Ubuntu Security Notice 2933-1 – It was discovered that Exim incorrectly filtered environment variables when used with the perl_startup configuration option. If the perl_startup option was enabled, a local attacker could use this issue to escalate their privileges to the root user. This issue has been fixed by having Exim clean the complete execution environment by default on startup, including any subprocesses such as transports that call other programs. This change in behaviour may break existing installations and can be adjusted by using two new configuration options, keep_environment and add_environment. Various other issues were also addressed.
Monthly Archives: March 2016
Red Hat Security Advisory 2016-0448-01
Red Hat Security Advisory 2016-0448-01 – Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw was found in the way Samba handled ACLs on symbolic links. An authenticated user could use this flaw to gain access to an arbitrary file or directory by overwriting its ACL.
Red Hat Security Advisory 2016-0447-01
Red Hat Security Advisory 2016-0447-01 – Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw was found in the way Samba handled ACLs on symbolic links. An authenticated user could use this flaw to gain access to an arbitrary file or directory by overwriting its ACL.
Red Hat Security Advisory 2016-0449-01
Red Hat Security Advisory 2016-0449-01 – Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw was found in the way Samba handled ACLs on symbolic links. An authenticated user could use this flaw to gain access to an arbitrary file or directory by overwriting its ACL.
OpenSSH 7.2p1 xauth Command Injection / Bypass
OpenSSH versions 7.2p1 and below suffer from a command injection and /bin/false bypass vulnerability via xauth.
WordPress Bulletproof 0.53.2 Cross Site Scripting
WordPress Bulletproof plugin version 0.53.2 suffers from a cross site scripting vulnerability.
Re: Security contact @ Gigabyte
Posted by Jeffrey Walton on Mar 14
Maybe FunSec (http://lists.linuxbox.org/cgi-bin/mailman/listinfo/funsec)
would be a better place to ask for hep finding the contact:
Funsec — Fun and Misc security discussion for OT posts.
Jeff
[CFP] BSides Las Vegas
Posted by Genevieve Southwick on Mar 14
The CFP for BSides Las Vegas is now open. We’re accepting proposals for the
following tracks:
Breaking Ground – Ground Breaking Information Security research and
conversations on the “Next Big Thing”. Interactively discussing your
research with our participants and getting feedback, input and opinion. No
preaching from the podium at a passive audience.
Common Ground – Other topics of interest to the security community. e.g.,…
Re: Security contact @ Gigabyte
Posted by Gustavo Sorondo on Mar 14
Fyodor,
We were not aware of that FD moderation rule. Now we know, and we’ll try to
avoid this kind of request on FD.
Luckily, through this thread we got the contact we were looking for, so we
thank you all for that.
Cheers,
Gus.-
CVE-2016-1988
HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-1989.