Hacker News new | comments | ask | show | jobs | submit | from login

CVE-2019-5736: runc container breakout (seclists.org) 239 points by afshinmeh 4 days ago | past | web | 95 comments System Down: A systemd-journald exploit (seclists.org) 1 point by tjRonnh 37 days ago | past | web System Down: A systemd-journald exploit (seclists.org) 2 points by badrabbit 37 days ago | past | web System Down: A systemd-journald exploit (seclists.org) 9 points by ciupicri 37 days ago | past | web Asserts considered harmful (or GMP spills its sensitive information) (seclists.org) 2 points by MrXOR 42 days ago | past | web | 1 comment Apache CouchDB CVE-2018-17188: Remote Privilege Escalations ( (seclists.org) 1 point by based2 47 days ago | past | web CVE-2018-11799 Apache Oozie security vulnerability (seclists.org) 1 point by based2 47 days ago | past | web CVE-2018-17191 Apache NetBeans 9.0 Proxy Auto-Configuration Interpretation RCE (seclists.org) 2 points by based2 47 days ago | past | web New side-channel vulnerability on Intel CPUs with SMT/Hyper-Threading (seclists.org) 4 points by fdm 3 months ago | past | web CVE-2018-5407: side-channel vulnerability on SMT/Hyper-Threading architectures (seclists.org) 9 points by rixrax 3 months ago | past | web GCC Compiler Induced Vulnerability (seclists.org) 4 points by ymse 3 months ago | past | web Travis CI MITM RCE (seclists.org) 1 point by Mizza 5 months ago | past | web Travis CI man-in-the-middle remote code execution (seclists.org) 3 points by brentjanderson 5 months ago | past | web Many more Ghostscript security vulnerabilities (seclists.org) 2 points by fanf2 5 months ago | past | web CVE-2018-11769: Apache CouchDB Remote Code Execution ( Versions 1.x and ≤2.1.2) (seclists.org) 15 points by based2 5 months ago | past | web | 2 comments OpenSSH Username Enumeration (seclists.org) 2 points by CogPrime 6 months ago | past | web OpenSSH Username Enumeration (seclists.org) 9 points by cytzol 6 months ago | past | web | 1 comment KVM L1 guest escape – CVE-2018-12904 (seclists.org) 1 point by ymse 7 months ago | past | web [RT-SA-2017-013] Truncation of SAML Attributes in Shibboleth 2 (seclists.org) 1 point by based2 7 months ago | past | web Libreoffice remote arbitrary file disclosure (seclists.org) 1 point by based2 7 months ago | past | web GNU Wget Cookie Injection [CVE-2018-0494] (seclists.org) 1 point by based2 7 months ago | past | web DSA-2018-107: RSA Authentication Manager Cross-Site Scripting Vulnerabilities (seclists.org) 2 points by based2 7 months ago | past | web Confirmed: Speculative register leakage from lazy FPU context switching (seclists.org) 5 points by tempodox 8 months ago | past | web Confirmed: Speculative register leakage from lazy FPU context switching (seclists.org) 3 points by hlandau 8 months ago | past | web GNU Wget Cookie Injection [CVE-2018-0494] (seclists.org) 1 point by vuln 9 months ago | past | web Skype's home-grown updater allows escalation of privilege to SYSTEM (seclists.org) 2 points by dsr12 12 months ago | past | web [SECURITY ADVISORY] curl: HTTP authentication leak in redirects (seclists.org) 2 points by bauc on Jan 25, 2018 | past | web AMD PSP: Firmware TPM Remote Code Execution via Crafted EK Certificate (seclists.org) 243 points by transpute on Jan 5, 2018 | past | web | 90 comments Palo Alto Networks remote root code execution (seclists.org) 5 points by pjf on Dec 13, 2017 | past | web Golang invalid modular exponentiation result (Exp() in math/big pkg) (seclists.org) 2 points by bradfordboyle on Nov 25, 2017 | past | web More

Applications are open for YC Summer 2019 Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact Search: