1. 2019-02-28 [1] [oss-security] ikiwiki: CVE-2019-9187: Server-side request forgery oss-security Simon McVittie 2. 2019-02-23 [3] Re: [oss-security] Multiple vulnerabilities in Jenkins plugins oss-security Daniel Beck 3. 2019-02-22 [1] [oss-security] Xen Security Advisory 283 v2 - Withdrawn Xen Security Adv oss-security Xen.org security team 4. 2019-02-22 [1] [oss-security] Multiple BIND CVEs disclosed (CVE-2018-5744, CVE-2018-574 oss-security Michael McNally 5. 2019-02-21 [1] [oss-security] CVE-2018-1002161 - Koji - SQL injection in multiple remot oss-security Patrick Uiterwijk 6. 2019-02-21 [1] [oss-security] Kernel local root in SCTP / CVE-2019-8956 oss-security Marcus Meissner 7. 2019-02-21 [1] [oss-security] CVE-2019-8934 QEMU: ppc64: sPAPR emulator leaks the host oss-security P J P 8. 2019-02-19 [2] [oss-security] CVE-2019-6454: systemd (PID1) crash with specially crafte oss-security Simon McVittie 9. 2019-02-18 [1] [oss-security] Linux kernel: three KVM bugs (CVE-2019-6974, CVE-2019-722 oss-security Jann Horn 10. 2019-02-18 [1] [oss-security] CVE-2019-3812 - qemu - Out-of-bounds read in hw/i2c/i2c-d oss-security Wade Mealing 11. 2019-02-15 [1] [oss-security] MatrixSSL stack buffer overflow oss-security Tavis Ormandy 12. 2019-02-13 [1] [oss-security] Railroader: static analysis tool for Ruby on Rails (OSS f oss-security David A. Wheeler 13. 2019-02-13 [5] [oss-security] CVE-2019-5736: runc container breakout exploit code oss-security EJ Campbell 14. 2019-02-13 [9] [oss-security] CVE-2019-5736: runc container breakout (all versions) oss-security Aleksa Sarai 15. 2019-02-12 [1] [oss-security] [CVE-2018-11783] Apache Traffic Server vulnerability with oss-security Bryan Call 16. 2019-02-12 [1] [oss-security] CVE-2017-3164: Apache Solr: SSRF issue oss-security Tomas Fernandez Lobbe 17. 2019-02-12 [1] [oss-security] Two more LXC breakouts (both privileged), apparmor issue? oss-security Alexander E. Patrakov 18. 2019-02-11 [1] [oss-security] CVE-2019-6975 -- Django fixed memory exhaustion in utils. oss-security Carlton Gibson 19. 2019-02-09 [1] [oss-security] WebKitGTK+ and WPE WebKit Security Advisory WSA-2019-0001 oss-security Michael Catanzaro 20. 2019-02-08 [1] [oss-security] CVE-2019-7628: Pagure version 5.2 leaks API keys by e-mai oss-security Randy Barlow 21. 2019-02-07 [2] [oss-security] Re: Linux Kernel: Missing access_ok() checks in IOCTL fun oss-security Timothy Michaud 22. 2019-02-06 [2] [oss-security] Notes on fuzzing ImageMagick and GraphicsMagick oss-security Hanno =?iso-8859-1?q? 23. 2019-02-06 [1] [oss-security] [SECURITY ADVISORY] curl: SMTP end-of-response out-of-bou oss-security Daniel Stenberg 24. 2019-02-06 [1] [oss-security] [SECURITY ADVISORY] curl: NTLMv2 type-3 header stack buff oss-security Daniel Stenberg 25. 2019-02-06 [1] [oss-security] [SECURITY ADVISORY] curl: NTLM type-2 out-of-bounds buffe oss-security Daniel Stenberg 26. 2019-02-05 [1] [oss-security] CVE-2019-3814: Suitable client certificate can be used to oss-security Aki Tuomi 27. 2019-02-02 [3] Re: [oss-security] CVE-2018-1340: Apache Guacamole: Secure flag missing oss-security Salvatore Bonaccorso 28. 2019-02-01 [1] [oss-security] Linux kernel: BPF spectre v1 mitigation bypass (CVE-2019- oss-security Jann Horn