(May 24) An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Archive for May, 2018
(May 25) Update to latest stable upstream version. —- – Update to the new upstream version (60.0)
(May 22) Several security issues were addressed in the Linux kernel.
(May 22) Several security issues were addressed in the Linux kernel.
(May 25) Update to latest 17.11 LTS (fixes bz 1571352)
(May 25) Gabriel Corona discovered that xdg-utils, a set of tools for desktop environment integration, is vulnerable to argument injection attacks. If the environment variable BROWSER in the victim host has a “%s” and the victim opens a link crafted by an attacker with xdg-open, the malicious
(May 24) An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(May 24) An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
The WordPress.org privacy policy has been updated, hurray! While we weren’t able to remove all the long sentences, we hope you find the revisions make it easier to understand: how we collect and use data, how long the data we collect is retained, and how you can request a copy of the data you’ve shared […]
(May 24) Enigmail update to version 2.0.4, introduces fixes for the efail attack. Please check and modify your Thunderbird settings if required: https://enigmail.net/index.php/en/home/news/66-2018-05-16-efail-vulnerability- affects-encrypted-mails
(May 24) Spice could be made to crash or run programs if it received specially crafted network traffic.
(May 24) Several security issues were fixed in curl.
(May 25) Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or attacks on encrypted emails.
(May 24) Fixes for: * CVE-2018-1124 * CVE-2018-1126
(May 25) This update provides mitigations for the Spectre v4 variant in x86-based micro processors. On Intel CPUs this requires updated microcode which is currently not released publicly (but your hardware vendor may have issued an update). For servers with AMD CPUs no microcode update is
(May 24) An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
(May 24) An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
The post The Plesk Onyx Security Quiz | 5 Minutes appeared first on Plesk.
Communication Re-Opt In We’ve been preparing in several ways to support our commitments to customers and end users. Per GDPR regulations and our data processing practices, if you wish to receive communications from cPanel moving forward, you must re-opt in by completing this form. GDPR cPanel has recently updated a number of its agreements to facilitate GDPR compliance. We’ve done two things: We’ve revised our privacy policy …
(May 22) Several security issues were fixed in the Linux kernel.
(May 22) Several security issues were fixed in the Linux kernel.
(May 22) Fixes for: * CVE-2018-1124 * CVE-2018-1126
(May 22) Matthias Gerstner discovered that PackageKit, a DBus abstraction layer for simple software management tasks, contains an authentication bypass flaw allowing users without privileges to install local packages.
(May 23) – fix FTP shutdown response buffer overflow (CVE-2018-1000300) – fix RTSP bad headers buffer over-read (CVE-2018-1000301)
(May 22) The Qualys Research Labs discovered multiple vulnerabilities in procps, a set of command line and full screen utilities for browsing procfs. The Common Vulnerabilities and Exposures project identifies the following problems:
(May 23) An update for librelp is now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
(May 23) An update for redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
This is a guest blog post provided by Kevin McGrail. Kevin is a respected member of the hosting industry, a huge supporter of the Open Source community, and an alumni speaker at the annual cPanel Conference. There are a lot of reasons to choose cPanel & WHM as your web hosting control panel. It’s got tons of features, great support and it lets everyone from Mom n’ Pop to Enterprise customers easily manage their hosting. …
Joomla 3.8.8 Release

Joomla 3.8.8 is now available. This is a security release which addresses 9 security vulnerabilities, contains over 50 bug fixes, and includes various security related improvements.
- Project: Joomla!
- SubProject: CMS
- Impact: Low
- Severity: Low
- Versions: 1.5.0 through 3.8.7
- Exploit type: XSS
- Reported Date: 2017-October-28
- Fixed Date: 2018-May-22
- CVE Number: CVE-2018-6378
Description
Inadequate filtering of file and folder names lead to various XSS attack vectors in the media manager.
Affected Installs
Joomla! CMS versions 1.5.0 through 3.8.7
Solution
Upgrade to version 3.8.8
Contact
The JSST at the Joomla! Security Centre.