Ubuntu Security Notice 6363-1 - It was discovered that curl incorrectly handled certain large headers. A remote attacker could possibly use this issue to cause curl to consume resources, resulting in a denial of service.
c89702b030cc64f8d3350e64da7330b42effa8bc29777a3d99e868602c7788e5Red Hat Security Advisory 2023-5001-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.49. Issues addressed include a bypass vulnerability.
25b24a22ab82cbc89840904080db60b46b514189164d05701629525da4dc2990Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.
cfc329a170439195d7070ec5387d95cdda7eb6b86ac85ec707b9ed0e9d576a29This Metasploit module exploits an authentication bypass in Ivanti Sentry which exposes API functionality which allows for code execution in the context of the root user.
ea4bf146aae20e6532518f5f14a0339f6c32348de42b3b15936e869ed48d8e04Ubuntu Security Notice 6358-1 - It was discovered that RedCloth incorrectly handled certain inputs during html sanitisation. An attacker could possibly use this issue to cause a denial of service.
86fa923932dc47ee2649d028f112242d5b253e9da5c965132640e4acfccff93bPHP Shopping Cart version 4.2 suffers from a remote SQL injection vulnerability.
606411a83a93b9d6c705936cd642d323cf06f1e728faa5294bef0c1a617f8551Fundraising Script version 1.0 suffers from a remote SQL injection vulnerability.
76dba00a4fbcde8d324da447dccd0ff8dba00a8a1ec438def34676181cb1ab16Ubuntu Security Notice 6362-1 - Kevin Jones discovered that .NET did not properly process certain X.509 certificates. An attacker could possibly use this issue to cause a denial of service.
984982a72fb9c959cc17341225a913bf68fb19a6386467d511a5a2bd1d4d9c98Red Hat Security Advisory 2023-5081-01 - The librsvg2 packages provide a Scalable Vector Graphics library based on the libart library.
be077606ece797affcba6a1e94b75041357cbd16075d2aa33acef3e5b0f1075eUbuntu Security Notice 6361-1 - It was discovered that CUPS incorrectly authenticated certain remote requests. A remote attacker could possibly use this issue to obtain recently printed documents.
5d8b35835313ac13bb31f5f18631c2714f98963ff18678eeceb12f11cbaef395Blood Bank and Donor Management System version 2.2 suffers from a persistent cross site scripting vulnerability.
f4bac742cbacc0bd280c242baa21d84a81c0c8bea256cbd8eace4e1e86001710Red Hat Security Advisory 2023-5080-01 - Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Issues addressed include bypass and denial of service vulnerabilities.
3d403f1b382222b4d0f9f5f7b8c4a74f51cc187300c6e4e3833df599ea98ed35Ubuntu Security Notice 6360-1 - It was discovered that FLAC incorrectly handled encoding certain files. A remote attacker could use this issue to cause FLAC to crash, resulting in a denial of service, or possibly execute arbitrary code.
3c2a2db04a7ba224f730a1318b01fb592fe233496b6b0eef2f06b3fe6c20e3ebUbuntu Security Notice 6359-1 - It was discovered that file incorrectly handled certain malformed files. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code.
8486d1b5b2e2e9f43f631642442e100bec7c1aa93d22cb33979538c55b7c5e2aRed Hat Security Advisory 2023-5071-01 - Libcap is a library for getting and setting POSIX.1e draft 15 capabilities. Issues addressed include integer overflow and memory leak vulnerabilities.
e50cb7c52a97269d2fb99f054b0a16854c3bb81f3767dcd93bdfaadeae209fcfKleeja version 1.5.4 suffers from a cross site scripting vulnerability.
410a4a9f610871f42b03b0048c200005e8a0edb28fcfd26e67518ce5a6c1ccd8K-LOANS version 1.4.5 suffers from an ignored default credential vulnerability.
4f0d768951e1d99a1d41d1ae001fbb6f522c35846c9b64ff3af8985056107d28
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed