TP-Link Archer version AX10(EU)_V1.2_230220 suffers from a buffer overflow vulnerability.
dbb3c9e33b20c6aceabbab481bdb707231dceff5c8b0c66638a369f483b946e6QuickJob Portal version 6.1 suffers from a cross site scripting vulnerability.
dbfdffa3607da7f93c2b4dfdb91952f74dafdab9f11566eca0357bf5b8696167Quicklancer Freelance Marketplace version 2.4 suffers from a cross site scripting vulnerability.
e7a5632b14a897cdc06452a521a4f101e52dab4733fd9d860ccb01ed88af799dQuickHomes Real Estate CMS version 1.3 suffers from a cross site scripting vulnerability.
098a48529b5365eaf9848c9a9f485bc29814fb86acfcbff5fda1fa9ef412a845Debian Linux Security Advisory 5431-1 - Xu Biang discovered that missing input sanitizing in Sofia-SIP, a SIP User-Agent library could result in denial of service.
3c4d4111998ef3a34b0bb6f1a93c91d2e4c3b9c52b45f6af7f60ab7e4c01c27eUbuntu Security Notice 6156-2 - USN-6156-1 fixed a vulnerability in SSSD. In certain environments, not all packages ended up being upgraded at the same time, resulting in authentication failures when the PAM module was being used. This update fixes the problem. It was discovered that SSSD incorrectly sanitized certificate data used in LDAP filters. When using this issue in combination with FreeIPA, a remote attacker could possibly use this issue to escalate privileges.
cff12c110b723c70a3c056682225eddeb8aad87a20fbf742235cc9b80e4d4bb6Debian Linux Security Advisory 5430-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, information disclosure or bypass of sandbox restrictions.
a4ece4420f8b96970d286b1d8fdd46ce7c0bbe2000da066ceb03829110b5bb0dRed Hat Security Advisory 2023-3644-01 - Red Hat OpenShift Service Mesh is the Red Hat distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. This advisory covers container images for the release.
d08e0901464777bd733a3a8059ea4b335dfa9bfe8b9bacda0a47df5480ff08a7Red Hat Security Advisory 2023-3645-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation. This advisory covers the RPM packages for the release. Issues addressed include a denial of service vulnerability.
3023d0e9a727cd7cb6e6e20ebd2258d11d98d83016ff62bc73e6192f91c39a04Ubuntu Security Notice 6169-1 - It was discovered that GNU SASL's GSSAPI server could make an out-of-bounds reads if given specially crafted GSS-API authentication data. A remote attacker could possibly use this issue to cause a denial of service or to expose sensitive information.
df060e2ce1ec794ae7168c4e9243c7bfd47159a3ee1765b9916ae15b749a4ad9Red Hat Security Advisory 2023-3641-01 - This release of Camel for Spring Boot 3.18.3.P2 serves as a replacement for Camel for Spring Boot 3.18.3.P1 and includes bug fixes and enhancements, which are documented in the Release Notes linked in the References. Issues addressed include denial of service, deserialization, resource exhaustion, and server-side request forgery vulnerabilities.
eb79672d81b6aa5092fafd004e07db829635eeae6f5dd78abb16d98cdb9e3928Red Hat Security Advisory 2023-3642-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. This new container image is based on Red Hat Ceph Storage 6.1 and Red Hat Enterprise Linux 9. Issues addressed include bypass, cross site scripting, denial of service, information leakage, spoofing, and traversal vulnerabilities.
299c64208e7b0372bf38a7af4b78ae479c755f82d2b80c7932c562b81810811aDebian Linux Security Advisory 5429-1 - Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code.
fdd9b5fe911c6dfc81948dc43f5046a8cc28aa6f9c6b86fbf96752879e1a8880Ubuntu Security Notice 6168-1 - Gregory James Duck discovered that libx11 incorrectly handled certain Request, Event, or Error IDs. If a user were tricked into connecting to a malicious X Server, a remote attacker could possibly use this issue to cause libx11 to crash, resulting in a denial of service.
fb33b3eca8869ce783b685384acb922fd56dd96e3d27a63f58e05c1b89544187Debian Linux Security Advisory 5428-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
438d24cfb222bcb67e2bb899b8d783634905739b4682fb5d053c932f28d87048Red Hat Security Advisory 2023-3622-01 - Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include bypass, code execution, cross site request forgery, denial of service, information leakage, insecure permissions, and resource exhaustion vulnerabilities.
b7935bb45130f797b9dd93023e22673b037f602a5fd4b10a7467504fa480ed2aRed Hat Security Advisory 2023-3624-01 - The Migration Toolkit for Containers enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API. Issues addressed include a denial of service vulnerability.
d2f80d582085aae75b12f07fd85ac399fe95b0c3197d108af14ac014209e5633Red Hat Security Advisory 2023-3623-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. These new packages include numerous enhancements and bug fixes. Issues addressed include cross site scripting and denial of service vulnerabilities.
bbec10712c46b161a37fe580fcd2ee0a0fbafcc62df830a5b2f2a7293a19de5eUbuntu Security Notice 6155-2 - USN-6155-1 fixed a vulnerability in Requests. This update provides the corresponding update for Ubuntu 16.04 ESM and 18.04 ESM. Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly leaked Proxy-Authorization headers. A remote attacker could possibly use this issue to obtain sensitive information.
e7f72324dcfd0ff54a72bd318a4ed3642af51dbad450ebe42f67439bf879c46bSuricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
e09f2f800d0e0cd2f97f21c505950ccc3dbb9ce5cfe808df9567b6d849a31055Debian Linux Security Advisory 5427-1 - An anonymous researcher discovered that processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited. An anonymous researcher discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
0fbab1aacc1423b6defd9d7bb32aec0f2fee5e21d84f90b8b66e6b78d6eef26bRed Hat Security Advisory 2023-3610-01 - Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include bypass, code execution, cross site request forgery, cross site scripting, denial of service, memory exhaustion, and resource exhaustion vulnerabilities.
7b9b64c4675eb47823910162607f47f837dc4f1a040d0a13d9a6614093eb3803Textpattern CMS version 4.8.8 suffers from a command injection vulnerability.
2569c44b070e9879f2f9546c69ac288a8ab586fa49aa12c88a7e27faf757f5e0WordPress Abandoned Cart Lite for WooCommerce plugin versions 5.14.2 and below proof of concept authentication bypass exploit.
a6f89cfb298bd156a4472f93e13a6411f9168c346e1e105e5bddc52630ec5c7dRed Hat Security Advisory 2023-3609-01 - Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform.
367908d515f3cf0e775f468ffbdcde02036bef8c556cc51467e799ad30fe043d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed