Security support for the chromium web browser is now discontinued
for the stable distribution (wheezy). Chromium upstream stopped
supporting wheezy’s build environment (gcc 4.7, make, etc.), so
there is no longer any practical way to continue building security
updates.
Monthly Archives: January 2015
Vuln: TYPO3 Content Rating Extbase Extension Multiple Input Validation Vulnerabilities
TYPO3 Content Rating Extbase Extension Multiple Input Validation Vulnerabilities
Vuln: TYPO3 Content Rating SQL Injection and Cross Site Scripting Vulnerabilities
TYPO3 Content Rating SQL Injection and Cross Site Scripting Vulnerabilities
Vuln: TYPO3 LDAP / SSO Authentication Extension Authentication Bypass Vulnerability
TYPO3 LDAP / SSO Authentication Extension Authentication Bypass Vulnerability
Vuln: VMware vSphere Data Protection CVE-2014-4632 Certificate Validation Security Bypass Vulnerability
VMware vSphere Data Protection CVE-2014-4632 Certificate Validation Security Bypass Vulnerability
ZeroAccess Botnet Reactivates, Continues Click Fraud
Critical Ghost Bug Could Haunt WordPress And PHP Apps, Too
Online Dating Site Topface Pays Hacker To Not Reveal Email Addresses
WhatsApp Profile Pic Privacy Blunder Discovered
EMC Avamar Missing Certificate Validation
EMC Avamar contains a security vulnerability that may potentially be leveraged by a malicious user to obtain sensitive information when performing a backup or restore operation relating to the vCenter Server. EMC Avamar VMware image and File Level Restore (FLR) proxies do not verify SSL certificates properly when presented by vCenter and may be vulnerable to man-in-the-middle attacks. This vulnerability may potentially be exploited to obtain sensitive information when performing backup and restore operations relating to the vCenter Server. EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) 6.x and 7.0.x are affected.