Feed aggregator

WebKitGTK and WPE WebKit Security Advisory WSA-2019-0006

Security Updates from SECLISTS - Fri, 11/08/2019 - 10:06

Posted by Carlos Alberto Lopez Perez on Nov 08

------------------------------------------------------------------------
WebKitGTK and WPE WebKit Security Advisory WSA-2019-0006
------------------------------------------------------------------------

Date reported : November 08, 2019
Advisory ID : WSA-2019-0006
WebKitGTK Advisory URL : https://webkitgtk.org/security/WSA-2019-0006.html
WPE WebKit Advisory URL :...

[slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)

Security Updates from SECLISTS - Fri, 11/08/2019 - 05:50

Posted by Slackware Security Team on Nov 08

[slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)

New kernel packages are available for Slackware 14.2 to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/linux-4.4.199/*: Upgraded.
These updates fix various bugs and security issues.
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure...

[SECURITY] [DSA 4561-1] fribidi security update

Security Updates from SECLISTS - Fri, 11/08/2019 - 05:46

Posted by Salvatore Bonaccorso on Nov 08

-------------------------------------------------------------------------
Debian Security Advisory DSA-4561-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
November 08, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : fribidi
CVE ID : CVE-2019-18397
Debian Bug :...

Jira Service Desk Server and Jira Service Desk Data Center Security Advisory - 2019-11-06 - CVE-2019-15003, CVE-2019-15004

Security Updates from SECLISTS - Fri, 11/08/2019 - 05:43

Posted by Alexander Minozhenko on Nov 08

This email refers to the advisory found at
https://confluence.atlassian.com/jira/jira-service-desk-security-advisory-2019-11-06-979412717.html
.

CVE ID:

* CVE-2019-15003
* CVE-2019-15004

Product: Jira Service Desk Server and Data Center.

Affected Jira Service Desk Server and Data Center product versions:

version < 3.9.17
3.10.0 <= version < 3.16.11
4.0.0 <= version < 4.2.6
4.3.0 <= version < 4.3.5
4.4.0 <= version...

[SECURITY] [DSA 4560-1] simplesamlphp security update

Security Updates from SECLISTS - Wed, 11/06/2019 - 10:07

Posted by Thijs Kinkhorst on Nov 06

-------------------------------------------------------------------------
Debian Security Advisory DSA-4560-1 security () debian org
https://www.debian.org/security/ Thijs Kinkhorst
November 06, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : simplesamlphp
CVE ID : CVE-2019-3465
Debian Bug...

[SECURITY] [DSA 4559-1] proftpd-dfsg security update

Security Updates from SECLISTS - Wed, 11/06/2019 - 04:13

Posted by Moritz Muehlenhoff on Nov 06

-------------------------------------------------------------------------
Debian Security Advisory DSA-4559-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 05, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : proftpd-dfsg
CVE ID : CVE-2019-18217
Debian Bug...

Why Does Business Invest in Education in Emerging Markets? Why Does It Matter?

Harvard Business School Working Knowledge - Wed, 11/06/2019 - 00:00
This paper represents the first systematic attempt to identify and compare investment in education across emerging economies, specifically in Africa, Asia, Latin America, Turkey, and the Persian Gulf between the 1960s and the present day.by Valeria Giacomin, Geoffrey Jones, and Erica Salvaj9346Geoffrey G. Jones24276Working Paper Summaries

Torched Planet: The Business Case to Reinvent Almost Everything

Harvard Business School Working Knowledge - Wed, 11/06/2019 - 00:00
With climate change scorching the planet, business leaders have a once-in-a-lifetime opportunity to change the world—and make money in the process, says Rebecca Henderson.by Rebecca Henderson9344Rebecca M. Henderson12345Op-Ed

[SECURITY] [DSA 4558-1] webkit2gtk security update

Security Updates from SECLISTS - Tue, 11/05/2019 - 02:34

Posted by Moritz Muehlenhoff on Nov 04

-------------------------------------------------------------------------
Debian Security Advisory DSA-4558-1 security () debian org
https://www.debian.org/security/ Alberto Garcia
November 04, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : webkit2gtk
CVE ID : CVE-2019-8625 CVE-2019-8720...

[slackware-security] libtiff (SSA:2019-308-01)

Security Updates from SECLISTS - Tue, 11/05/2019 - 02:30

Posted by Slackware Security Team on Nov 04

[slackware-security] libtiff (SSA:2019-308-01)

New libtiff packages are available for Slackware 14.2 and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/libtiff-4.1.0-i586-1_slack14.2.txz: Upgraded.
libtiff: fix integer overflow in _TIFFCheckMalloc() that could cause a crash.
tif_dir: unset transferfunction field if necessary.
pal2rgb: failed to free...

The Economic Effects of Private Equity Buyouts

Harvard Business School Working Knowledge - Tue, 11/05/2019 - 00:00
This study of 6,000 US buyouts between 1980 and 2013 finds that the real-side effects of buyouts on target firms and their workers vary greatly by deal type and market conditions.by Steven J. Davis, John Haltiwanger, Kyle Handley, Ben Lipsius, Josh Lerner, and Javier Miranda9345Josh Lerner9961Working Paper Summaries

Can the Robin Hood Army Grow with Zero Financial Resources?

Harvard Business School Working Knowledge - Tue, 11/05/2019 - 00:00
In 2014, Neel Ghose (MBA 2019) created the Robin Hood Army, an entirely volunteer-based organization working to get surplus food to hungry people. Just four years later, they had served more than 9 million people in 103 cities around the world, all while maintaining their “golden rule” of being zero-funds. Harvard Business School’s Susanna Gallani and Ghose discuss the most pressing challenge facing the organization with its fast growth and no monetary assets: how to attract, retain, and motivate workers.Re: Susanna Gallani9343Susanna Gallani774593Cold Call Podcast

[SECURITY] [DSA 4556-1] qtbase-opensource-src security update

Security Updates from SECLISTS - Mon, 11/04/2019 - 15:46

Posted by Moritz Muehlenhoff on Nov 04

-------------------------------------------------------------------------
Debian Security Advisory DSA-4556-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
October 31, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : qtbase-opensource-src
CVE ID : CVE-2019-18281

An...

APPLE-SA-2019-11-01-1 Xcode 11.2

Security Updates from SECLISTS - Mon, 11/04/2019 - 15:16

Posted by Apple Product Security on Nov 04

APPLE-SA-2019-11-01-1 Xcode 11.2

Xcode 11.2 addresses the following:

llvm
Available for: macOS Mojave 10.14.4 and later
Impact: Processing a maliciously crafted file may lead to arbitrary
code execution
Description: A memory corruption issue was addressed with improved
validation.
CVE-2019-8800: Pan ZhenPeng of Qihoo 360 Nirvan Team
CVE-2019-8806: Pan ZhenPeng of Qihoo 360 Nirvan Team

Installation note:

Xcode 11.2 may be obtained from:...

[SECURITY] [DSA 4557-1] libarchive security update

Security Updates from SECLISTS - Mon, 11/04/2019 - 15:07

Posted by Moritz Muehlenhoff on Nov 04

-------------------------------------------------------------------------
Debian Security Advisory DSA-4557-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
October 31, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libarchive
CVE ID : CVE-2019-18408

A...

[SECURITY] [DSA 4549-1] firefox-esr security update

Security Updates from SECLISTS - Fri, 11/01/2019 - 06:32

Posted by Moritz Muehlenhoff on Nov 01

-------------------------------------------------------------------------
Debian Security Advisory DSA-4549-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
October 24, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2019-11757 CVE-2019-11759...

Should Non-Compete Clauses Be Abolished?

Harvard Business School Working Knowledge - Fri, 11/01/2019 - 00:00
Non-compete clauses bind employees to their employers, preventing workers from bringing secrets to competitors. But increasingly, NCCs are unnecessarily restricting job mobility for low-level jobs. Should they be banned? asks James Heskett.by James Heskett9342James L. Heskett6842What Do You Think?

How to Recover Gracefully After Shutting Down Your Startup

Harvard Business School Working Knowledge - Wed, 10/30/2019 - 00:00
It’s hard to call it quits on a business venture, but entrepreneurs can wind down a struggling startup while keeping their reputations and sanity intact, says Tom Eisenmann. The first step is knowing when to accept defeat.by Danielle Kost9341Thomas R. Eisenmann6452Research & Ideas

Robots in the Boardroom

Harvard Business School Working Knowledge - Tue, 10/29/2019 - 00:00
Understanding cloud technology was the No. 1 imperative for executives this decade. Next up: How does artificial intelligence change business and management?by Sean Silverthorne9339Sharpening Your Skills

Pages