(Feb 28) Sudo could be made to run programs as the administrator without a passwordprompt.
Red Hat: 2013:0574-01: flash-plugin: Critical Advisory
(Feb 27) An updated Adobe Flash Player package that fixes three security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More…]
The following bug has been fixed:
[-] (Windows only) defpackagemng.exe hangs on if Plesk package DLL info contains double slashes.
Debian: 2633-1: fusionforge: privilege escalation
(Feb 26) Helmut Grohne discovered multiple privilege escalation flaws in FusionForge, a web-based project-management and collaboration software. Most of the vulnerabilities are related to the bad handling of privileged operations on user-controlled files or directories. [More…]
Debian: 2634-1: python-django: Multiple vulnerabilities
(Feb 26) Several vulnerabilities have been discovered in python-django, a high-level python web development framework. The Common Vulnerabilities and Exposures project identifies the following problems: [More…]