Freefloat FTP server version 1.0 RMD command buffer overflow exploit.
Monthly Archives: November 2016
Freefloat FTP Server 1.0 HOST Buffer Overflow
Freefloat FTP server version 1.0 HOST command buffer overflow exploit.
PCMAN FTP Server 2.0.7 DELETE Buffer Overflow
PCMAN FTP server version 2.0.7 DELETE command buffer overflow exploit.
My Little Forum 2.3.7 File Disclosure
My Little Forum version 2.3.7 suffers from a file disclosure vulnerability.
My Little Forum 2.3.7 Cross Site Request Forgery / Cross Site Scripting
My Little Forum version 2.3.7 suffers from backup disclosure, cross site request forgery, and multiple cross site scripting vulnerabilities.
Google to Distrust WoSign, StartCom Certs in 2017
Google announced Monday that it will distrust certificates issued by WoSign and StartCom when in it ships Chrome 56 in January 2017.
ghostscript-9.20-4.fc23
This is a security update for these CVEs:
* [CVE-2016-8602](https://bugzilla.redhat.com/show_bug.cgi?id=1383940) – *check for sufficient params in .sethalftone5*
* [CVE-2016-7977](https://bugzilla.redhat.com/show_bug.cgi?id=1380415) – *.libfile does not honor -dSAFER* [This CVE is now correctly fixed, previous release was accidentally missing the fix.]
ghostscript-9.20-4.fc24
This is a security update for these CVEs:
* [CVE-2016-8602](https://bugzilla.redhat.com/show_bug.cgi?id=1383940) – *check for sufficient params in .sethalftone5*
* [CVE-2016-7977](https://bugzilla.redhat.com/show_bug.cgi?id=1380415) – *.libfile does not honor -dSAFER* [This CVE is now correctly fixed, previous release was accidentally missing the fix.]
ghostscript-9.20-4.fc25
This is a security update for these CVEs:
* [CVE-2016-8602](https://bugzilla.redhat.com/show_bug.cgi?id=1383940) – *check for sufficient params in .sethalftone5*
* [CVE-2016-7977](https://bugzilla.redhat.com/show_bug.cgi?id=1380415) – *.libfile does not honor -dSAFER* [This CVE is now correctly fixed, previous release was accidentally missing the fix.]
icu-57.1-2.fc25
Security fix for CVE-2016-6293