No Image

RHSA-2017:1233-1: Important: kernel security update

2017-05-17 KENNETH 0

RHSA-2017:1233-1: Important: kernel security update Red Hat Enterprise Linux: An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-2636 Source: RHSA-2017:1233-1: Important: kernel security update

No Image

RHSA-2017:1232-1: Important: kernel security update

2017-05-17 KENNETH 0

RHSA-2017:1232-1: Important: kernel security update Red Hat Enterprise Linux: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support and Red Hat Enterprise Linux 6.5 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-2636 Source: RHSA-2017:1232-1: Important: kernel security update

No Image

RHBA-2017:1231-1: rh-eclipse46 bug fix update

2017-05-17 KENNETH 0

RHBA-2017:1231-1: rh-eclipse46 bug fix update Red Hat Enterprise Linux: Updated rh-eclipse46 packages that fix several bugs are now available for Red Hat Software Collections. Source: RHBA-2017:1231-1: rh-eclipse46 bug fix update

No Image

Extending Microsoft Edge Bounty Program

2017-05-17 KENNETH 0

Extending Microsoft Edge Bounty Program Over the past 10 months, we’ve paid out more than $200,000 USD in bounties to researchers reporting vulnerabilities through the Microsoft Edge Bounty Program. Partnering with the research community has helped improve Microsoft Edge security, and to continue this collaboration, today we’re extending the end date of the Edge on Windows Insider Preview (WIP) bounty program to June 30, 2017. Details on what the program includes are noted in this TechNet post, and information on Microsoft Bounty Programs can be found at https://aka.ms/BugBounty.  – MSRC and the Microsoft Edge teams Source: Extending Microsoft Edge Bounty Program

No Image

WordPress 4.7.5 Security and Maintenance Release

2017-05-17 KENNETH 0

WordPress 4.7.5 Security and Maintenance Release WordPress 4.7.5 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.4 and earlier are affected by six security issues: Insufficient redirect validation in the HTTP class. Reported by Ronni Skansing. Improper handling of post meta data values in the XML-RPC API. Reported by Sam Thomas. Lack of capability checks for post meta data in the XML-RPC API. Reported by Ben Bidner of the WordPress Security Team. A Cross Site Request Forgery (CRSF)  vulnerability was discovered in the filesystem credentials dialog. Reported by Yorick Koster. A cross-site scripting (XSS) vulnerability was discovered when attempting to upload very large files. Reported by Ronni Skansing. A cross-site scripting (XSS) vulnerability was discovered related to the Customizer. Reported by Weston Ruter of the WordPress Security Team. Thank [ more… ]