Red Hat Security Advisory 2017-0461-01 – Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 52.0 ESR. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox.
Monthly Archives: March 2017
Drupal 7.x Module Services Remote Code Execution
Drupal version 7.x module services remote code execution exploit.
WordPress PICA Photo Gallery 1.0 SQL Injection
WordPress PICA Photo Gallery plugin version 1.0 suffers from a remote SQL injection vulnerability.
USBPcap 1.1.0.0 Privilege Escalation
USBPcap version 1.1.0.0 suffers from a privilege escalation vulnerability.
Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 Denial Of Service
Livebox 3 Sagemcom version SG30_sip-fr-5.15.8.1 suffers from a buffer overflow denial of service vulnerability.
freetype-2.6.3-3.fc24
This update fixes a possible heap buffer overflow.
freetype-2.6.5-3.fc25
This update fixes a possible heap buffer overflow.
Do no evil with Avira (or nasty HTTPS handshakes)
Researchers shows intercepting HTTPS traffic is nothing to sneeze at as it usually lowers user security. Makes you wonder why so many security companies do it. Avira does not.
The post Do no evil with Avira (or nasty HTTPS handshakes) appeared first on Avira Blog.