Ubuntu Security Notice 6713-1 - It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a specially crafted JSON file, QPDF could be made to crash, resulting in a denial of service, or possibly execute arbitrary code.
8599d683e2b4517e16898898180dc7a0b2cdc7ba2174e82a8a13679c86f88304Ubuntu Security Notice 6712-1 - It was discovered that Net::CIDR::Lite incorrectly handled extra zero characters at the beginning of IP address strings. A remote attacker could possibly use this issue to bypass access controls.
a9f0f6ed74484540e723d579471876cf9ff4f03a08ad177e2826858111934cf8Ubuntu Security Notice 6710-1 - Manfred Paul discovered that Firefox did not properly perform bounds checking during range analysis, leading to an out-of-bounds write vulnerability. A attacker could use this to cause a denial of service, or execute arbitrary code. Manfred Paul discovered that Firefox incorrectly handled MessageManager listeners under certain circumstances. An attacker who was able to inject an event handler into a privileged object may have been able to execute arbitrary code.
cda91a51f7eccf5cc349e1e3b85719bd26d54ad0308e44c693aedf48562d1b72Debian Linux Security Advisory 5647-1 - Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix, which might result in denial of service or information disclosure.
1bf3eff1b405cc8734e78a924bf59118ea64667832f1c6ee614a890520f6a767Debian Linux Security Advisory 5646-1 - Multiple security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in cross-site scripting, SQL injection, or command injection.
d9158a48c8ed071329b9eb3eddd4e00641007c015236908127fc8e2d8c7008c6Debian Linux Security Advisory 5645-1 - Manfred Paul discovered a flaw in the Mozilla Firefox web browser, allowing an attacker to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process.
4f5d9a853e227dab14b126ce8536d5e0bccc071fc1e3eea740c201c1d75a9146Red Hat Security Advisory 2024-1415-03 - An update for edk2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
06f4e42b552322b396a363e09e38ea6702dfdb6f12f3e147c5ff4b95bcc9c13bRed Hat Security Advisory 2024-1387-03 - An update for ovn22.03 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
3289982906fdb777448ec68c5529f96a1a5c09fe6c1ce49db094c16587037eb3Red Hat Security Advisory 2024-1372-03 - An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.7 for RHEL 8. Issues addressed include denial of service and heap overflow vulnerabilities.
ddf23f225606b6f1989547d25db25b128063011c571c429f2794c27c4ca9d3b8Red Hat Security Advisory 2024-0692-03 - An update is now available for Red Hat OpenShift GitOps v1.10.2. Issues addressed include cross site request forgery, denial of service, and traversal vulnerabilities.
57186fb201c2a67b6d9e056c94b357cf2ab5c8553dea6f5ead3a46074c62785dRed Hat Security Advisory 2024-0691-03 - An update is now available for Red Hat OpenShift GitOps v1.9.4. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include cross site request forgery, denial of service, and traversal vulnerabilities.
82af22a6e38cb506d44fc04c2626a1c0992c314db7225f5d4421a07d6b467ab6Red Hat Security Advisory 2024-0689-03 - An update is now available for Red Hat OpenShift GitOps v1.11. Issues addressed include a cross site request forgery vulnerability.
403beb4a6d3705a0f787c7f7e0212c239ae35e2c4170c5778d00603636e4d5a3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed