Red Hat Security Advisory 2023-3455-01 - OpenShift Serverless version 1.29.0 contains a moderate security impact. Issues addressed include a denial of service vulnerability.
fb699e506aa118c17dbd87137af0d14f01a829ce5c8b64ec9846e9ca82990b0bMacro Expert version 4.9 suffers from an unquoted service path vulnerability.
08423d6a147346b55d4780d55e7ef0bdcc86f55332bd7be42e326e1027fd4fdbUbuntu Security Notice 6139-1 - Yebo Cao discovered that Python incorrectly handled certain URLs. An attacker could use this issue to bypass blockinglisting methods. This issue was first addressed in USN-5960-1, but was incomplete. Here we address an additional fix to that issue.
7a7140725b53dce5e551f165f1dc3c5781b1c25880cb776bf9f7bae38fccf55dRed Hat Security Advisory 2023-3435-01 - This release of RHACS 3.74.4 includes a fix for CVE-2023-24540 by building RHACS with updated Golang.
4fe2d77bc3da788cf0ca6899dcfd04ef999f40d4632db9fff2cc42c4509dccacRed Hat Security Advisory 2023-3421-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector, the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.7.3 serves as a replacement for Red Hat JBoss Web Server 5.7.2. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References. Issues addressed include double free and use-after-free vulnerabilities.
b7e1a0f2d05b87882ca88c3378b08af039b9aeff34f0360edcb8d3063a932038WordPress WP File Manager plugin version 7.1.7 appears to leave backups in a world accessible directory under the document root.
c9005fcccee0a6133165a91ee9c215da9f0dd7075b27a4f3a42d3ac18c40a37eRed Hat Security Advisory 2023-3427-02 - The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System distribution but is now maintained independently. Issues addressed include a code execution vulnerability.
1f85c9dc22874fd554514c16eaf4600272512ba74162aa4381d881b58878ee29Red Hat Security Advisory 2023-3354-01 - Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 2 serves as a replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include bypass, denial of service, double free, out of bounds read, out of bounds write, and use-after-free vulnerabilities.
872079b042f0763e48a97309fcbc46a8880cc332bd629c972bb2a0f58175222aRed Hat Security Advisory 2023-3420-02 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector, the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.7.3 serves as a replacement for Red Hat JBoss Web Server 5.7.2. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References. Issues addressed include double free and use-after-free vulnerabilities.
7dc1c42b2d4f1fd9c491c25d54360d67b2b29c51a72221e9df51c6909ebdb4f8Red Hat Security Advisory 2023-3424-02 - The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System distribution but is now maintained independently. Issues addressed include a code execution vulnerability.
555d533a6f16272f59cd29b20e58e47469962662467c8b4d937913c986cb8ed1Red Hat Security Advisory 2023-3355-01 - Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 2 serves as a replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include bypass, denial of service, double free, out of bounds read, out of bounds write, and use-after-free vulnerabilities.
cced047a9c8b64215ce3e215ff5c91c3249ad0174bafa7de957f9317816d705dWordPress Tree Page View plugin version 1.6.7 suffers from a cross site scripting vulnerability.
81cfba1089df0f7ab6bde68fbce6e6c688882e1b5137f11a580648b9886c9193Red Hat Security Advisory 2023-3450-01 - OpenShift Serverless 1.29.0 has been released. The References section contains CVE links providing detailed severity ratings for each vulnerability. Issues addressed include a denial of service vulnerability.
da7236d0f2323c0684fbb3d6fc94e6e005e11ba6da118b55eaf878f9f6e2b5e0WordPress WPtouch Pro version 4 appears to leave backups in a world accessible directory under the document root.
65984e1a3efd66a52431d7ebf5925f03c78ba05afc631500a01fc5a24e0ea25e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed