LOLDriver version 1.3-x64 proof of concept memory corruption exploit.
a330abffaaadfd62570ff07c8df013554081bb33cab314ff75bd805bebba1f05Debian Linux Security Advisory 5486-1 - An invalid memory access was discovered in json-c, a JSON library which could result in denial of service.
d776f69a78565f3d6285acb403a68c4c1c525cb2f96ae4d51195a8f17fd22317Ubuntu Security Notice 6325-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.
1743858f505c25ed449fa21a975dfb6ace00d74d103e7f67dbdfab548290c4f7Easy Address Book Web Server version 1.6 suffers from buffer overflow and cross site scripting vulnerabilities.
b6befe65e6a55c3b27e84899d0f0cc67abbdb0aab6f0e18d3b97d7670e1e7542Red Hat Security Advisory 2023-4893-01 - The Migration Toolkit for Containers enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
f11e31090cc28a228765523fb483ea854fa2ab2b6954f304533ceb4fbfabf6fbUbuntu Security Notice 6324-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.
3ca0e623afd0d243fb7f341e17d4452d9815d519fad76cb9d0bbd4482e76e276Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). This is the source code release.
6957cfd14a29eee7555c52f8387a46f2ce2f5fe7dadf93547f1bc74b1657e119Ubuntu Security Notice 6323-1 - Ben Cartwright-Cox discovered that FRR did not handle RFC 7606 attributes properly. A remote attacker could possibly use this to cause denial of service.
de389dbe895b9bf860e5978789752b0704792e723d0364f7492efd500494f838Red Hat Security Advisory 2023-4734-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.10.
4ed359984851beed23bf2f84f8af36529ebffd598cea284e69264db86b662fd2Debian Linux Security Advisory 5485-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
511d52311935c0b1cce3a5e268655acf5ad5b7a480ed5f93fb8a6d8c200cce71Ubuntu Security Notice 6322-1 - It was discovered that elfutils incorrectly handled certain malformed files. If a user or automated system were tricked into processing a specially crafted file, elfutils could be made to crash or consume resources, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. It was discovered that elfutils incorrectly handled bounds checks in certain functions when processing malformed files. If a user or automated system were tricked into processing a specially crafted file, elfutils could be made to crash or consume resources, resulting in a denial of service.
6a0c8cd8afd7342a91696904ca1f4bf9b8e8a03c52d7a2b6efbcf1301d1d0b72Ubuntu Security Notice 6321-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.
1d629b070b7634bff1f72ea8b938d3be648a4d6ec0907851c41c3d3277248fcfPHP JABBERS PHP Review Script version 1.0 suffers from a cross site scripting vulnerability.
b9b98b4a795bf346b16b6fba859f15dc9f9da7740340375a350eddf3a8d1d69fRed Hat Security Advisory 2023-4731-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.13.10.
e921f00ec5f9a309ad9069ff2cc784adf92e0e5f737d48f6b45d2a33d1611782Red Hat Security Advisory 2023-4730-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.10.
e2a9d037db50b41360768fef667407a27d3378b6eacdbb1eff3c05c5a9c8e1efInnovins CMS version 4.7 suffers from a remote SQL injection vulnerability.
9251132594eafa9a14d75a8dd4e9c897b37bff7230ae650ecc0a5f52c0c0f607Online ID Generator version 1.0 suffers from remote SQL injection that allows for login bypass and remote shell upload vulnerabilities.
fe94ca18f12e1c64358556d8bd0cbb12f811c2f0176232b8d7dcb632b99ee17fRed Hat Security Advisory 2023-4888-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include out of bounds write and use-after-free vulnerabilities.
88a9bb8c05628ae38a95c17e5e550ce2363e19952b9132dcd65e82c001a8e5f2Red Hat Security Advisory 2023-4885-01 - Red Hat OpenShift support for Windows Containers allows you to deploy Windows container workloads running on Windows Server containers. Issues addressed include a privilege escalation vulnerability.
460087a9a8c98d7e4daf5cf8729ed581d6c97123bd4d68b4bc0529fc3007dc68Red Hat Security Advisory 2023-4889-01 - The DevWorkspace Operator extends OpenShift to provide DevWorkspace support. Issues addressed include a code execution vulnerability.
903adfa69d078e0a5ec7e59ab81c4797891534ed0e68348a9ada32b2fb46db1dRed Hat Security Advisory 2023-4877-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR8-FP10.
1f44a471e2bee1717177c2bcafeca0820e54321a1df66a3ea21aeca73d00637bIslam CMS version 1.0 suffers from a remote PHP code injection vulnerability.
39b07aef1fa1c0862a22398b5f20aabeb8f16190e023159d1c613e4cc63eef60Invasor Diagonal CMS version 1.0 suffers from a cross site scripting vulnerability.
ec4be6aa3028ea8d49f16f286f88453f74d01789614ef1b86bf92de74bc6bea4InterPhoto version 2.3.0 suffers from a remote shell upload vulnerability.
5ca35c1825dc45f42cd3a28e602eb0a3285956fa6a3c4b1d41e2cdcc78f49cce
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed