[SECURITY] [DSA 3644-1] fontconfig security update
Monthly Archives: August 2016
RHBA-2016:1576-1: Red Hat Gluster Storage 3.1 glusterfs Update
Red Hat Enterprise Linux: Updated glusterfs packages that fix one bug is now available for Red Hat Gluster
Storage 3.1.
WordPress Add From Server 6.2 Cross Site Request Forgery
WordPress Add From Server plugin version 6.2 suffers from a cross site request forgery vulnerability.
Microsoft Windows 7 Group Policy Privilege Escalation
Microsoft Windows 7 (x32/x64) suffers from a group policy privilege escalation vulnerability as described in MS16-072.
Cross-Site Request Forgery vulnerability in Add From Server WordPress Plugin
Posted by Summer of Pwnage on Aug 08
————————————————————————
Cross-Site Request Forgery vulnerability in Add From Server WordPress
Plugin
————————————————————————
Edwin Molenaar, July 2016
————————————————————————
Abstract
————————————————————————
It was discovered that Add From Server is…
vBulletin 5.2.2 / 4.2.3 / 3.8.9 Server Side Request Forgery
vBulletin versions 5.2.2 and below, 4.2.3 and below, and 3.8.9 and below suffer from a pre-auth server side request forgery vulnerability.
Slackware Security Advisory – stunnel Updates
Slackware Security Advisory – New stunnel packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.
Slackware Security Advisory – openssh Updates
Slackware Security Advisory – New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.
Slackware Security Advisory – mozilla-firefox Updates
Slackware Security Advisory – New mozilla-firefox packages are available for Slackware 14.1 and 14.2 to fix security issues.
Slackware Security Advisory – curl Updates
Slackware Security Advisory – New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.