Advisory: security controls configured in php.ini could be bypassed on Linux

Posted by Imre Rad on May 20″PHP is a popular general-purpose scripting language that is
especially suited to web development."

PHP has deployed several features over the years that are prone to
incorrect architectural decisions (safe mode
https://www.php.net/manual/en/features.safe-mode.php or open_basedir
http://news.php.net/php.internals/105606), to have unexpected security
implications (register globals
https://www.php.net/manual/en/security.globals.php), or…

Link: https://seclists.org/bugtraq/2019/May/52

WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003

Posted by Michael Catanzaro on May 20————————————————————————
WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003
————————————————————————

Date reported : May 20, 2019
Advisory ID : WSA-2019-0003
WebKitGTK Advisory URL :
https://webkitgtk.org/security/WSA-2019-0003.html
WPE WebKit Advisory URL :
https://wpewebkit.org/security/WSA-2019-0003.html
CVE identifiers : CVE-2019-6237,…

Link: https://seclists.org/bugtraq/2019/May/53