Debian Linux Security Advisory 5391-1 - Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files.
9cd75b445effca193e2f20c2fe8ad3e93229612401b307adc7cea3a859007c4fUbuntu Security Notice 6036-1 - It was discovered that PatchELF was not properly performing bounds checks, which could lead to an out-of-bounds read via a specially crafted file. An attacker could possibly use this issue to cause a denial of service or to expose sensitive information.
561936460141b10890e89297c7f668692bd3919461cc039662e0d7ce8c4a22a9Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges.
039f9568152fd31aa5f779ebb2810e14455f1fa0c4f2d93d530677863406e264Nokia OneNDS 17 has loose sudo permissions that can allow users to escalate privileges.
8975cf556d237f4b257be1e894cee74532774c277cc70920297e03b75a9e8df3Red Hat Security Advisory 2023-1923-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.
ba79100560fbd0fc7ba196b5e365840b14c9b25cb1f85ea29a5dacaf5c39421fKODExplorer versions 4.49 and below suffer from cross site request forgery and remote shell upload vulnerabilities.
2c24ede0b6c9ade31db524c30505dfd3c2502c034c6ae0b1c0858a97d424c42dUbuntu Security Notice 6035-1 - It was discovered that KAuth incorrectly handled some configuration parameters with specially crafted arbitrary types. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code.
db7160bf3cf4b1beb0b7a9ece362aeac816a613c2c1412b77b7be0e28b5aae24Red Hat Security Advisory 2023-1919-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include code execution and use-after-free vulnerabilities.
6602bc8a34515158ce7124b40f3203f7f78546865d00fac6c799284adf954344Chrome has an issue where there is an out-of-bounds string copy that can occur when parsing a uniform sampler name in SpvGetMappedSamplerName.
6d914ad5ce8a9613e3083a3bd37687308877fb722821402fb41c97094ed4c0e7Red Hat Security Advisory 2023-1916-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
f08cae7cc8b66c966c90d8c001c2e53e9eaf1101d4051dd1725df16e3501b408This python script is a slow brute forcing utility to check passwords against FortiGate appliances. Check the homepage link for more information on how this was used to slowly bypass brute force protections.
c801f99d408035256c871d04d06f9c9e360124599a0f66d51971fc4c6561faf6Red Hat Security Advisory 2023-1918-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include code execution and use-after-free vulnerabilities.
5fbc849704e57e516968439f43e93c154880332ddcd3db90a63c82eda9f63465Chrome has an issue where the GL_ShaderBinary is exposed to untrusted processes.
aaac59d091c9d8a436590663b90c29e1fe3765edf9f601ab76805baa4e39f431Red Hat Security Advisory 2023-1915-01 - GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language, and the capability to read e-mail and news. Issues addressed include a code execution vulnerability.
80ae80894103f9e3bb72bd9ba03087e0cc89634f41448a0c25e72fa71230e905Chrome suffers from an issue where the traits for media::mojom::VideoFrame do not perform any validation on the stride and offset parameters when deserializing untrusted message data.
eef4ad83a3864cabde0b440774e63637f5458711c23fa69aeeee0b48adefd113
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed