Red Hat Security Advisory 2024-2559-03 - An update for python-jwcrypto is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
d57c593f87b1c3af1db8e653f8db1f35bb9247bc2729d39ae842d3a029078435
Red Hat Security Advisory 2024-2551-03 - An update for bind is now available for Red Hat Enterprise Linux 9.
cee430f5861c0757f723a4218b75b0ac07d7cafc603ad11ac48adbd5b50a5ea2
Red Hat Security Advisory 2024-2550-03 - An update for buildah is now available for Red Hat Enterprise Linux 9.
95e9b2617a9499f5ac3220724725f11215861d506bfe91381691605bae4ed0d5
Red Hat Security Advisory 2024-2549-03 - An update for skopeo is now available for Red Hat Enterprise Linux 9.
a2e3520f21468945f6063da19b3d74741f22c10074dbd8bc30bb8e9278fbd513
Red Hat Security Advisory 2024-2548-03 - An update for podman is now available for Red Hat Enterprise Linux 9.
59072952552698f70fca1669b17efd060f2f7d6636e9dfd477c394135cac2b78
Red Hat Security Advisory 2024-2090-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
a17a8ca7ef67ed58fcfe646b9180feeffd68c2744715ca05710ddf9b904b4428
Red Hat Security Advisory 2024-2089-03 - An update for podman is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.
77c7e76b7b8d8f9048567e8c27381a19c7fffd029e89c036d6762065ddb5f266
Red Hat Security Advisory 2024-2085-03 - An update for libreswan is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
a7d068038fc4ecc8c94d0da93085d0b10c0aedcbcc4ba1254cc0b39da2c45448
Red Hat Security Advisory 2024-2082-03 - An update for libreswan is available for Red Hat Enterprise Linux 8.6 Extended Update Support.
7155b2bfa6adfc04f49470749b223a9c6c1350b58cb30d6bbbdb0b68c71142e2
Red Hat Security Advisory 2024-2081-03 - An update for libreswan is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
cfc3b2ff2aa5b856176f34876b2abb0d2f06f3b167fe8f9570493cb474fb66f5
Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in PspBuildCreateProcessContext that leads to a stack buffer overflow.
0d419f34140c82908299252d3794e80651aedada14ee132d75462cbcf8700e96
Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in NtQueryInformationThread that leads to an arbitrary write.
17303e9dc06042a7d7b761657e3f97ac797834b1b9703bc726107b814b22b014
This is the full Windows privilege escalation exploit produced from the blog Exploiting the NT Kernel in 24H2: New Bugs in Old Code and Side Channels Against KASLR.
359dac8448d7ce433fa3541cbb436c20ba5d34c9e0efb99cd95d1c887c779304
osCommerce version 4 suffers from a cross site scripting vulnerability. This finding is another vector of attack for this issue already discovered by the same researcher in November of 2023.
f8285fdf1bc0d4437ae633d7dde7f4f607db4b9ab45579773b774ad89e950ca2
Ubuntu Security Notice 6758-1 - It was discovered that the JSON5 parse method incorrectly handled the parsing of keys named __proto__. An attacker could possibly use this issue to pollute the prototype of the returned object, setting arbitrary or unexpected keys, and cause a denial of service, allow unintended access to network services or have other unspecified impact, depending on the application's use of the module.
10c35ac640b9fc8c5f799d18da39309e30d744b585fd766bdde2765ee9ecbda3
Ubuntu Security Notice 6761-1 - It was discovered that Anope did not properly process credentials for suspended accounts. An attacker could possibly use this issue to normally login to the platform as a suspended user after changing their password.
f6658138c22c33ef65562ccb306efc0364b88646591930b4009dc3aa895fa34f
Ubuntu Security Notice 6759-1 - It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service.
3a5628139a70311c31214964c15cd8597177950d361357a28e3507256052bf61
Ubuntu Security Notice 6757-1 - It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. It was discovered that PHP incorrectly handled certain cookies. An attacker could possibly use this issue to cookie by pass.
d148d55e0339c28ab206c4e04376d9c0144caabdf1c279dfc99b6ae169bc4172
Red Hat Security Advisory 2024-2528-03 - An update for mingw-glib2 is now available for Red Hat Enterprise Linux 9.
387f40d4a5321b87c83727ab321d5d491928cde0c555e05bc3544de3f70e4559
Red Hat Security Advisory 2024-2525-03 - An update for mingw-pixman is now available for Red Hat Enterprise Linux 9. Issues addressed include integer overflow and out of bounds write vulnerabilities.
7611f233f16e4003c69a91ee23499cbe6bed6fd4c7a8d26442bbf86975a89a03
Red Hat Security Advisory 2024-2517-03 - An update for wpa_supplicant is now available for Red Hat Enterprise Linux 9. Issues addressed include a bypass vulnerability.
8524f45342379f23a28563d69bc1323f5335b59713270fa1753cd0f9a39bd719
Red Hat Security Advisory 2024-2512-03 - An update for file is now available for Red Hat Enterprise Linux 9. Issues addressed include a buffer over-read vulnerability.
c9757f1fb62938415e74e1b72c2623972dd8192885f87e85b130055785b92ddd
Red Hat Security Advisory 2024-2504-03 - An update for libssh is now available for Red Hat Enterprise Linux 9.
319c2fb25725f4c923d65a48a8b63b79d1937db033f4405d2658a55a308bc12f
Red Hat Security Advisory 2024-2483-03 - An update for traceroute is now available for Red Hat Enterprise Linux 9.
951bf24a953cbd3ecf0024db056d9ef69269d38b3117598eb04e129fe43159b4
Red Hat Security Advisory 2024-2463-03 - An update for systemd is now available for Red Hat Enterprise Linux 9.
aa80114f691729899b2c102d9086bfb2e6b84c5790e5c17bd15b2a8ad3a1da48