Ultimate Member < 2.0.52 - CSRF and Stored XSS issues

A CSRF vulnerability in adding/editing user roles in Ultimate Member 2.0.49. It also lead to stored XSS. Edit WPScanTeam: July 9th, 2019 - v2.0.50 released and still affected. Escalated to WP Plugins Team July 9th, 2019 - v2.0.51 released, fixing the CSRF but not the XSS July 11th, 2019 - Escalat...

SUSE SLED12 / SLES12 Security Update : gstreamer-plugins-base (SUSE-SU-2019:1600-1)

This update for gstreamer-plugins-base fixes the following issue: Security issue fixed : CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...

SUSE SLED12 / SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2019:1602-1)

This update for gstreamer-010-plugins-base fixes the following issues : Security issue fixed : CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

This Cryptomining Malware Launches Linux VMs On Windows and macOS

Cybersecurity researchers from at least two firms today unveiled details of a new strain of malware that targets Windows and macOS systems with a Linux-based cryptocurrency mining malware. It may sound strange, but it's true. Dubbed "LoudMiner " and also "Bird Miner, " the attack leverages...

SUSE-SU-2019:1629-1 Security update for MozillaFirefox

This update for MozillaFirefox to version 60.7.1 fixes the following issues: Security issue fixed: - CVE-2019-11707: Fixed a type confusion vulnerability in Arrary.pop bsc1138614 Other issues addressed: - Added the new Mozilla's GPG key expiring on 2021-05-29 to the mozilla.keyring file - Fixed...

SUSE-RU-2019:1625-1 Recommended update for MozillaFirefox

This update for MozillaFirefox to version 60.7.1 fixes the following issues: Security issue fixed: - CVE-2019-11707: Fixed a type confusion vulnerability in Arrary.pop bsc1138614 Other issue addressed: - Fixed broken language plugins bsc1137792...

SUSE-SU-2019:1600-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issue: Security issue fixed: - CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375...

Plurox: Modular backdoor

In February this year, a curious backdoor passed across our virtual desk. The analysis showed the malware to have a few quite unpleasant features. It can spread itself over a local network via an exploit, provide access to the attacked network, and install miners and other malicious software on...

SUSE SLES12 Security Update : gstreamer-plugins-base (SUSE-SU-2019:1509-1)

This update for gstreamer-plugins-base fixes the following issue : Security issue fixed : CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...

Fedora 29 : containernetworking-plugins (2019-24217abfdf)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

SUSE SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2019:1508-1)

This update for gstreamer-010-plugins-base fixes the following issue: Security issue fixed : CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

Terminus - A Terminal For A More Modern Age

Terminus is a highly configurable terminal emulator for Windows, macOS and Linux Theming and color schemes Fully configurable shortcuts Split panes Remembers your tabs PowerShell and PS Core, WSL, Git-Bash, Cygwin, Cmder and CMD support Integrated SSH client and connection manager Full Unicode...

[SECURITY] Fedora 29 Update: containernetworking-plugins-0.7.5-1.fc29

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

Fedora Update for containernetworking-plugins FEDORA-2019-24217abfdf

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2019:1509-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issue: Security issue fixed: - CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375...

[SECURITY] Fedora 30 Update: dovecot-2.3.6-3.fc30

Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plug-ins are in their subpackages...

Fedora 30 : containernetworking-plugins (2019-d2b57d3b19)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

Fedora Update for containernetworking-plugins FEDORA-2019-d2b57d3b19

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: containernetworking-plugins-0.7.5-1.fc30

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

SUSE SLES11 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2019:14076-1)

This update for gstreamer-010-plugins-base fixes the following issues : Security issues fixed : CVE-2017-5837: Fixed a floating point exception in gstriffcreateaudiocaps bsc1024076. CVE-2017-5844: Fixed a floating point exception in gstriffcreateaudiocaps bsc1024079. CVE-2019-9928: Fixed a...