(Jan 30) Lawrence Pit discovered that Ruby on Rails, a web development framenwork, is vulnerable to a flaw in the parsing of JSON to YAML. Using a specially crafted payload attackers can trick the backend into decoding a subset of YAML. [More…]
(Jan 30) Several security issues were fixed in Inkscape.
(Jan 30) squid-cgi could consume excessive system resources, leading to a denialof service attack on it and other hosted services.
(Jan 30) Updated openstack-glance packages that fix one security issue are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having [More…]
(Jan 30) Updated openstack-nova packages that fix two security issues and multiple bugs are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having [More…]
58 queries. 8.25 mb Memory usage. 0.956 seconds.