The Wordpress videowall Plugin suffers from a Cross-Site Scripting Vulnerability
#
#
# @@@@@@@ @@@@@ @@@
# @@@@@@@@@ @@ @@@ @@@@@
# @@@@@@
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[slackware-security] hplip (SSA:2013-291-01)
New hplip packages are available for Slackware 13.1, 13.37, 14.0, and -current
to
fix security issues.
Here are the details from the Slackware 14.0 ChangeLog:
+--+
Hi @ll,
with http://technet.microsoft.com/security/bulletin/ms12-034
Microsoft addressed CVE-2012-0181 for Windows NT 5.x; see
https://support.microsoft.com/kb/2686509 for details.
BUT: the hotfix KB2686509 does NOT fix anything!
Instead it just checks ONCE(!) whether all the keyboard layout
Linux Kernel Patches For Linux Kernel Security
______
/ _ \ / _ \
__ __| (_) || | | | ___
\ \/ / \__. || | | | / __|
+-+
| XADV-2013002 glibc 2.5 = reloc types to crash bug |
+-+
Vulnerable versions:
- glibc 2.5 =
Not vulnerable versions:
- glibc 2.6 =
Testbed: linux distro
Type: Local
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2782-1 secur...@debian.org
http://www.debian.org/security/Moritz Muehlenhoff
October 20, 2013
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2783-1 secur...@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
October 21, 2013
Watchguard Server Center v11.7.4 Multiple Non-Persistent Cross-Site
Scripting Vulnerabilities
RCE Security Advisory
http://www.rcesecurity.com
1. ADVISORY INFORMATION
---
Product:Watchguard Server Center
Vendor URL: www.watchguard.com
Type: Cross-Site
CVE-2013-4295: XXE vulnerability In Apache Shindig 2.5.0 (PHP)
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected: Apache Shindig PHP 2.5.0
Description: The gadget renderer in the PHP version of Apache Shindig
is subject to an XML External Entity (XXE) Injection