It was discovered that php-horde-core, a set of classes providing the
core functionality of the Horde Application Framework, is prone to a
cross-site scripting vulnerability.
Monthly Archives: February 2016
Proxmox VE 3 / 4 XSS / Privilege Escalation / Code Execution
Proxmox VE versions 3 and 4 suffers from privilege escalation, code execution, and cross site scripting vulnerabilities.
Ubuntu Security Notice USN-2910-2
Ubuntu Security Notice 2910-2 – USN-2910-1 fixed vulnerabilities in the Ubuntu 15.04 Linux kernel backported to Ubuntu 14.04 LTS. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 14.04 LTS guests running the Ubuntu 15.04 backport kernel within VMWare virtual machines. This update fixes the problem. Various other issues were also addressed.
Ubuntu Security Notice USN-2909-2
Ubuntu Security Notice 2909-2 – USN-2909-1 fixed vulnerabilities in the Ubuntu 14.10 Linux kernel backported to Ubuntu 14.04 LTS. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 14.04 LTS guests running the Ubuntu 14.10 backport kernel within VMWare virtual machines. This update fixes the problem. Various other issues were also addressed.
Ubuntu Security Notice USN-2908-5
Ubuntu Security Notice 2908-5 – USN-2908-2 fixed vulnerabilities in the Ubuntu 15.10 Linux kernel backported to Ubuntu 14.04 LTS. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 14.04 LTS guests running the Ubuntu 15.10 backport kernel within VMWare virtual machines. This update fixes the problem. Various other issues were also addressed.
Ubuntu Security Notice USN-2908-4
Ubuntu Security Notice 2908-4 – USN-2908-1 fixed vulnerabilities in the Linux kernel for Ubuntu 15.10. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 15.10 guests running within VMWare virtual machines. This update fixes the problem. Various other issues were also addressed.
Gentoo Linux Security Advisory 201602-03
Gentoo Linux Security Advisory 201602-3 – Multiple vulnerabilities have been found in libwmf allowing remote attackers to execute arbitrary code or cause Denial of Service. Versions less than 0.2.8.4-r6 are affected.
CTB-Locker Ransomware Spreading Rapidly, Infects Thousands of Web Servers
In last few years, we saw an innumerable rise in ransomware threats ranging from Cryptowall to Locky ransomware discovered last week.
Now, another genre of ransomware had been branched out from the family of CTB-Locker Ransomware with an update to infect “Websites”.
The newly transformed ransomware dubbed “CTB-Locker for Websites” exclusively hijacks the websites by locking out its data, which
Chinese ISPs Caught Injecting Ads and Malware into Web Pages
China has gained a considerable global attention when it comes to their Internet policies in the past years; whether it’s introducing its own search engine dubbed “Baidu,” Great Firewall of China, its homebrew China Operating System (COP) and many more.
Along with the developments, China has long been criticized for suspected backdoors in its products: Xiaomi and Star N9500 smartphones are
RHBA-2016:0307-1: Red Hat Enterprise Linux Atomic pod-infrastructure Container Image Update
An updated Red Hat Enterprise Linux Atomic pod-infrastructure container image is
now available for Red Hat Enterprise Linux Atomic Host.