sec

Naked Security

• Google fixes another “Stagefright” type bug in Android mediaserver
• Jailbreak! Sony PS4 “can now run Linux”
• Kid spends $5900 playing Jurassic World on Dad’s iPad. Here’s how to prevent that happening to you.
• Politwoops’ archive of deleted tweets will soon be back after Twitter reopens API

Full Disclosure

• Alcatel Lucent Home Device Manager - Management Console Multiple XSS
• Executable installers/self-extractors are vulnerable^WEVIL (case 17): Kaspersky Labs utilities
• Possible vulnerability in F5 BIG-IP LTM - Improper input validation of the HTTP version number of the HTTP reqest allows any payload size and conent to pass through
• Vulnerabilities in Office Document Reader for iOS
• Buffer Overflow in Advanced Encryption Package Software
• Confluence Vulnerabilities
• CVE-2015-7944, CVE-2015-7945 - Ganeti Security Advisory (DoS, Unauthenticated Info Leak)
• CALL FOR PAPERS - NUIT DU HACK - 02/03 july 2016
• Buffer Overflow at password field in Advanced Encryption Package Software

SANS Internet Storm Center, InfoCON: green

• What are you Concerned the Most in 2016?, (Tue, Jan 5th)
• ISC StormCast for Wednesday, January 6th 2016 http://isc.sans.edu/podcastdetail.html?id=4811, (Wed, Jan 6th)