moritz Muehlenhoff on May 15

-------------------------------------------------------------------------
Debian Security Advisory DSA-4445-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : drupal7
CVE ID : CVE-2019-11831

It was discovered...

Posted by SEC Consult Vulnerability Lab on May 15

SEC Consult Vulnerability Lab Security Advisory < 20190515-0 >
=======================================================================
title: Authorization Bypass
product: RSA NetWitness
vulnerable version: <10.6.6.1, <11.2.1.1
fixed version: 10.6.6.1, 11.2.1.1
CVE number: CVE-2019-3724
impact: Medium
homepage: https://www.rsa.com
found: 2018-09-18...