Several vulnerabilities were discovered in libextractor which may lead to denial of service or memory disclosure if a malformed OLE file is processed (CVE-2018-20430, CVE-2018-20431). References:
An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer (CVE-2018-19787).
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. (CVE-2018-19149) References:
Graphicsmagick has been updated to fix several bugs and security issues. References: - https://bugs.mageia.org/show_bug.cgi?id=23157 - http://www.graphicsmagick.org/NEWS.html#november-17-2018
Possible denial of service vulnerability due to a missing check in Lib/wave.py to verify that at least one channel is provided (CVE-2017-18207). Python's elementtree C accelerator failed to initialise Expat's hash
Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file. (CVE-2018-12900)
keepalived before version 2.0.9 didn't check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats. This allowed local users to overwrite arbitrary files if fs.protected_symlinks is set to 0, as demonstrated by a symlink from /tmp/keepalived.data or /tmp/keepalived.stats to /etc/passwd
Fixed a stack-based buffer over-read in the print_prefix function (CVE-2018-19519). References: - https://bugs.mageia.org/show_bug.cgi?id=24077
A flaw was found in the i18n gem before 0.8.0 for Ruby. The Hash#slice in lib/i18n/core_ext/hash.rb allows remote attackers to cause a denial of service (application crash) via a call in a situation where :some_key is present in keep_keys but not present in the hash (CVE-2014-10077).
A security issue fixed upstream in sqlite3 has been announced: https://www.openwall.com/lists/oss-security/2018/12/21/1 The issue is fixed in 3.25.3. References:
There is a use-after-free in monit that shows up if you run it for a while on an active system with address sanitizer enabled. References: - https://bugs.mageia.org/show_bug.cgi?id=24049
The updated packages fix several bugs and some security issues. References: - https://bugs.mageia.org/show_bug.cgi?id=24041 - https://www.thunderbird.net/en-US/thunderbird/60.4.0/releasenotes/
This kernel update is based on the upstream 4.14.89 and fixes atleast the following security issues: Cross-hyperthread Spectre v2 mitigation is now provided by the Single Thread Indirect Branch Predictors (STIBP) support. Note that STIBP also
handler/ssl/OpenSslEngine.java in Netty before 4.0.37.Final allows remote attackers to cause a denial of service (infinite loop) (CVE-2016-4970). References: - https://bugs.mageia.org/show_bug.cgi?id=23974
- XSS vulnerability in navigation tree was discovered - Local file inclusion through transformation feature References: - https://bugs.mageia.org/show_bug.cgi?id=24012
Bypassing disabled exec functions in PHP via imap_open (CVE-2018-19518). References: - https://bugs.mageia.org/show_bug.cgi?id=23945 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19518
Cache side-channel variant of the Bleichenbacher attack.(CVE-2018-12404) References: - https://bugs.mageia.org/show_bug.cgi?id=23972 -
A buffer overflow and out-of-bounds read can occur in TextureStorage11 within the ANGLE graphics library, used for WebGL content. This results in a potentially exploitable crash (CVE-2018-17466). A use-after-free vulnerability can occur after deleting a selection
It was discovered there is a NULL pointer dereference in the function WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead to a denial of service attack (CVE-2018-19208). References:
- Buffer overflow using computed size of canvas element. (CVE-2018-12359) - Use-after-free when using focus(). (CVE-2018-12360) - Integer overflow in SwizzleData. (CVE-2018-12361)
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
