[SECURITY] [DSA 4297-1] chromium-browser security update

Posted by Michael Gilbert on Sep 18————————————————————————-
Debian Security Advisory DSA-4297-1 security () debian org
https://www.debian.org/security/ Michael Gilbert
September 19, 2018 https://www.debian.org/security/faq
————————————————————————-

Package : chromium-browser

Two vulnerabilities have been discovered…

Link: http://seclists.org/bugtraq/2018/Sep/47

SEC Consult SA-20180918-0 :: Remote Code Execution via PHP unserialize in Moodle open-source learning platform

Posted by SEC Consult Vulnerability Lab on Sep 18SEC Consult Vulnerability Lab Security Advisory < 20180918-0 >
=======================================================================
title: Remote Code Execution via PHP unserialize
product: Moodle – Open-source learning platform
vulnerable version: 3.5 to 3.5.1, 3.4 to 3.4.4, 3.1 to 3.1.13 and
earlier unsupported versions
fixed version: 3.5.2, 3.4.5, 3.3.8 and 3.1.14
CVE…

Link: http://seclists.org/bugtraq/2018/Sep/45

Authentication bypass vulnerability in Western Digital My Cloud allows escalation to admin privileges

Posted by Securify B.V. on Sep 18————————————————————————
Authentication bypass vulnerability in Western Digital My Cloud allows
escalation to admin privileges
————————————————————————
Remco Vermeulen, September 2018

————————————————————————
Abstract
————————————————————————
It was…

Link: http://seclists.org/bugtraq/2018/Sep/46