Azure File Sync Agent v9.0 Release – November 2019 (KB4522359)

Update for Azure File Sync agent version 9.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v9.0 Release – November 2019 (KB4522359)

Update for Azure File Sync agent version 9.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

UBUNTU-CVE-2019-19064

A memory leak in the fsllpspiprobe function in drivers/spi/spi-fsl-lpspi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption by triggering pmruntimegetsync failures, aka CID-057b8945f78f. NOTE: third parties dispute the relevance of this because a...

Azure File Sync Agent v8.0 Release – October 2019 (KB4511224)

Update for Azure File Sync agent version 8.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v8.0 Release – October 2019 (KB4511224)

Update for Azure File Sync agent version 8.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v8.0 Release – October 2019 (KB4511224)

Update for Azure File Sync agent version 8.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

WordPress iThemes Sync plugin <= 2.0.17 - Insufficient Secure Key Validation vulnerability

Insufficient Secure Key Validation vulnerability found in WordPress iThemes Sync plugin versions = 2.0.17. Solution Update the WordPress iThemes Sync plugin to the latest available version at least 2.0.18...

iThemes Sync <= 2.0.17 - Insufficient Secure Key Validation

iThemes Sync allows users to manage multiple websites from a single dashboard. This vulnerability, affecting secret key validation, could lead to full compromise of a WordPress site...

Azure File Sync Agent v8 Release – October 2019

Azure File Sync Agent v8 Release – October 2019 Introduction This article describes the improvements and issues that are fixed in the Azure File Sync Agent v8 release that is dated October 2019. Additionally, this article contains installation instructions for the update. Improvements and issues...

Azure File Sync Agent v7 Release – June 2019

Azure File Sync Agent v7 Release – June 2019 Introduction This article describes the improvements and issues that are fixed in the Azure File Sync Agent v7 release that is dated June 2019. Additionally, this article contains installation instructions for the update. Improvements and issues that a...

Security update for MozillaFirefox (important)

openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2019:2260-1 Rating: important References: 1109465 1117473 1123482 1124525 1133810 1138688 1140868 1141322 1145665 1149292 1149293 1149294 1149295 1149296 1149297 1149298 1149299 1149302 1149303 1149304 11493...

Security update for MozillaFirefox (important)

openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2019:2251-1 Rating: important References: 1109465 1117473 1123482 1124525 1133810 1138688 1140868 1141322 1145665 1149292 1149293 1149294 1149295 1149296 1149297 1149298 1149299 1149302 1149303 1149304 11493...

The vulnerability of the fly-admin-date component in the FLY operating system environment of Astra Linux, due to insufficient input data validation, allows a hacker to trigger a service failure.

The vulnerability of the fly-admin-date component in the FLY environment of the Astra Linux operating system is related to a calendar synchronization error due to ntp. Exploiting this vulnerability allows a remote attacker to cause service failures...

Mozilla: Sandbox escape through Firefox Sync

Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then synchronized to the...

Mozilla: Sandbox escape through Firefox Sync

Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then synchronized to the...

Design/Logic Flaw

In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9444

In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9444

In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9444

CVE-2019-9444 affects the Android kernel’s sync debugfs driver, where a kernel pointer leak occurs due to using printf with %p. This leads to potential local information disclosure with system privileges required for exploitation. The vulnerability can be triggered locally, and user interaction i...

(Pwn2Own) Mozilla Firefox sync Universal Cross-Site Scripting Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape the sandbox on affected installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists due to a universal cross-site...