[SECURITY] [DSA 2434-1] nginx security update

2012-03-20 Thread Luciano Bello
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2434-1 secur...@debian.org http://www.debian.org/security/ Luciano Bello March 19, 2012

[MajorSecurity-SA-2012-014]Apple Safari on iOS 5.1 - Adressbar spoofing vulnerability

2012-03-20 Thread david . kurz
[MajorSecurity-SA-2012-014]Apple Safari on iOS 5.1 - Adressbar spoofing vulnerability Details = Product: Apple Mobile Safari on iOS 5.1 Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.apple.com/ Advisory-Status: published Credits = Discovered by:

[security bulletin] HPSBMU02752 SSRT100802 rev.1 HP Insight Control Software for Linux (IC-Linux), Remote Execution of Arbitrary Code, Denial of Service (DoS)

2012-03-20 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03246498 Version: 1 HPSBMU02752 SSRT100802 rev.1 HP Insight Control Software for Linux (IC-Linux), Remote Execution of Arbitrary Code, Denial of Service (DoS) NOTICE: The information in this

Regarding MS12-020

2012-03-20 Thread Thor (Hammer of God)
PoC code for MS12-020 (RDP) is obviously floating about, and many are still worried about worm activity from this. One of my criticisms about this industry is that rarely is mitigation information shared or discussed; people seem to concentrate on breaking and not preventing exploitation. I

[ MDVSA-2012:032 ] mozilla

2012-03-20 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2012:032 http://www.mandriva.com/security/