(Mar 26) Brad Hill of iSEC Partners discovered that many XML implementations are vulnerable to external entity expansion issues, which can be used for various purposes such as firewall circumvention, disguising an IP address, and denial-of-service. libxml2 was susceptible to these [More…]
Archive for March 27th, 2013
4 results.
Comment
(Mar 25) GNOME Online Accounts could be made to expose sensitive information overthe network.
(Mar 25) Ruby could be made to hang if it received specially crafted input.
(Mar 25) Updated axis packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More…]