chromium-browser: Inconsistent security UI placement

Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page...

RHEL 6 : chromium-browser (RHSA-2019:1477)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:1477 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 75.0.3770.80. Security Fixes:...

Authentication flaw

An issue was discovered in Synacor Zimbra Collaboration Suite 8.6.x before 8.6.0 Patch 11, 8.7.x before 8.7.11 Patch 6, 8.8.x before 8.8.8 Patch 9, and 8.8.9 before 8.8.9 Patch 3. Account number enumeration is possible via inconsistent responses for specific types of authentication requests...

DEBIAN-CVE-2019-12293

In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths...

UBUNTU-CVE-2019-12293

In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths...

Poppler heap buffer overread vulnerability (CNVD-2019-15934)

Poppler is based on xpdf-3.0 code base PDF rendering library. A heap buffer over-read vulnerability exists in JPXStream::init in JPEG2000Stream.cc in Poppler 0.76.1 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service via data with inconsistent height or...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Apache HTTP Server vulnerabilities (USN-3937-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3937-1 advisory. Charles Fol discovered that the Apache HTTP Server incorrectly handled the scoreboard shared memory area. A remote attacker able ...

CVE-2018-4389

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to macOS Mojave 10.14.1...

CVE-2018-4362

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2, iOS 12...

CVE-2018-4279

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2...

CVE-2018-4279

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2...

CVE-2018-4260

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2...

CVE-2018-4195

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 12...

CVE-2018-4195

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 12...

Design/Logic Flaw

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2...

Design/Logic Flaw

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to macOS Mojave 10.14.1...

CVE-2018-4389

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to macOS Mojave 10.14.1...

CVE-2018-4389

CVE-2018-4389 is an UI-related inconsistency in macOS Mail (and related components) that was mitigated by updating macOS Mojave to 10.14.1. The issue affects macOS versions prior to 10.14.1, with an improved state-management fix applied in the Mojave 10.14.1 release. The vulnerability is describe...

CVE-2018-4362

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2, iOS 12...

CVE-2018-4195

CVE-2018-4195 affects Safari prior to version 12. It is described as an inconsistent user interface issue addressed with improved state management. The vulnerability is addressed in Safari 12 security content (HT209109). Remediation is to upgrade to Safari 12 or later; no exploit details are prov...