DELTA 559800 0 26743 SVN† † "ƒU!”f—‚ì{„¡@€TW…æ|€h†„m”XƒS2739b88b-4b88-11eb-a4c0Gitea Team reports for release 1.13.1:

Hide private participation in Orgs

Fix escaping issue in diffurl>https://github.com/go-gitea/gitea/releases/tag/v1.13.1 ports/252310 2020-12-15 2020-12-31 † † † ƒ€†;†™E†;x^•ÓÁn›@àsûó%]0˜`E•â¨ª{°Yi"%êaÁƒ=ö²C‡%Žß>‹#×u ‡rBbvæÓüKû æT7\:˜ ï¸oEÑ9rûàð,°A-ÅØB¤"¨8©«Ï†¾¼•\ù·§P]ªQ–ü‚9.©àæþkp¨“ì2žÀwÛ´eI¡uP³¡âÏ´%KU÷…,ü¨,åürá×,—ïa¡÷{maJfÑžr<ü&J•öEY¥ãaQÒ‰t]×BÚ!PU›A;:u÷œ©!»=Ç\çËÖˆ^W^tm~ë\Û% ìóØålûQÒÓ‡JEq:¬wz‡+?£”†wµò¥úâ”ÛI<×²õ*ï.áóÊ Ü o°pðˆÂg˜¬‰Ò4‡1é~6ºtžS bGyÀ|qw3h¹]û=Ô5Ì´-¶xœaÜªð·*‹þçVYt;–-ÙÕ», 5ž0óm|œ…xìÓÿ7^©o÷}ŒÀ† † ƒ[€†;†™E†;x^]’AkÜ0…Ïé¯˜cÉ†’k„\ÚÒBséq,ÏZ“•%£{ëß'{!m}±‘žç}ïIW„çõ×ïw¤ÙœSb×’ôÕ°ÒÜ‹‘G¡©˜i§I}%/t‘|Ê](ùxûµNOøÒa®û)N®šÁ9*´<°f‚ØñÞgJušø‹¬ÄFgI©½C•^²+'£rÜ´=;wlB#gdÄö>ÝVs©ÍÍ&ýa_YÓóû¯&u‘JˆÖk•à ¦!H–@£ð©´(#¹KÍâT Îa‘D±˜Ãf7Àþ¹ÔÓ5ð0Ý•³µjB§$.˜^Å«Ê"×Z§õJ›ÙK¼ƒµVÈ.èÿ¶2¸¹ƒ¤5«ù^q‹[[„2g§›KÑºN¶*†²*cqÙ Bé‘÷·„yÓp{C!Í%ÌæeÄ.ˆ»v¸¿Ú÷ÓÃ‹SÄùt"Z(è³ÙDö†·÷Æ‰°¬G ;å(!"¾ÿ£ ’I.P\;E°ºRˆN6v¹ˆïÝî˜I[…@Z¶~há¤=m—ª•'ô±ÏqÈ¸5Ä3ÎëB¶õðñùÛãÓÍÏçÇÏŸ¡ß “ðF¸pÕ2ƒÀÃ `ÛÝEý”•"Û’à† † |€‚zA…Ÿ@€m …Á9€tv„É?†˜e`„[x^‘Ánƒ0DÏÍW ÞíµM!P¹\ªþBï³Ii‰A¶ƒÔ¿ï”J¹D¶difôv;Ea¡§èÂ0§aòÝ®àg)w·€£K»¯”æø pÒˆé¦3Dô$æ0}“Kp@÷C¾ ÐH)‚–J–ÊÂ:Ûåòx¦îýóCe”Ð¦©µ…[þ3™\™É½drU&Wgr•Ð{¾ýÝ´Pøý‡É'vWLUÂ4¶dkzL[+–ËÈ…rUÅ2ôoÏuëŽµÁF BZŠ–°*¹.áDS§WË÷fi! çx÷d7aùk#õõû‡í=ßÊæ¨>™€† † "ƒo!€E‚²@Ÿv¿?…j…¾]€‚;Z»}†™1ƒm 2020-04-02 cacti -- mcacti 1.2.10The C10">
When guest users have access to realtime graphs, remote code could be executed (CVE-2020-8813).

Lack of escaping on some pages can lead to XSS exposure (CVE-2020-7106).

Remote Code Execution due to input validation failure in Performance Boost Debug Log (CVE-2020-7237)Ÿ † † ƒ8€…,Z…ê@µ†™E…ax^uRMoÔ0=Ó_1Ç]©Iºí Ä¥ªV.'ö$k3t»2Ïþû¥À† † ƒQ€†;†™E†;x^mSÁnA=ÃWø˜Hi •U•JU¤*H qàR9OvÔÙõ2ãÉ¾{&9pÙl,¿ç÷ž½‚Àb!.oßŒw¯_ÜŽwkJ[Jœáóæ„ Å#”L;;ŽŠ•\Iq ÷1óÎ8£À" JàÁxJ.•†} õ£(!»Æ\ 3¥¥Ò¡èƒ™‹A¹ CS3&:.úš3»Ðø |iâáÇãÕêíõ‡«›wïWac^r¯óaÙ½äð‡ #a[¼§¬S}äé‚"†ÙÇƒ`lôÿ ¾Î¤4Å3ñ2>'rô<¢{!™ÍçÍ×©œa‡‚à÷ÊÝ$VûKxpx¢r¦Z!kœÍ[N6qGK¨f<§Z<©K¨¬‚-›Fe µ»Ê˜0·ä…Ag°®Šô*–°éJ^ÔfónÉ×þ>ì;iDf~JA¨vÕXzê9mÑJ£2omf³uî¦ÓFq2@½Ia¿§¤ à+è"ývº€¾Þ?¬«!.òÏÓ§/ëïO?GÛÀ&==ô\®‹?§qs½RY¢é›ÿD¿ e½ÃFvÒ[G·£[¶‘õ;¨eúýá´ù«à† † -,ŠAƒµ?€z{ƒ×<…ZƒØ:OƒÙ^ƒÚeƒÛD†™ %E-2019-9943-13 2019-07-12 ÿ£¼þ¤éÉ™–› É+Ö‰ó‹>ý—Ÿn¤ù:Äà† † ‚E€†;†™E†;x^•’ÑJÃ0†¯õ)Î¥^T›´I»1D¢¸É`UŠé–ÚãÚ¤¤ëæÞÞL…1Ô¹8áûþŸ£€ú$öüÐ£¼wZàÙáØÓ³¯ç8èÄ”¾ÀœaSBÿñÊûæ„û]x¡®´Îôs£K ZŽ’ËJ›…œAº¹DRú`ç.±ÀÔ^Hä´1¸XÃ½åæÓ—³-Ês;.$b5øj*]àtm‰•¨ëÓD¦Íõ®Îm£` çbQ7pt^ç¹z›oF-?$4p:Ð.ÜHQAÚd™4 —Òd…^}ã¯‡»ìQ)ÐlYÄ£¤Å ;¶u'+øÑù¨T˜ê÷]Ä ð”…[w5ÆQÌ¤ðfi–8•mæÒìU¯qDŽ"âŽÌþyŸüö’3ÆB'ÿNÿ[ô!Ë€† † ƒ €q-„Ñp€„†™E…x^•RËnÛ0<×_±è¹-+QlƒÐÅè±=Hz(‚bM-%Â©’TPçë»zmz!€Úåhfv¨ ð’ª¶To`.öT«.øÞŒ½s¹tŒ“6ÕU•oó²¼?äEy‚;R,§TŠ8¥@I¥ÈÅˆ Ï–2Õ¡sd³qh0Q¦}ÈŠ—ä‡Ÿ»*ïRo?®¢“Áº„Hj&]A›ßÁ8H‰ÈF:²â_ühëÍÖÔ?öeq¨Êg8ñ·F¡…ÓÓçl·-öYUû#_Y&6´úÄ c¸AZBª‹Èª‚Ë503L¯“c)U9¤[È¸Ôy¡w»}¨ømbÙNô}'è£æ“É>ÿ%®¦RòªIÜé…„‘VK&P4 …„}?ìB<ÃPŠE Õ÷ˆJÉY¶5DI«s†b®a¦A0E‘™ÇÌ5k Mÿ–áôË0MyNgvOãªRšÄ¦ã]±wZ3)š~b$³¥PÑË,Òi/Ò\Òi9ÖãR°¹iB÷Ê‡—ìÿ†~H¢NÈáVTæ\XÆöÆ*£%ï°fõpS£”c˜œ£:˜6Ùè<ùåmËnÍ4 ¼¨ó~<ÿ±+Þ×À† † ‚j€‚K]°€‚'T…Þ3˜†™E… x^‘MNÃ0…÷œÂbi~jšVŠºA\mäÚ“Æ"±#Ï¤m8=ã´U+^ÙÏßÌ{c7Nõ ûA4¶ƒ¸Ga „QÐ{W³NêÎ"±DJ …QÓ@<]Èú9®mF§Éz›°öa¡Ÿ…rF¨½0ž)çI¨aè¦¹•³d¿ µ(†à ÎM8YË—Øò"Þž6~ävìðxŠŸ»Îñ1F³nwÁ”©9Õl_+¢ð# NNsºqln9`lÃU='Ì+ý \Ãæ»iPŸ†ÀàY´Œh´œâÂÀÎ*·ðaŸ"è1XšÒ"ËËÔ Jd¶ZWéºíƒ˜W¥ó{oß>Þ“ˆ%ùêU2sÕÿæJ¹\þ““¿¹&ìÐa;ø@˜…”eY¥7}&«4@zQøû¯ûx²¨=ï´=»lX¥7õÊ£;¦ÈŒYI¹YÉò’<‡2Yg›2ùfÔÈÝà† † ‚o€‚1V‚û>€ƒ4†™E…ex^ÏnÜ ÆÏÍSÌ$°ØÆªíFQÛC½E¹lŒîÛ×Nv«^6ê¡`fÄ÷›o†\ £Y’£3˜Q¾ûû‰0¥˜` ä<Ðˆ`”÷˜ G„y/MìÈçÓ®8Î§'ïaÅ”]¢…Ÿ?žá5i sr‡â¦pÌ¨Â€0©ó…Êœ)¦Kç«‘?ÀË•+˜(Yµ‘R\†ñ=mî÷·bâZ¾€ÞŠòTè÷Xþ’ÛïÝ‚ò9^}¸àÈ©ÍÈ]äÏœ‡µgÁebC\ùºøÀ{$å<ÿúòý¡8ˆæAˆ²n|Iþt÷&‡ãDóØVÒãÊ&Gû…'âÏÎ¼"ño.Ï^ÙH“tý—VvÝmÌàh\43qÚ‰òýÚ²ËÕ¥ÔJ™ºk…í°íDe[[jkû²±E[é ÞnÓÿeÊª.þÏ”,ë£)em-´é¤*T‰¨«â€‡ºÃ¦–ÒjÑ Õ£ü ÔYê`ä€† † ‚c€‚9v‚š@€{V‚Ò»†™E„ox^Q»rÂ0¬ÃWÜÐñ F¸I&“I›‘ä3hP,£“Ìäïs©2QuZíÞÞžÔV#à#EÀ¶i@jou¾Y2¾Çð]Í§³u1-‹ÙJŠzãas6R\‘ÁåÞTŠ>¹¶å2WÐÛz7.qu]×E¹X°z†ë¢\›B/7P7¨šñÐ+úÎšÊYM>uP@Q™#hEXƒN Ç<[ãüYŠ+ûªTüfâ#[Ç:µçM<ÉVñF†žR\nŒÕò³t±šOžç“ùçìÝk«^:Ç>;"m¥è2_;oŽ§ä#‚±wãCŒÝVBã,Ešø°ž¨`@ä]‰ÓB,¦KŽö”ç¹§²”È`vÑƒú+fV¨xaœØB"ÛîÁR{d:¯¯˜ÀîU¨o`°»Ê5fIÊí9!ûaè³Gž?ó9¤HÁÝ×kz¼,òåã³ÏÃê † † %‚S$€eA@°A@ˆkA@ˆJy€OA@°A@†™5‚Qpic> postgresql92-client 9.2.09.2.203-client 9.3.09.3.164-clientclient 9.5.09.5.66-client postgresql92-server 9.2.09.2.203-server 9.3.09.3.16ðÀ† † "ƒK! N„>¼d¦/€iJ„ô€bvƒü€"†™EƒInds on the host operating systemurl>https://sourceforge.net/p/nfsen/mailman/message/356238457 chromiumchromium chromium-npapi chromium-pulse 56.0.2924.76Google Chrome Releases reports:

51 security fiöà† † ‚u€„6L¥?» Š†™6„qx^}QËjã@ˆÙo)„¬ú0+¹s¬ j`@ýƒ²þIàLxÆw£Q…©®„‘‹ÄÅ{ú2·ô¯–¨î”×Âª„ªúnÇ–õh!ýÆ‡Ipõa-‘è¶Vb—íñxìzgŽû¶×M‘yHcÂþïùW{xÞvÂÖ³Œ]ó˜ý$Ú"ý€† † ‚@b„æ@€‚VWƒÎ:€Gx‹{†™2„x^‘AOÃ0…ÏìWX»¯Ù:¦±)TB°Ä=MÝÕ¢m‚ã®ôß“vlhWrrž>¿g'>{òÆVŒÞ±„½V>›Ýé¼vöó«s‚`Iðq^‰ø½R}ß'ÎcëÊ’,&Ž* í˜dPö„A=éru¿Xo¶›¤’¦žG?í³÷ƒßÞ…Ž§¢v$$ª½àíõžñDØ0‘8b‹l7:`“Ç›áœ„ PRP1@80„4x^uQMkã0='¿bè¥Ýƒl+_ë!è²´ä°°=í%ÈòÈQ$#)Iýï;î†ô´Ác4óÞ›§?=B‹F]†ãÉ¦dƒ‡„ššÔZŸ²rî©þ7ˆq>»öèAolwŽÖw`ÎÎAkÓÐë8[øûº› ‡a@_ˆró™è¹Ü¥ó³( Se/à‚VTÎJ1ÂI‘:‚jtäG‘à0B0Ét‡Î’©ùlˆáb[Œ Ž8K×Þê~’žH''jš6ö •ÖŒ¯øZ”ú‚^PÎáóiã¤äþ…ñõsU_ˆòëùs@” FZÓÒ’XºÓQ:\0ŽrQñ5«V¬ª”ÁºYlÙ† ã7Lmô’ü´ ·í‚WMýp#Ëa°Z¾’èýO`v>cGÑLœÆ…+ýìÞ~ýJ e‡R¸,yUðÃV”É¦òT¦˜ÿAw[,ï½„|ùÿÞºXÝ{ ß?#Å±¶‰À† † ƒ@€cV~€‚*J„Ý{±v…øg„Ø9†™Eƒ>S stripping attack if the client code does not explicitly check the response code for startTLSs://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-0772 CVE-2016-0772 2016-06-14 2016-07-03 phpMyAdminphpmyadmin 4.6.04.6.3à† † ƒ€„R\å@€ †™E…_x^‘QoÓ0…Ÿ×_qÄÓxHÒuiVPUiTRÑD{¾u®'¶ì›´ã×ãTôa~ò•ÎùÎ±oY½YM®–~µ}ØÝc6½©²ÛwØš¨ØZêØõ-·.¼ ’fyAC?(Ô×ax_VùÅä ‡y~ƒb¼Ý.òÅÛeáÿ%—3|œ‘™Ì ®Æ¾×šÜÀA[wi¦ÃŽÃ`ãÙ…ïâ%Z‰[GŸ5û(t`Ì¡4#q½ù¼†Ó:²\dÍ±Þ=¡sòÞ®!>q""w8moÅx Rœ²Öœ¸Î{KŠ/A+l,$Æu)>˜ÁX>ðošj‚k9ÚÇ¼÷5 ãþéãøŒ#ïÁ'á.&óÅÆwx&ROÓ dMGŠÍ–ŽTÊ£OY}”ôaµkÉt±Êf‹i¹,TÒQË« Îgùk^Ûdç¼$›¿NV½Nv÷¿ì'ñeá–€† † r€†;†™E†;x^ÑÑjÂ0àk}Šs¹Áj›Ø¬ ”@«"Â”aÅAïB=u©¡Q÷úËØ†©$W¹8ùþäÓE¾œmfkØ)c°>;¨;i>GðTœ÷@HÂésj‘…%†°+³»L‹¯VËÀž hDXÇ?S¿vD‹-vêC^u@Ð²3øg£¹ê)ÿ âÄœ u¹}pý±Ÿúê¨ùª\@²ÝÁ¼\Ú“pûžøe$n†©ÑúwÝÈ±Ÿœ:òªÈû;I óSù]Óoý(å^(‹´RûªÉ{ùÙÄ±ËV5mµ¿á”úý£ý 6ýàÜœ † † ƒ€M´)€zL—6’<µF¿Y…¾†™=ƒ763 CVE-2014-9764 2013-12-21 2016-01-22
Specific APL data could trigger an INSIST in apl_42.c¢À† † ƒA€†;†™E†;x^u’AkÛ@…Ïí¯˜›på{®/ 8(¤½•Õj$M³Ú;#ýûÎzeÇ—#÷í›÷>dÅa3…ÃDáÄaP€†rŠv@ñë°G{§ÐPB¯œ¸Ó DMî„I\0µ2ÈT_„„r_ÁOžÑÛâÄù*ì_ŸÅ”¾'p¢ôËÔ®Ã7‡„6úÏËæ<"²‚ïÑ¿Sì€ZpÅedÅ¨d3KjˆÎ^ Ç„bØX/n-8^‹KxžB5Ÿ„:¥hòz¹‰ñÊŽ†ä\ünrï&Áì¶|äJøÏjZ°#„,²©›ÝÆ`€»MW=îÆ§¬|Ÿ~¬~FïZn6Í9u¼½&[³1mZ“Ë4Ža)Ý',ð€Úgß@ï›ªÚ•ªßNdn6 ¼ú¨íÃ¨ö Î{1ç–BiYcàØe';Î¥@²Ù*øÝãº#-EüÖ%G™ç¾ø8jâ™¦ÀÝþp¼—7'¶Ñ»¶›Iûâ³úÿµFþ¼ `÷`Ä4žzR®`kx°‰s"Ó}hŠUA¦ýdêü“UsÑÀÒ@Á«iU;wYþ•‰ý÷æž¨à† † ƒ4€‚av‚¥€‚d†™E…Ex^]R±nÛ0ã¯8xi;H”“ÚqFC‚;:RÔI"L‘ y²à¥ßÞ£d%EP8>’ïßc¹þ¤Ø`@§1–R+Zë43Qû3†Ky[ìöÙn—wR|¢ë>tôïž)äÚåƒTŠóh]¹Ieªàlê§m¡«B5õCv\@ûÆŒw`†Þ8eûÑ*òáK*"èN¥y:åjk\+ÅÂ¸°«¦AMŸ÷”>©ËÍtªÇr‰.RÌ5cA9^”<Š|ÿ]Š4±Ä“Ãá¼ªL„€ƒ¥Ò¡Êz}z=±Cø´íˆ†G!¦iÊugT8åm@tèêÜ‡6OâOlIQ§z1“‰5‘f73Ô]–âh¬ŸòŽzË^Ý$ñå/‘=‰àX,ã[Ãü iâ.”Ï0«Þ³{ÚŽÑœ‘ âŸJD‹ud”µ—«ãÙê¸kùaË–®æ:ü°˜»/4 üñò _ÿ#~ãù½xßÇôWŽ5Ê…`Í3_¬üþFã»¯€† † ƒ€‚bvË€xN›†™E„wx^uRAnÛ0<Ç¯X(ÐC$J‚ÜZ£ AŽZ ÖäJ",“ ¹²ê¾¾dl'¹”§åpwfCß‹0¸åe7÷¹êÍƒÑ÷eUTuý]ŠÙí â‘ÂSGž¬¢pA4òµN7”;’?µUQn²¢ÉÊBŠôÚG–?÷ÔRœ‘‹Ê;©Çy´í*•©‚cÜk]7e¡Ëoe¶Ùb•%m²õ6òh¤FWe±Û®/\ì&£Z7‘5Ne ÉÁuÈ"HÌäqgFÃ')Î#çqì:RüapBµÇžÚÕ´x wâ,q‘—â ¯ml“#·U^çuõR>GÝVÿÅ½‹ºàiržÃSšØNí_gÇÊ0Ý¯æéNˆeYò«Lî|/a¬¦?)(ñÛu¼ §/Uñ4÷!·ê"ú¿Iû¶O§èÓjc{@P;& Éñ- dN<Â9ð@iàg”ýñüøÎî€]\Õð6"È_h pÌë¼MaHZ‘bgÓïù¯•cÄÇçµ † † ‚qœN´~€ƒvwÝ@€d†™E„vx^}RËnÂ0<ÃWXÜçA “KE=T=´åìØ°HìÔ þ¾6á!qèžÆ³³³ÖhwÚˆOÖ"ÜéÎÓ å€uÞ´ÕÁ¹Þ® 9]u‰6{¢àdIžf%I—žã„’88E—¢|Å:¨^¶8Nàr‘ç”ÜèÿdÅ“Œ Pì•ÌÝp|IËõæ\],Ò%Žö¦åž4#sëwZÈF‚¸JV8+)¹“×¿ÜWS2øVUÓ#Bƒ›Ùœ³&Í ’Âg”˜ÍYpKór•æ‹¢nÊÙÕËé^òª•µ aŒ´wX7¸Ö^ ‹0¤µÐIº’j`èûë ¿„Wï%£ÅhÇš¸{ÄÒ3~dûâ„^ÂQ2&;¡†©Ð¥«²¤Èd§z×k2Ðkãìš’>jëVóã¯×—6³x á>öÒ%– L)vHöÊ_Î„–ŒÛ’û–IE>¶»?´±¿T»À† † ƒ€ƒ N…Œ=€‚M†™E…mx^•RÍnÛ0>¯OÁÓN³•ÄÃ´®/C¯;Ãî²ÄÚBeQ¨¸yûQq² Ã`ÁÁï‡¢ðîÈ2^ÜT’fG(^~¸Œh-ÚÇ?p*.ÏO^gv&£Nf*o<ëì$“Y'Î Á“ÑþÏ_8ãKfL-|Ÿ]—7>G' †’"ŠOè).0œ\¢p‰u°ÑÈ' ŒW£§s-Ê-<ã¤“õ˜sãªu*>`Ò£óŽÏŸ`Eq,¬“ˆ&4´ÒnLX|¸0ýnB‰ª-¦ÞQÛ«8ÔÒ>ßˆQøuE`ÚÔ’9RÚÌÎÌ±b™yÐ /ô73¯@›IÍ¬Í«9aÐ_<5‡ÝþsÓí»^ÝÒwpYýèìðåxìö½ªá-]’ªj¾Wj]×·´†Tm³é_e4%IÐ«ZþèèiRøç,›}shvMBZ¦öL²åÁäJ"í½—äMFì¸±£ð,êzÌªëºãNý{ÿ?DüÁà† † 'ƒ&€acœ7€hJ„ü>ŸZƒæ~„Wƒè=\‚ö<”†™Eƒame>CVE-2015-3090 CVE-2015-3091 CVE-2015-3092 CVE-2015-3093 https://helpx.adobe.com/security/products/flash-player/apsb15-09.html3 mozillafirefox 38.08.0,55 È€† † ƒ'€„XNƒ¼~€†™E…mx^U’ÝnÛ0…¯×§à4qRÌÝ0ºaëÅn‡¡·´ÌDZlÉ#i·yû‰¶< ØüùxÄcbPžDC¼€z×Š š@(v0cº»([QOñ¢^ Ä¥žéïD¢Ð¡âž`È .¤I6ÒkP_zWÎ 7GÔms7Îš‡1?“Ð’â™ØD¹4ÞVvÐÙ€†Ä·E@•k¬ãåçW:9•=üòAJ^,aÆÐcÛ”¦¢x¸2®í3é3¥4( G+`AÁ™Œ¦ó¦Ñˆ¯÷Ô2c ePjCQ…ÓJioà|ŽÛ:ÖeÉ=:ÿ~íï/Ð‘!Rgý¯•lMÇ‘¢Ø°–VŸ²´ãã®Íj˜.!EHç¢`YÞ¾©Æ“šñô†¼î³$Æ³fúfŽ¹Ò‡+Yê¿9/Åžh1Šw3Eèôí÷÷ÝÃáXïuÝT[ø–ÓLÜŸ¼êø¥ªú Ù¬3çŸ‚äªiÜ'¾TÈÎ‡™¤z³¯…ôƒZžoÕ¡þt¬?ï½}Si¡6Ó™˜¢#)‘¼âåýx…ú'Î † † ƒ)€ƒ`‚Û€E@ä€?†™E…x^mQÍŽÓ0>Ó§í ¤¦IJ“-(TZqÙCW$®{BF8±e;éöí'e¹àKf&ßßØf¿ÃGÝ¼9ÎÛ™5¿ LÎY!Zð„zƒÕÜ]G Ï‘àçÓyé¿?WvÇ†Â„1XA`Œ¨~“e'£oâ2†àH1så±‹¤W~RL{Œ[¸ô4&’¢HC›Ì3¬0²a ’t¥Ê/ƒ‘….‹•‘È):½$2ÏŸ¿üc˜·pßj%ØnägVôZLf‚øÇ¥1r¼Ê•´AŠ)ñÃh–x|£ÿ 9`kH§mXõÀA–#pèÅ4u8™¸J´ÔãÌÖ×uÑäJÄq Ó–ÓLÞœú]ø˜ç¾wž´ÜÑNÙ!'ï1bþíñù!Ûå!+ëª*ù4¹Ø+;“¿¾ IPéVœ`ŽM¾Nþþ_ž™I'H•÷YY5ùëpA‰,F ©iòy2ãi“ÊT<ð§»º;î«YUÕâQÒ!ÃƒzŸŽu·?ªÃÝM+ZÇê¤ýäÐÜC–Áó×3ðhûÒÍÔÀ† † ƒ1€y]†ˆ2€0d×_…_Ù5v¢}†™; ƒ/ename>CVE-2014-0191 http://www.openwall.com/lists/oss-security/2014/05/06/4 https://git.gnome.org/browse/libxml2/tag/?id=CVE-2014-0191 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-01914-05-06 2015-07-15 OpenSSL -- NULL pointer dereference224.2MFSA 2013-116 JPEG information leak

MFSA 2013-105 Application Installation doorhanger persists on navigation

MFSA 20á€† † ‚€o\ƒnƒþl€‚K H†˜^g‚ > phpMyAdmin -- Global variable scope injection4.17.php">
The import.php script was vulnerable to GLOBALS variable injection. Therefore, an attacker could manipulate any configuration parameterç † † €.ƒA—/€Ou›†˜Mx}his vulnerability could cause issues like those described in Rails CVE-2013-0156. This vulnerability only affects puppet masters running Ruby 1.9.3 and high3 CVE-2013-1654 CVE-2013-1655íÀ† † 1P0¤^…“h‚^‚æv`…•&‚V‚è8cò_¤fóhi‚ê†™ 8O0,1 10.0.111141147.0 10.0.111óà† † ƒ'€pR‚r€ w„Å@€‚b†™E„rx^EQËnÜ0<'_AäÔ±e{³Ž‹ ´‡~CAËôZ°,©½ÛÍ×WÚl(ŠCÎŒØv“HxQê|>—Á¼½aœPÏ¥ç£â'I¯läRÆIÛª•mwiµŠi$&§)Þ2ÊGœo&j"¾tMUWEu(ªz·í›-j]ÐnÓuMuÑj]TUÝï÷Cõ|¨›‡[7ñÁè.“€¢äÞ#_@ûeA7ýKÔÄx×ª÷ÒwŽ#iù¤’é¾Ë|»ŸäØÌðƒçÙ;r0a„3i™PÓÉ~=N -¥tF&SLX-fKÀ@îdØ»…œÀ Ù`o)Bz“‰ K»™±6 |#`"£Iµ >éb½.§Ü"»Q|0"C¢ô4º²6Jì2Þy8ã%£éú€ÀÞKØÿÏ—Îãú€† † ƒ€ƒ?`…à@ªd‚Â€†™E„wx^]’ÁnÛ0†ÏËS9Ç‘í&R¨‚nréiv‰Ž‰Ú’&ÉÎüö“§‡éDŠÄÿýu„mo/R¸jõE^Z«>þô6(Žôºnbt/B˜5ãVõ!6Ôº²@çšp#„¦ˆÜ üÍZ<»|Ä¤«ÞÏ§¯§#xRÄi06rÍ #[¶„@ª÷G ¿®µ!6¡& €EáçûéhXÔÜR€h¡Ch48o¯»„¹rˆÉÐTô¤9qã]&ù†ó÷ã2ïàGãmmþ+læüaE¡TŠÂâÍ83îÞ]3†4JaLÐ:ê¬gi€þÂÑ£—ûEaV›…/iÞ'œðHo ¶SŠki3MA!0í#½ˆ¿k8ÏCz+…ÃîY 5ÁŽªÌG>ò·ó·¬Ì‹2Û•å~Ÿ¹d¢?;«Ó.HWsW~ÈŠRŠÏË¹K ØaJ¤úÖT«)œ"H_âuý¤÷ûËá¹ÈXRVTd)¨³ˆû/ÃÉ‘u¥ÿs÷“/_p½ßí›ÚNÈfÀÃ9¬§ù¸?¾üº¼Úl·—×ûíÍ7d7›Ýí÷dw_ecò'Ôõétª‚Å$UH}ý¾]Â\¯ÉÑ¥UNßÔÚø7…Ñ¹‚†À† † ‚^€…"vÓ£†™E…Ex^‘Árƒ †ÏÉS0¹#ŠšÚõ’öÚcqm˜ PÀ8yû¢1æÒC80Ëî7ÿ.û??0M³Ó¬HÐ¼‡z‹æÃîïãŠYñV>‡íŸÃ^žÂè?M§êSÖÇ1ái ¦'~°Ö¸@<ˆÁÉp%Í ©=áÖ7óR’Sè#“È,Èˆƒh~É´<Üãé%½0p×zž)-q–3òÈÞ9Ðae*œÅÝß2÷zoZÙIh'„âY‰‘5¹Ì²¶fä2(]o§pŠÐE¶o»<MQRŠ›×¢â*«(.ª²ÝÇZ™WånÑ ÆJQ+Ùx3X„1´Ô!Î$æJ]Q¼Ìˆ¸ˆ÷(4• eW¨“ üÕè¹)ÝTy×íX.Îü'š³a³IK?Fn–m˜ã:–™ 5MršÐïükô=9I‹L†ù#v‚›Øüü;˜?V~Ðp‚Œà† † ‚X€FFƒÑ~€{s™@€‚=X„²;¬†™E„*x^u‘OOÃ0ÅÏãSXœ@¢KË€!*!Äˆ+r·³–%#qËøöd Hˆ\?çýb½Ì.ÐUEeq]•³¢,Ï«Ks…³yÓ×G—–°fSãG”E–ˆñLXÐÛthjåqEõÑDGôÕÚI=Ÿ–g•Vù¤Õ^ÝQ3WÑ,ñ—ð]OôŽs –rØÔ¥VÝÝa.³ØÊàB‘Ö!JºÉ/lï7.˜å{„À°ÐíñBd}£Ô?M¡†Ú;šzeƒIcómÍÔ©l$'2Ésön·ç“ãú™LY>¡å œ¼D(&Ë‘Œ„œQhá1 }r}Çþ4'ÁÿºyÅ’Cõ-w ,µìÉþÀöFØöpl¡”¶5m„¢G7Ú[v# ø6Æáƒ‹8öËS3Ð.Õû×‡â¼¬Êâbv5×j”Çé£«_(²R‚“€† † ‚€†;†™E†;x^’ËNÃ0D÷|EÕ½ñ#/» Ù ~½×ÅjGŽÄßã*½ºïØ³nŠÎÝÃ!6€…£†y’¤WåÝóëb„DN[|“ÿÃXVæaUVçaMÆ³0Aò°¼EÆê2'BÂr"”Š¿Øúî-Æé„ñÙEœ_æGÎøÔÅÅs¼à9JÕÖ~\ÄÂÆÉ…”ª¡¤53¢(lÁ´¤•1²¦Ä¤6ë½røwçZ#ã]ÿŒ›µ_!|t_›H þ£Þ8ãCÓìÊõ–oÓ¯KŸú¾ÛtXy:Z^×†I‹”RQj,â’DáMY(Ë¨<^½¢Ÿœþˆ©æl‚™ † † ƒW€†;†™E†;x^MRÍnÛ0>wOÁ[7 Ë^ (P`;(†¢X±ã@K´ML–‘Jæ=ýH;i“‹#Qüøýðì‡)•ç L¸t.Ô@„†£Zåõå 0G¨ÔÆÒ» ˆ|Vúpã0WÝpT1ü9ÀÏ™€þÖTX!`†’Ó A(9ö í@ …•tGâ,j¤(î¿Ô¿»¯öøüÆžƒ²5ÆÖ+¦ßSÑòñ°€t d†DÎ¡Î,ó¡ý1ŸÏ&0”ž"¸ žPÉzEnÔHØé„+èŒ ©Ø?‚¯ÛÔ³b£î“„Ì/^L3ØÖ†MrmåÈÑäš‰øQ¶wgˆ>,¬nEDµyœ’;dˆê@Ûlïº2â©4…K‰Ý>žI¤j¼ÅœÕÆCwÀý@,›»‚™•ÿ‘ÝgG–šL`!až:NM$¹ƒŒÊÇü[ž’Ùøþ$ãb¨¦ÉV!gSÍœ6hqº¥·ÖB0¶âËR›Um¡œÞ½´îÎVh¨¥™ùµ«gºí¦-‚í’Ž=ej8pb]½lÞñ„:¬ïÂF´ü6ë<”·°—. 3·˜‹Ñ=±ÎÛ“ÛËôK,±rë¿°ˆmÜu¯ù?Cq‚ŸÀ† † ‚^€Dvƒ¥€‚cNõ@€P†™E„wx^‘1oÂ0…çò+NlH%É@Ai¤U]m÷Ã\c§ö%ˆ_—JHUUOïžíÏÏwÛí$9V•’È=¹(•5…`Û*YŽ ¬«Š$ûX…ºEyÀšÊÑ]aðHem:Ö¾—"˜MØ-4—Yòä…ªÑ½2ÄäOètO=éßÑ‹$}5ÝÛzŽZëØ/u8´ÓV>;>%Óã¸an—B`ø¬Ô”ÔG4”XW‹¨ñÉºCŸLj2äP‹Ù<ÏÇ7„+ŸÏÐyej@Ø¼¯awpe`µÛ§ TŠôÞßƒb8¡‡Öz¯vš€-TÖêðV™àÎ&`,CëB5P¹! Ý ¡GÝœ2‘ñsof‡fÙ$v~ˆ%sabCÅª'8"Ë†|d´èDPc=ý¬QÏ·lÙÓ¥ù«—i–¦‹i6ÏÓB\íëø:§Ëµù‚¬Î_‚¥à† † ‚a€H|å@…Hƒ¯=€ƒwS©>†™% „Dx^=PMOÃ0=Ã¯°¸ìÂ†„˜RU‰ËÄ‘ÀMÝÕZšD‰Ã¿ž×–-7;ïË¨yJìN|”öž–×Üæ»&ð$mÓ~;uÅ²†có´ìð—9Ôxk÷»ç¬v9¼½¼>àg–h??>I¥ƒEbêê0HÞÆoÉƒgú®>HæN=¸Ô‰ãZ„Ôh`õœY‰(óD]¬¡ç|!7Š;°r1]‹ÀÍÛRSò*=õl|SÐP`N%˜¿PÑ_ &™"ÄÖPeG_#¼K©BŒ3Àfs={³JÉI(D¯=„4,Èb<ÇƒµÎŒ®P;”{-ä=›¡ZÉä8@*ùˆkmDM«3j’qÕ"wjy>wb7jÕßÅ^®Ž.CŠÃ2®±è,º@Ë;: Il®Vð—)YYµÎê=y= :q™Ë¸ÈÜØÔKXªguK openoffice.org-2-RC openoffice.org-2-devel 2.42.4.2 2.4.20040402

A security vulnerability with the way OpenOffice 2.x process W
¸J…Ú6€rv„ç~’†™EƒXintend to, or would change his connection character seurl>http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-5 http://secunia.com/advisories/31115/ 2008-07-15 2008-07-18ecedde1c-5128-11dd-a4e1-0030843d3802"> drupaldrupal5 5.8 drupal6 6.3The Drupal Project‚¸À† † ƒT…TÇ@€/U—0‚@˜€‚†™EƒR01-11f0fa19dd-c060-11dc-982e-001372fd0af2"> drupal -- cross site scripting (register_globals) drupal5 5.611208565">
When theme .tpl.php files are accessible via the web and the PHP setting register_globals is set to enabled, anonymous users are able to execute cross site scripting attacks via specially crafted links.

Drupal's .htaccess attempts to set regist‚¾à† † ‚F€$N‚ó€‚BJƒæ9š>‚øD†™*„x^EÁnÃ †ÏíS žK tYš‰å2ívâ4 d}ûÒt–…¬ÿŸ- âç{»&@æ%òÂ©1 7>ÐA*;é9ð“H™UÔ+ ¨edgp‹S!€A‹ 2ý;5Èà‘íw Éƒ‹lMIJ«p?£E*!‘HcZØüÖ†ähUWç—KUqË#JÁÅ¦¹Aýñõ‰¥ÎYI9Ùå½mrº–!Œo„,Ë’ `‚µ™uñ ¦ué;Cí›ô$}Á¬È~oš“hO(NôàÀð%Í?uÊ‹xˆ{¶‰ŒWNþÕ½o]`ë)10-8Ù”Ç”'”“yÒ¦>Æ2VhVÝû©d¢ëYÓâ¢½–8Ï;¯9ë0¥yN«kËúËëéÁ vT¢Ö^®ÉÉv•w æ:Ô,£ <x‚Å€† † ƒB€„]Pƒô?€†™E…kx^]RÁnÛ0=7_Aä´Mœ¤]€5† M]zé¡gÚ¢-¡²hH²]ÿý('MŠðAOä{|O´ôêÞÞ{0qqÐšFG( , ä±!‘ËˆÆ ˆQ Î›ÁXj(€À[‚§c"¨…Š>±í,ÝB$ß‡Ê¾®É_ø«l¯Hîe¿&'e¤R{‡!ŒìÕ&Ïºbq—ë]ñÎþ=÷N=å™œíŠW†ñŠƒ €‹eR-ûa ‘Ú£‰šåü÷t:Áîá×cù±|1žÞå_®d¯±/è GzëÄ¼m¤ø•#AÔ8çó÷Fú? Š×*å©A¯,…\§þQSÔ’º æÚ#VšÔfu1ž,Š.ÚÀ³8¼x¢?oÏ XZÒ”šy»µgAR˜éE’¨À’;±Ù/¡‘ :(“h½Ç«v2”©´Ðœ R÷Ì]9@¥Î;µ¤|¦I'$}QJ}·äÛÝCžU9l©XÀüåµ˜(ƒ X¼ý^oOûŸ›–Ú<»]Ì¥y&ä"à$Ÿ¢dóÂ•H™P±lèTì·ÛÃz·¶<»¡_u²Z©æµQö½‚Ë † † !ƒ` €LOƒÆ~€=_³z€Ut…¦I‚ z†™7ƒ^it may be possible to forge PKCS #1 v1.5 signatures signed with that kebid>20027 CVE-2006-4790 http://secunia.com/advisories/21937 http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html10-02 MT -- Search Unspecified XSS MT 3.33.33‚ÑÀ† † ƒ4€ƒlwÅ€X†™E…Dx^u’Ë’Û E×ã¯ ¼ÈN=,+3XY$Û¬ò.ŒZ65¼=þû€í™I¥*Ú¨ûêö.ò/f×4}?nÇ~èÚ¯Œ1NV§¹=<=ý3¥—Ë¥6JÝ‚µt†"È“¤d ¯ô´T–þüÅ†Š5ÛÚDÿÆi¡ü‡0ÜX‹É{°T° Aä·×}»oêš¿HœX €•Ê,ð½.ŠÒ!\§2]±¾jZN?ÕwXüðlª¶ãô®sê‹ó |ý‘ a·~ÜNt)HX\8B]nC^Uv†·ÚŸü·%Y¹›…Ò_„ñ/"'Ò°!ÿO›[.ù}ûaèï¼YJŸSy*ç˜¾ß‘ÎfDX"´FÙ#±ÉJDË¿a•YRûßã‚×à† † ‚€‚p‚¹yž5‚¼w€^†™E‚allows a remote cross site scripting attack. This flaw exists because input passed to "target_field" parameter in "view_filters_page.php" is nocvename>CAN-2005-4238 ‚Þ€† † ˆ{§`†—‚@‚ä † † ƒ;€xa±?€!^á8€c†™E„|x^=PM“Ú0=Ã¯Ðpè©!N€Ú–eÚCg:ËNïÂVÀS¤¶“Yþý:ÉNu±dé===è<*Ø£TxU³œ¼·yÛ¹X|žÏ F¬;¤¹4€ ÈHT`ðäzÉ "ÆSOŽbïæP`Ö@°Ü?| -¹Æ:†Ó^HÛ@@o²2Ló \£*~—‘LÀõñ'#†å•äÒvjP¢ã £v¼ZDçÆy3á¼¾þŽ$ÞÇ%ùªJyO5Õs£ÒJúÚß¤Ø/ÎÇ|]²Õ);óÃj}>lvç§l³=n·O»-Û°uÿÇï?O—ç—?l½”‚š%·zQßCh¿¤©FÇ—áN(#§³];tÓojínÁá¿O¨Û¯zŸe9cÅzS”lÇ²¢JGñ%ÜcRW¥ÑKòCQ¥}§L=Ò!ƒ~[ˆ¬l(Û%DÅ6É2±KÊUÆÆXÆrF$Ê|ñÁl+yÍjì!Ià×%y~kÑˆÉÍ{ÌÔàÛÉ^`Ø@¯RÉð¨Ò :Ñ`Óþ¿}-ò¿Ñøz>«F[§U:y<«šØT¨Ù²Œç©wÕgÇœ‚êÀ† † ƒ€<v…Š@€pHƒ†€‚Q†™E„}x^]’ÝnÛ0…¯“§ z='NÜŸp lÖØ^€–é„ˆ,¹•4{úRqƒ¢õ•~xÎùHù”¬ƒ÷ÏwfÛßÛºÀ¡¢b³éëbW=õEY–Tš-ÝW;¼k— _#~bÓîmEƒ# D ìö€®‡. ð' ƒõg8iìØ²0Åf=ëg/ÔZ#qÞé~BsÄ=µËEãp¤œÒ¬¯+= èôª±ÒnV/šÀ‘SŠ¤É·$K Æd…']Š€q¹8“µºü¬ûÚÊ7ìÕ¦ªêºz¨Ëj·+u‹LÛþt€" Æ'e¢·ÉzÇ/&—Eod’PV`èX†‹J{‚3ËAe…‘cdï"øáz”¢„ä\FÓÖÌùª§µ…¹¤£\¼—U³žòÐÖõæøš¼\g8µÿTó'ýúû&äf3ß-"¿®Î&ûg³«ù*gfuàxÌ`¢()tš#;ù?épfYj9Š¾•Öf[ûÿTÕ#‚ðà† † ‚x€‚li…_€Ž€W†™E„Cx^eQÁ®Ó@¼ó§Ç!MòÚ¦¯¨!Ä ®h³qšå%ë•ímÉßã$ =‰œ6öŒÇ3F>Œ(ÐÎ%Äè€Ýd¥Ätvï`ùBÜZøSN`q7ÃYÇABÆ§àÝ8î¾ÁšEÜf<‚”u÷ÄÓ"çâ‚>sÐü€þU@É´ñŽQÁmÄ.0z%žAÙÝ‘Å™À„>˜˜1ÙõŠÝÿëm|Oyìl¯,ÿ¸v‘é˜’NÕùaZãüh5¼ñ—Œ@fQœÞÄd6¦ ( P¿–L€sŒ1]<‡¤‹hñ\UÇª®;ý—2óx]!—å5¨¦e)”Ù£tÃ]D-í¿Ì})=")Ê. é3ãˆNðgè>ímfóüvš·ðì†×¯?¾ŠEU÷§¾Þ7Õ©-šóá¥¨ëî\¼œ÷§¢ªªæØâ¡=¶ÍûuÀE)]’J$ Ea7âûb -Å6÷½ýÓÿþMÁÎ‚÷€† † ƒY€†;†™E†;x^RMoÛ0=¯¿‚Èy•âfM–Âõà: m1'Ø]–˜Xˆ-¹’òá?:vÒ ía¾X¤øùä„Ù`rýóFÈ¸db.Ök”ÁŸc…^:ÝmÍ;¨°ª…c]?*Chî8?ì0aÖmx4ŸÏù±u5J®¾ÄM’BŽ žD¡öÚ[×‚ÃÆºàï¨WSTVnßv6 HðÂêJÃªR&mÍÑ9ÏŸ–éõÍxüízEìÜˆt5Ék…[/ŒrðÐbµÕ”öÒî‘X ŒÒÅ*Ëa•>,2`ŒAž½¤ÏÙd‰r‹ª#*ExÌ³t•ñŸ/Ë,_Ó›2x°ëÓˆN‚6> Pçƒ‡žÁdÃtü}¼~!«RH‰ÞÓ*|pZvö_ v¢é] ÍÏíò×<:®kÑvôÕ M¨Z°Ž$:kQQX m#¼'¬Ú!K|ÚC±Ûôr.Æw&^\ÿhsìpM[3¤±-÷hDÉãï¬_ýøûä6æçtç¡VIMngDMGÊì\•FR{ÏêÖ¿U'#;5MÙüÐê~r3Ç¼+ýñ¿Ö†=®“È´÷Ì`Bú©‚G³ét:`†Ùÿtxô"\‚.žÐ.‚ý † † ‚S€.`©<€ƒƒ›0†—`e„2x^PMOë0<·¿bÕ»c'¢2¹Ä!½glRÇŽÖ› øõ/iÜŸ/fg=ƒ‡3ót/¥…«Š©2 ²çi#·K4UÝV/oÝ~ §î)|€à³aÃpfpf.Ï¯Âš‚ŒsX ¸œ˜rš#H™óê`Bb¤‰½ËDè8~BNÐž„ S4ÜgK«j-Ý“±ÛÃõè™b÷´\¯&ZöH˜–¯nŒ7ü×W(._>»F©“PhŽZþ²ß:\BnšZ µhnÌ¶åÇTËËS·_áŠàüÃÁ6ØúÚ·¢>ïD]û;aÝÉ¥”;ÕØ8oüaóâ<×ù+Äh@(ŽÂÄ! °"bà€EË›ö6gú~i÷7ÙdÜ»–2wúZ*Ÿçä‘l ¯åæ&“‰ŽÜ©êÏ?¶¯ƒƒÀ† † ‚€[vƒí@¼Môz€ƒa†™E„xx^‘InÃ0E×Í)tkðX‚7E½@÷²ÍÆdÉh½}=¢I‡ Úˆú|$?(lÁƒ2‘Ñ’YÕAyz’ë€[ò?ýG‘Wö¥4Xr*8ÍÞB V@*Kj7Î¥ Ñ–tƒAÝ ½wèjg–|€ôAk×1Õ÷Ö!¶WQPç\d´Ån¶6xSžÈzd=Âjæåý5Š9O#ž'‰d‡|KÃ²ßØb EìÏŒÍî«Õfºup^Ï¶EÌãôÖi¥›Rð¼ˆ%[Â?zMÓD]›Š:aE–ä·î¡Åãèó*™‡yí¶†°+Â#^^û~–Û>Šy%’}«¯!$Û”}ÊÒôì,Àùƒ‰àÄ.Êi!ƒR ˆYª?€rM€&{ @€DJ®:€lÄ.ƒP systemquasar.mathstat.uottawa.ca/~selinger/nap/NEWS 2001-04-12 CCE contains exploitable buffer overflows zh-cce 0.4Chinese Console Environment contains exploitable buffer overflowsprogrammer.lib.sjtu.edu.cn/cce/cce.html 2000-06-22