Red Hat Security Advisory 2018-3586-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include denial of service and use-after-free vulnerabilities.
e0009f6e82725aa1e1293a06230a2d8f2162605ab1319eabab34e2054abbd3fd
Ubuntu Security Notice 3811-2 - USN-3811-1 fixed a vulnerability in SpamAssassin. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that SpamAssassin incorrectly handled certain unclosed tags in emails. A remote attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.
3169aebc3bfbbd236df10498ee0356766eef7a2a0b10e65b6ed613fc8fca3099
Ubuntu Security Notice 3814-3 - USN-3814-2 fixed several vulnerabilities in clamav. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered ClamAV incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
e1fe01634c40c76c7771c67b1a2e96e09aceb652975604c891ac9b1d2e6425e7
Red Hat Security Advisory 2018-3581-01 - Red Hat JBoss BRMS is a business rules management system for the management, storage, creation, modification, and deployment of JBoss Rules. This asynchronous patch is a security update for the RichFaces package in standalone versions of Red Hat JBoss BRMS 5.3.1. Issues addressed include a code execution vulnerability.
f7369141e3c8f354bc5d5866d630ec080bd6112fae215fde5811e98e1830d7cb
Gumbo CMS version 0.99 suffers from a remote SQL injection vulnerability.
c9291ab7781a86de6fbee74faed793008e751950fe6634341e3ce608c5cb8aff
Red Hat Security Advisory 2018-3558-01 - The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module. Issues addressed include buffer overflow, bypass, denial of service, heap overflow, null pointer, out of bounds write, and use-after-free vulnerabilities.
4abdca181cc67933f360c5393ddadd7197a24c99bd7985727a9e00a4d0cad5b6
Slackware Security Advisory - New libtiff packages are available for Slackware 14.2 and -current to fix security issues.
ce13b5eab897c1aeacc3c3f633d4529e868f7c853b4e0c7c1765c0f3c770fd21
Evince version 3.24.0 suffers from a command injection vulnerability.
d6ee91ce364604fed7dad5bab2fc980ac42e3d5eca3fbd4d82a3c4e8ed364afc
Ubuntu Security Notice 3814-2 - USN-3814-1 fixed several vulnerabilities in libmspack. In Ubuntu 14.04 libmspack is included into ClamAV. This update provides the corresponding update for Ubuntu 14.04 LTS. It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service. Various other issues were also addressed.
92e549bdac13ce558a86e5587ee1c93eb04c9c3c66fc3abca26482d39cba82ff
Micro Focus Security Bulletin MFSBGN03831 - A potential vulnerability has been identified in Micro Focus Service Management Automation. The vulnerability could be exploited to remote disclosure of information. Revision 1 of this advisory.
4e5c1669c7d98b3695c06dd31de33d789391c943aeeaaa94fcea01960f28bb0c
Micro Focus Security Bulletin MFSBGN03830 1 - A potential security vulnerability has been identified with Service Manager The vulnerability could be exploited to unauthorized disclosure of information. Revision 1 of this advisory.
312bd5ed0489a89246ba2b5ecfb83673c64e6c1a8206a2ec696c39733a9ff23a
Micro Focus Security Bulletin MFSBGN03823 1 - A potential vulnerability has been identified in Micro Focus Service Manager. The vulnerability could be exploited to unauthorized disclosure of data. Revision 1 of this advisory.
34bd29abf2e91d1470ff79797937fbcdc60f79f92f95999878388014dbc5d880
ABC ERP version 0.6.4 suffers from a cross site request forgery vulnerability.
4baceb2f209a7eadf7a42a5ed14a0b970842d6cb34edf896d4ed010b2e5afbdd
Easyndexer version 1.0 suffers from an arbitrary file download vulnerability.
ed71d25ae0f6ac367eb8f258a475717f2ad0d4b24a1b5078dc6bb23746c77869
CuteFTP Mac version 3.1 denial of service proof of concept exploit.
aa58c810188758cbe192f5d319f42808496863a43c4db4a900e9a5506345ba5f
xorg-x11-server versions prior to 1.20.1 local privilege escalation exploit.
fb77fab828d8d0bab406044be7355eb91d3ce8026b117ae80f463ff6657192d5
Tina4 Stack version 1.0.3 suffers from a cross site request forgery vulnerability.
ace6623928fae2aabe44a3e36bcaa6a37feb96dd09e5c647bbea304fa8684c95
Tina4 Stack version 1.0.3 suffers from a remote SQL injection vulnerability.
e3dd3875f2527471ccf8f22278ba68a05c2c2b71b886c7ec6c8fd6ea0a385369
Data Center Audit version 2.6.2 suffers from a cross site request forgery vulnerability.
77b0fdbe9bdef407e3f4c1195ff1295be0bc2bb677efbd1d04988eae394fb42d
Musicco version 2.0.0 suffers from an arbitrary directory download vulnerability.
996d2d1e5da8bd8545a0ab449b936dcc4fb673dbd70d8fefeac896c889344cba
Alienor Web Libre version 2.0 suffers from a remote SQL injection vulnerability.
5d9ca13612964a34d5d1d6f8da3bc1b8aefafcb1690c27c077eb581e17b5d071
Surreal ToDo version 0.6.1.2 suffers from a local file inclusion vulnerability.
e1ba64daaf35d517f524bcd42a4f3f8e90a09bcc9af46638beffa1551ad4da21
Surreal ToDo version 0.6.1.2 suffers from a remote SQL injection vulnerability.
0f00935277c7a3c8b443ff012eab5e45e505f0f63578930d52f9f09456765f97
58 bytes small Linux/x86 bind (99999/TCP) netcat traditional (/bin/nc) shell (/bin/bash) shellcode.
e8ad9402dd064b6380ad50ccdfd554955945a67f19f071027c1fbeec4b1380ad
XAMPP Control Panel version 3.2.2 SEH unicode buffer overflow exploit.
8bd240bd7bb81248ab6c58a6fd1da8911cf666e166f20e68128a64569d22ed9f