Archive for September 24th, 2019

9 results.

Fedora 29: SDL2_image FEDORA-2019-a6bc0fb143

Sep24
by Ike on September 24, 2019 at 10:53 pm
Posted In: Uncategorized

Update to SDL2_Image 2.0.5 for multiple CVEs.

 Comment 

Fedora 29: java-1.8.0-openjdk-aarch32 FEDORA-2019-5c794ec7ba

Sep24
by Ike on September 24, 2019 at 10:49 pm
Posted In: Uncategorized

8u222 update

 Comment 

Fedora 30: ghostscript FEDORA-2019-953fc0f16d

Sep24
by Ike on September 24, 2019 at 9:37 pm
Posted In: Uncategorized

– rebase to latest upstream version 9.27 – security fixes added for: – CVE-2019-14811 (bug #1747908) – CVE-2019-14812 (bug #1747907) – CVE-2019-14813 (bug #1747906) – CVE-2019-14817 (bug #1747909)

 Comment 

[20190901] – Core – XSS in logo parameter of default templates

Sep24
by Ike on September 24, 2019 at 1:00 pm
Posted In: Uncategorized
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions: 3.0.0-3.9.11
  • Exploit type: XSS
  • Reported Date: 2019-August-28
  • Fixed Date: 2019-September-24
  • CVE Number: CVE-2019-16725

Description

Inadequate escaping allowed XSS attacks using the logo parameter of the default templates.

Affected Installs

Joomla! CMS versions 3.0.0 – 3.9.11

Solution

Upgrade to version 3.9.12

Contact

The JSST at the Joomla! Security Centre.

Reported By: Aswin M Guptha

 Comment 

Joomla 3.9.12 Release

Sep24
by Ike on September 24, 2019 at 1:00 pm
Posted In: Uncategorized
Joomla 3.9.12

Joomla 3.9.12 is now available. This is a security fix release for the 3.x series of Joomla which addresses one security vulnerability and contains over 30 bug fixes and improvements.

 Comment 

Fedora 31: java-1.8.0-openjdk-aarch32 FEDORA-2019-0bb3cfd816

Sep24
by Ike on September 24, 2019 at 12:35 pm
Posted In: Uncategorized

8u222 update

 Comment 

Ubuntu 4138-1: LibreOffice vulnerability

Sep24
by Ike on September 24, 2019 at 10:46 am
Posted In: Uncategorized

LibreOffice could be made to run programs as your login if it opened a specially crafted file.

 Comment 

RedHat: RHSA-2019-2893:01 Important: httpd:2.4 security update

Sep24
by Ike on September 24, 2019 at 9:54 am
Posted In: Uncategorized

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

 Comment 

RedHat: RHSA-2019-2892:01 Important: qemu-kvm security update

Sep24
by Ike on September 24, 2019 at 9:33 am
Posted In: Uncategorized

An update for qemu-kvm is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

 Comment 

59 queries. 8.75 mb Memory usage. 0.876 seconds.