Contact
E-mail web@hansmi.ch, PGP key 0x710DD762010BBA8A (summary of cryptographic information, updated June 2017). GitHub profile.
Security research
- April 2019: Save registry file outside Samba share as unprivileged user (CVE-2019-3880)
- April 2019: Out-of-bounds read in I²C DDC emulation in QEMU (CVE-2019-3812)
- March 2019: QEMU MTP emulation path traversal, other vulnerabilities
- December 2018: Multiple vulnerabilities in Burp backup 2.2.12
- December 2018: Out-of-bounds read/write in QEMU PC SMBus emulation (only in version 3.1.0 release candidates)
- October 2018: More vulnerabilities in GlusterFS (7 CVEs in total)
- September 2018: GlusterFS remote code execution, denial of service and more (12 CVEs in total)
- May 2018: Windows Host Compute Service Shim remote code execution vulnerability (CVE-2018-8115)
- April 2018: OpenShift S2I build privilege escalation (CVE-2018-1102)
- April 2018: Remote command injection in Composer for PHP
- March 2018: Denial of service and other vulnerabilities in Icinga 2.x before version 2.8.2 (CVE-2018-6532, CVE-2018-6534 and CVE-2018-6535)