Skip to main content
-
Django security hardenings that are not happening
-
Expat 2.6.3 released, includes security fixes
-
Expat 2.6.2 released, includes security fixes
-
Expat 2.6.0 released, includes security fixes
-
Expat 2.5.0 released, includes security fixes
-
Expat 2.4.9 released, includes security fixes
-
Expat 2.4.5 released, includes security fixes
-
Expat 2.4.4 released, includes security fixes
-
Expat 2.4.3 released, includes security fixes
-
uriparser 0.9.6 with security fixes released
-
CVE-2013-0340 "Billion Laughs" fixed in Expat 2.4.0
-
CVE-2021-3541 "Parameter Laughs" fixed in libxml2 2.9.11
-
Expat 2.2.8 with security fixes has been released
-
Expat 2.2.7 with security fixes has been released
-
uriparser 0.9.1 released, includes security fixes
-
uriparser 0.9.0 released, includes security fixes
-
Fwd: LibreOffice < 6.0.1 '=WEBSERVICE' Remote Arbitrary File Disclosure
-
Fwd: Escaping Docker container using waitid() – CVE-2017-5123
-
Fwd: Bit-squatting: DNS Hijacking Without Exploitation
-
Expat 2.2.3 released, includes security fixes for Windows
-
Expat 2.2.2 released
-
Expat 2.2.1 with security fixes has been released
-
Fwd: Issues with window.opener (HTML, not just JavaScript)
-
Disqus(ting) / Fwd: What’s Wrong with Disqus?
-
Fwd: Security (or lack of) at Number26
-
Fwd: (German) Telefónica verkauft Bewegungsdaten seiner O2/E-Plus-Kunden (auch blau.de)
-
arc4random_uniform and avoiding modulo bias when using a random number generator
-
Disable Komodo IDE debugger (bound to 0.0.0.0, run by default)
-
Fwd: The Case of the Modified Binaries / Downloading binaries through plain http://
-
Fwd: One in every 600 websites has .git exposed
-
Fwd: Hacking Team: a zero-day market case study / Adobe Flash
-
Comment vulnerability in Wordpress 4.2
-
Apache AddHandler/AddType vulnerability: Magento
-
Firefox: You may want to update to 37.0.1
-
"Your browser fingerprint appears to be unique among the 5,198,585 tested so far". What?!
-
Apache AddHandler madness all over the place
-
Fwd: The Perl Jam: Exploiting a 20 Year-old Vulnerability [31c3]
-
Fwd: Chrome Plans to Mark All 'HTTP' Traffic as Insecure from 2015
-
On safe-mail.net free, anonymous e-mail
-
Fwd: More tricks for defeating SSL in practice
-
Fwd: SSL And The Future Of Authenticity
-
Fwd: [28c3] Effective Denial of Service attacks against web application platforms