Hacker News new | comments | show | ask | jobs | submit | from login

[RT-SA-2017-013] Truncation of SAML Attributes in Shibboleth 2 (seclists.org) 1 point by based2 21 hours ago | past | web | discuss Libreoffice remote arbitrary file disclosure (seclists.org) 1 point by based2 21 hours ago | past | web | discuss GNU Wget Cookie Injection [CVE-2018-0494] (seclists.org) 1 point by based2 21 hours ago | past | web | discuss DSA-2018-107: RSA Authentication Manager Cross-Site Scripting Vulnerabilities (seclists.org) 2 points by based2 21 hours ago | past | web | discuss Confirmed: Speculative register leakage from lazy FPU context switching (seclists.org) 5 points by tempodox 10 days ago | past | web | discuss Confirmed: Speculative register leakage from lazy FPU context switching (seclists.org) 3 points by hlandau 10 days ago | past | web | discuss GNU Wget Cookie Injection [CVE-2018-0494] (seclists.org) 1 point by vuln 46 days ago | past | web Skype's home-grown updater allows escalation of privilege to SYSTEM (seclists.org) 2 points by dsr12 4 months ago | past | web [SECURITY ADVISORY] curl: HTTP authentication leak in redirects (seclists.org) 2 points by bauc 4 months ago | past | web AMD PSP: Firmware TPM Remote Code Execution via Crafted EK Certificate (seclists.org) 243 points by transpute 5 months ago | past | web | 90 comments Palo Alto Networks remote root code execution (seclists.org) 5 points by pjf 6 months ago | past | web Golang invalid modular exponentiation result (Exp() in math/big pkg) (seclists.org) 2 points by bradfordboyle 7 months ago | past | web Qualys Security Advisory – Linux PIE/stack Corruption (CVE-2017-1000253) (seclists.org) 4 points by QUFB 9 months ago | past | web | 1 comment Git Cvsserver OS Command Injection (seclists.org) 1 point by ABS 9 months ago | past | web Hyenas of the Security Industry (seclists.org) 2 points by StreamBright 9 months ago | past | web | 1 comment Emacs upto25.2 enriched text / MIME remote code execution (seclists.org) 4 points by unhammer 9 months ago | past | web Nmap 7.60 released SSH support, SMB2/SMB3 improvements (seclists.org) 1 point by mohdasim 9 months ago | past | web FreeBSD 7.0 to 10.3 jail SHM hole (seclists.org) 2 points by protomyth 10 months ago | past | web CVE-2017-1000082 assigned to systemd, despite Pottering's objection (seclists.org) 17 points by alexforster 11 months ago | past | web | 3 comments [CVE-2017-5868] OpenVPN Access Server: CRLF Injection with Session Fixation (seclists.org) 3 points by zspitzer on May 24, 2017 | past | web | 1 comment ChromeBooks Persist Network Settings in Guest Mode (seclists.org) 3 points by nwcs on May 10, 2017 | past | web Multiple Vulnerabilities in ASUS Routers (seclists.org) 91 points by nwcs on May 10, 2017 | past | web | 40 comments TLS verification vulnerability in LibreSSL 2.5.1-2.5.3 (seclists.org) 99 points by liuw on May 5, 2017 | past | web | 37 comments TLS verification vulnerability in LibreSSL 2.5.1 – 2.5.3 (seclists.org) 10 points by QUFB on Apr 27, 2017 | past | web Linux NULL pointer dereference due to incorrect proto_ops initializations (seclists.org) 1 point by ghosh on Apr 9, 2017 | past | web MS way (47): AppLocker bypasses are not serviced via monthly security roll-ups (seclists.org) 2 points by based2 on Mar 25, 2017 | past | web Adium vulnerable to remote code execution via libpurple (seclists.org) 3 points by Aaronn on Mar 21, 2017 | past | web TS Session Hijacking / Privilege escalation all windows versions (seclists.org) 1 point by based2 on Mar 18, 2017 | past | web CVE-2016-9892 – Remote Code Execution as Root via ESET Endpoint Antivirus 6 (seclists.org) 4 points by ghosh on Mar 2, 2017 | past | web CVE-2016-9892 – Remote Code Execution as Root via ESET Endpoint Antivirus 6 (seclists.org) 3 points by r721 on Feb 27, 2017 | past | web More

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact Search: