(Jun 16) Update to latest nodejs-uri-js for CVE fix
Comment
Archive for Other
2889 results.
(Jun 16) Update to latest nodejs-uri-js for CVE fix
(Jun 15) – Fix CVE-2018-11396/CVE-2018-12016 (#795740) – Allow Ctrl+T in app mode again due to unintended consequences (#796204) – Don’t remember passwords when the setting is disabled (#796219) – Fix password manager crash on chase.com (GitLab #11)
(Jun 15) – doc Remove documentation for future option faked sys – build Don’t use dev srandom on OpenBSD – Do not use C99 feature – g10 Fix regexp sanitization – g10 Push compress filter only if compressed – gpg Sanitize diagnostic with the original file name [CVE-2018-12020]
(Jun 14) Several security issues were fixed in Ruby.
(Jun 12) Several security issues were fixed in the Linux kernel.
(Jun 14) Security fix: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file (CVE-2018-1002200) A path traversal vulnerability has been discovered in plexus-archiver when extracting a carefully crafted zip file which holds path traversal file names. A remote attacker could use this vulnerability to write files outside the target directory and overwrite
(Jun 15) GnuPG 2 could be made to present validity information incorrectly.
(Jun 15) Several security issues were fixed in the Linux kernel.
(Jun 14) An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
(Jun 12) An update for Red Hat JBoss Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
(Jun 14) Security fix: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file (CVE-2018-1002200) A path traversal vulnerability has been discovered in plexus-archiver when extracting a carefully crafted zip file which holds path traversal file names. A remote attacker could use this vulnerability to write files outside the target directory and overwrite
(Jun 14) Several vulnerabilities were found in SPIP, a website engine for publishing, resulting in cross-site scripting and PHP injection. For the oldstable distribution (jessie), this problem has been fixed
(Jun 13) – Upstream released new version – Fix a bunch of CVE’s
(Jun 12) An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(Jun 13) Perl could be made to overwrite arbitrary files if it received a specially crafted archive file.
(Jun 13) Perl could be made to overwrite arbitrary files if it received a specially crafted archive file.
(Jun 13) An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
(Jun 12) An update for rh-maven33-plexus-archiver and rh-maven35-plexus-archiver is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(Jun 12) An update for plexus-archiver is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(Jun 12) Several security issues were fixed in the Linux kernel.
(Jun 12) Several security issues were fixed in the Linux kernel.
(Jun 12) Danny Grander discovered a directory traversal flaw in plexus-archiver, an Archiver plugin for the Plexus compiler system, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted Zip archive.
(Jun 12) Several security issues were fixed in the Linux kernel.
(Jun 12) Several security issues were fixed in the Linux kernel.
(Jun 8) Several vulnerabilities were discovered in jruby, a Java implementation of the Ruby programming language. They would allow an attacker to use specially crafted gem files to mount cross-site scripting attacks, cause denial of service through an infinite loop,
(Jun 11) An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(Jun 11) An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
(Jun 12) Jakub Wilk discovered a directory traversal flaw in the Archive::Tar module, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted tar archive.
(Jun 7) 8u171 update