Ubuntu Security Notice 3646-1 - It was discovered that PHP incorrectly handled opcache access controls when configured to use PHP-FPM. A local user could possibly use this issue to obtain sensitive information from another user's PHP applications. It was discovered that the PHP iconv stream filter incorrect handled certain invalid multibyte sequences. A remote attacker could possibly use this issue to cause PHP to hang, resulting in a denial of service. Various other issues were also addressed.
d594a2d9cf1e36fd38aaa3272f6437dc9d3b16a37c21f734d17412f2ed0403faMyBiz MyProcureNet version 5.0.0 suffers from remote file upload and cross site scripting vulnerabilities.
051be9c96f5fc1dcdd65d667cf867817b2d9754a57b28812ac9fe96bc7e1ca84xls2csv version 0.95 suffers from a buffer overflow vulnerability.
f45d12f58b5f2634c96e4424586f21106576dcbcdb8a998dd2f15d8c1ee79b1aGD bbPress versions 2.5 and below suffer from a cross site scripting vulnerability.
762ca6c77eae97f93338122f90650493b49e31676914a6b9bf03e787123f578aProjectPier versions 0.8.8 and below suffer from remote file inclusion, authentication bypass, remote shell upload, and remote SQL injection vulnerabilities.
7a13b186e33609dbaaf95ba6ece84bee3002a77278845c2990abfd1f456f1050Calamp.com suffers from an incorrect privilege assignment that could lead to full user compromise.
824272e7f985ec98cd3a26cb716b48ca74d30709f79f661b344df8e28f2034daVulnerabilities were identified in the IBM Flashsystem 840, IBM Flashsystem 900 and IBM Storwize V7000. They include cross site request forgery, arbitrary file read, unauthenticated access, and various other vulnerabilities.
d45e02ddefce4c928adb2f687a315a1468066a84c0e57d8b05416cacbbb35851
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed