Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted imagewebp and imagedestroy calls.
Monthly Archives: September 2016
VLC Media Player 2.2.1 Buffer Overflow
VLC Media Player version 2.2.1 suffers from a buffer overflow vulnerability.
Exponent CMS 2.3.9 Cross Site Scripting
Exponent CMS version 2.3.9 suffers from a cross site scripting vulnerability.
[REVIVE-SA-2016-002] Revive Adserver – Multiple vulnerabilities
Posted by Matteo Beccati on Sep 28
========================================================================
Revive Adserver Security Advisory REVIVE-SA-2016-002
========================================================================
http://www.revive-adserver.com/security/revive-sa-2016-002
========================================================================
CVE-IDs: TBA
Date: 2016-09-28
Risk Level: Medium…
Apple Tracks Who You're Chatting Using iMessage — and Shares that Data with Police
Doing conversations with your friend on iMessage and thinking that they are safe and out of reach from anyone else other than you and your friend? No, it’s not.
End-to-end encryption doesn’t mean that your iMessages are secure enough to hide your trace because Apple not only stores a lot of information about your iMessages that could reveal your contacts and location, but even share that
Congressional Leaders Demand Answers on Yahoo Breach
A number of Democratic Congressional leaders wrote Yahoo CEO Marissa Mayer a letter seeking answers about the breach of 500 million customer records.
Data breaches are the new normal [Infographic]
Microsoft Edge Adds App Guard Browser Security
Microsoft is bringing virtualization to its Edge browser with a security tool called Windows Defender Application Guard. The technology, announced this week at Microsoft’s 2016 Ignite conference in Atlanta, takes a virtualization-based approach to isolating browser-based attacks from the internet. Windows Defender Application Guard will be exclusive to enterprise versions of Windows 10 and will […]
Celebrate Oktoberfest in the Avira tent
Less Lederhosen, more security, and Dirndls are optional.
The post Celebrate Oktoberfest in the Avira tent appeared first on Avira Blog.
Germany Orders Facebook to Stop Collecting Data on WhatsApp Users
A German privacy regulator issued an order this week prohibiting Facebook to stop collecting user data on German WhatsApp users.