Hack Talk
It's like the Internet without all the smart people Home | Gitweb | Status | IRC

Sat, 23 Jul 2016 13:02:19 +0200

[SECURITY] [DSA 3625-1] squid3 security update
    22 Jul 2016 | 11:39 from Bugtraq

Posted by Sebastien Delafond on Jul 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-3625-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
July 22, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : squid3
CVE ID : CVE-2016-4051 CVE-2016-4052...

Dreammail 5 mail client XSS Vulnerability
    22 Jul 2016 | 08:28 from Bugtraq

Posted by wwiinngd on Jul 21

Title: Dreammail 5 mail client XSS Vulnerability
Software : Dreammail

Software Version : v5.16

Vendor: www.dreammail.org

Vulnerability Published : 2016-03-21

Author:zhenwei_qi
Email:wwiinngd () gmail com
Impact : Medium(CVSS2 Base : 4.3, AV:N/AC:M/Au:N/C:N/I:P/A:N)

Bug Description :
DreamMail is an email client application, which allows its users to send, receive, and

manage emails.
Dreammail (ver 5.16) may be compromised by...

[slackware-security] gimp (SSA:2016-203-01)
    22 Jul 2016 | 08:15 from Bugtraq

Posted by Slackware Security Team on Jul 21

[slackware-security] gimp (SSA:2016-203-01)

New gimp packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/gimp-2.8.18-i586-1_slack14.2.txz: Upgraded.
This release fixes a security issue:
Use-after-free vulnerability in the xcf_load_image function in
app/xcf/xcf-load.c in GIMP allows remote...

[slackware-security] php (SSA:2016-203-02)
    22 Jul 2016 | 08:05 from Bugtraq

Posted by Slackware Security Team on Jul 21

[slackware-security] php (SSA:2016-203-02)

New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/php-5.6.24-i586-1_slack14.2.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
http://php.net/ChangeLog-5.php#5.6.24...

[security bulletin] HPSBGN03631 rev.1 - HPE IceWall Identity Manager and HPE IceWall SSO Password Reset Option running Apache Commons FileUpload, Remote Denial of Service (DoS)
    22 Jul 2016 | 07:55 from Bugtraq

Posted by security-alert on Jul 21

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n
a-c05204371

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05204371
Version: 1

HPSBGN03631 rev.1 - HPE IceWall Identity Manager and HPE IceWall SSO Password
Reset Option running Apache Commons FileUpload, Remote Denial of Service
(DoS)

NOTICE: The information in this Security Bulletin...

MySQL zero-day vulnerabilities (July 2016 CPU)
    22 Jul 2016 | 07:48 from Bugtraq

Posted by lem . nikolas on Jul 21

MySQL is the most popular and most widely used database in the world. MySQL customers include NASA, US Navy, Google,
Facebook, Twitter just to cite a few..

In partnership with Oracle Inc. we have worked delicately to enhance the security of the open-source product, and to
identify and mitigate those vulnerabilities.

Sincere thanks to Oracle Inc for the prompt response and adequate mitigation to the issues.

You can get a copy of the report...

[SECURITY] [DSA 3624-1] mysql-5.5 security update
    22 Jul 2016 | 07:36 from Bugtraq

Posted by Salvatore Bonaccorso on Jul 21

-------------------------------------------------------------------------
Debian Security Advisory DSA-3624-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
July 21, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : mysql-5.5
CVE ID : CVE-2016-3477 CVE-2016-3521...

Cisco Security Advisory: Vulnerability in Objective Systems ASN1C Compiler Affecting Cisco Products
    22 Jul 2016 | 07:24 from Bugtraq

Posted by Cisco Systems Product Security Incident Response Team on Jul 21

Cisco Security Advisory: Vulnerability in Objective Systems ASN1C Compiler Affecting Cisco Products

Advisory ID: cisco-sa-20160721-asn1c

Revision: 1.0

For Public Release: 2016 July 21 19:00 GMT

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the ASN1C compiler by Objective Systems affects Cisco ASR 5000 devices running StarOS and Cisco
Virtualized Packet Core (VPC) systems. The...

Friday Free Software Directory IRC meetup: July 22nd
    21 Jul 2016 | 20:50 from FSF's blog

Join the FSF and friends every Friday to help improve the Free Software Directory by adding new entries and updating existing ones.


W3C Invites Implementations of Resource Timing Level 1
    21 Jul 2016 | 16:12 from W3C News

The Web Performance Working Group invites implementation of the Candidate Recommendation of Resource Timing Level 1. This specification defines an interface for web applications to access the complete timing information for resources in a document.


3 Publications by The Permissions and Obligations Expression WG
    21 Jul 2016 | 16:12 from W3C News

The Permissions & Obligations Expression (POE) Working Group has published the First Public Working Drafts for the ODRL Information Model and the ODRL Vocabulary & Expression. These FPWDs provide a flexible and interoperable information model, vocabulary, and encoding mechanisms for describing statements about digital content usage. The deliverables are based on the previous reports created […]


XProc 2.0: Standard Step Library and XProc 2.0: An XML Pipeline Language Notes Published
    21 Jul 2016 | 16:12 from W3C News

The XML Processing Model Working Group has published two Group Notes: XProc 2.0: Standard Step Library: This specification describes the standard step vocabulary of XProc 2.0: An XML Pipeline Language. XProc 2.0: An XML Pipeline Language: This specification describes the syntax and semantics of XProc 2.0: An XML Pipeline Language, a language for describing operations […]


XML Inclusions (XInclude) Version 1.1 Note Published
    21 Jul 2016 | 16:12 from W3C News

The XML Core Working Group has published a Group Note of XML Inclusions (XInclude) Version 1.1. This document specifies a processing model and syntax for general purpose inclusion. Inclusion is accomplished by merging a number of XML information sets into a single composite infoset. Specification of the XML documents (infosets) to be merged and control […]


CVE-2016-5399: php: out-of-bounds write in bzread()
    21 Jul 2016 | 08:29 from Bugtraq

Posted by Hans Jerry Illikainen on Jul 20

PHP 7.0.8, 5.6.23 and 5.5.37 does not perform adequate error handling in
its `bzread()' function:

php-7.0.8/ext/bz2/bz2.c
,----
| 364 static PHP_FUNCTION(bzread)
| 365 {
| ...
| 382 ZSTR_LEN(data) = php_stream_read(stream, ZSTR_VAL(data), ZSTR_LEN(data));
| 383 ZSTR_VAL(data)[ZSTR_LEN(data)] = '\0';
| 384
| 385 RETURN_NEW_STR(data);
| 386 }
`----

php-7.0.8/ext/bz2/bz2.c
,----
| 210 php_stream_ops php_stream_bz2io_ops...

Persistent Cross-Site Scripting in WooCommerce using image metadata (EXIF)
    20 Jul 2016 | 18:53 from Bugtraq

Posted by Summer of Pwnage on Jul 20

------------------------------------------------------------------------
Persistent Cross-Site Scripting in WooCommerce using image metadata
(EXIF)
------------------------------------------------------------------------
Han Sahin, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A persistent Cross-Site Scripting (XSS)...

Cross-Site Scripting vulnerability in Paid Memberships Pro WordPress Plugin
    20 Jul 2016 | 18:40 from Bugtraq

Posted by Summer of Pwnage on Jul 20

------------------------------------------------------------------------
Cross-Site Scripting vulnerability in Paid Memberships Pro WordPress
Plugin
------------------------------------------------------------------------
Burak Kelebek, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found...

Cisco Security Advisory: Cisco Unified Computing System Performance Manager Input Validation Vulnerability
    20 Jul 2016 | 18:31 from Bugtraq

Posted by Cisco Systems Product Security Incident Response Team on Jul 20

Cisco Security Advisory: Cisco Unified Computing System Performance Manager Input Validation Vulnerability

Advisory ID: cisco-sa-20160720-ucsperf

Revision 1.0

For Public Release 2016 July 20 16:00 GMT (UTC)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the web framework of Cisco Unified Computing System (UCS) Performance Manager could allow an
authenticated, remote attacker to...

[SEARCH-LAB advisory] UPC Hungary network problems
    20 Jul 2016 | 14:00 from Bugtraq

Posted by Gergely Eberhardt on Jul 20

UPC network problems
--------------------

Platforms / Firmware confirmed affected:
- UPC Hungary network

Problems
--------
Network and device configuration problems
Administration password is sent to the device in plain in the
configuration file
Administration password, which is used also for the telnet service, is
sent in plain in the configuration file downloaded by the device via
TFTP from the location specified by the DHCP response. The...

[SEARCH-LAB advisory] Technicolor TC7200 modem/router multiple vulnerabilities
    20 Jul 2016 | 13:53 from Bugtraq

Posted by Gergely Eberhardt on Jul 20

Technicolor TC7200 modem/router multiple vulnerabilities
--------------------------------------------------------

Platforms / Firmware confirmed affected:
- Technicolor TC7200, STD6.02.11
- Product page:
http://www.technicolor.com/en/solutions-services/connected-home/broadband-devices/cable-modems-gateways/tc7200-tc7300

Vulnerabilities
---------------
Insecure session management
The web interface does not use cookies at all and does not check...

[SEARCH-LAB advisory] Compal CH7465LG-LC modem/router multiple vulnerabilities
    20 Jul 2016 | 13:43 from Bugtraq

Posted by Gergely Eberhardt on Jul 20

Compal CH7465LG-LC modem/router multiple vulnerabilities
--------------------------------------------------------

The following vulnerabilities are the result of a quick check (~3 hours)
of the Mercury modem. We performed a systematic and deeper evaluation of
this device also, which result will be described in a separate report
[2] and advisory.

Platforms / Firmware confirmed affected:
- Compal CH7465LG-LC, CH7465LG-NCIP-4.50.18.13-NOSH...