Chris John Riley

Name of the Vulnerable Software and Affected Versions: LastPass versions prior to 2.5.1 Description: The issue allows for secure wipe bypass. Recommendations: For versions prior to 2.5.1, update to version 2.5.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Privoxy versions prior to 3.0.21 **Description** The issue makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 HTTP status code by not properly handling Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream. **Recommendations** For versions prior to 3.0.21, update to version 3.0.21 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions 4.0.0 through 4.0.9 TYPO3 versions 4.1.0 through 4.1.7 TYPO3 versions 4.2.0 through 4.2.3 **Description** The issue allows attackers to compromise the confidentiality, integrity, and availability of protected information. It can be exploited remotely. The System extension Install tool in TYPO3 creates the encryption key with an insufficiently random seed, making it easier for attackers to crack the key. **Recommendations** For versions 4.0.0 through 4.0.9, update to a version that generates encryption keys with a sufficiently random seed. For versions 4.1.0 through 4.1.7, update to a version that generates encryption keys with a sufficiently random seed. For versions 4.2.0 through 4.2.3, update to a version that generates encryption keys with a sufficiently random seed.