Debian Linux Security Advisory 4806-2 - The update for minidlna released as DSA 4806-1 introduced a regression when purging the package. Updated minidlna packages are now available to correct this issue.
fa016f6a33c4b414fd5fb1e640fa079e1c96cd11e815202c4f08047c24cff24fDebian Linux Security Advisory 4823-1 - It was discovered that incorrect validation of JWT tokens in InfluxDB, a time series, metrics, and analytics database, could result in authentication bypass.
f27a1ee5809e7396fcc1df33173759952f11d2dc156b6ec1306744a1bfdb5860Debian Linux Security Advisory 4832-1 - Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure.
f8968b495112cc61d8cd316cc29fb53c1e3ef24394aa6e85331e4c668fff0545Red Hat Security Advisory 2020-0310-01 - Apache XML-RPC is a Java implementation of XML-RPC, a popular protocol that uses XML over HTTP to implement remote procedure calls. Issues addressed include a deserialization vulnerability.
0e259ef4f49a543084a24dec33476a00eb4a4768db21c808939c1f234914f2abUbuntu Security Notice 4262-1 - Daniel Preussker discovered that OpenStack Keystone incorrectly handled the list credentials API. A user with a role on the project could use this issue to view any other user's credentials.
d08410626ee722a2245fd4e1c50b7b76472e8ac15b9df8d7edb8839823169ff0Red Hat Security Advisory 2020-0296-01 - OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Issues addressed include a buffer overflow vulnerability.
e2a9d3380368d436b68b17897578d1d7b594dc48bbd96403c5d2eaba16418482Red Hat Security Advisory 2020-0295-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Issues addressed include buffer overflow, bypass, and use-after-free vulnerabilities.
d61870d2a6e54f89808b2e671efa2c80f13f4beb92cbeaed3dce30408f198d5aRed Hat Security Advisory 2020-0293-01 - Simple DirectMedia Layer is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. Issues addressed include a buffer overflow vulnerability.
73f9a1527be9f035240daf9623c9961fd51e036f1e2661961914b625b5aa37c0Red Hat Security Advisory 2020-0291-01 - A library to handle bidirectional scripts, so that the display is done in the proper way, while the text data itself is always written in logical order. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.
d45eb3ce5260554660bd8b280dddf7c95ef05a97782b5da4347e3421fc10cdd7Red Hat Security Advisory 2020-0292-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Issues addressed include buffer overflow, bypass, and use-after-free vulnerabilities.
62d0a879d8d04aa9483212373ce7c5d68d507752d65354fd939df215309c87f2Debian Linux Security Advisory 4610-1 - Multiple code execution vulnerabilities have been addressed in the webkit2gtk web engine.
b72fff7e1e706fc40373f9789f0230cfdf746cfdb51cbfc6194e3a233f5e7081Apple Security Advisory 2020-1-29-1 - iCloud for Windows 7.17 addresses buffer overflow, code execution, cross site scripting, and denial of service vulnerabilities.
5f4d60bc66dce9f0be786bc027fcc7c52455ed33a00cdb73bd7ad2d31cf7c2e4Apple Security Advisory 2020-1-29-2 - iCloud for Windows 10.9.2 is now available and addresses buffer overflow, code execution, cross site scripting, and denial of service vulnerabilities.
99e8e80432459a94b02cf3052c928d0094dfda3ef2f7828340629294beb8f50bDebian Linux Security Advisory 4611-1 - Qualys discovered that the OpenSMTPD SMTP server performed insufficient validation of email addresses which could result in the execution of arbitrary commands as root. In addition this update fixes a denial of service by triggering an opportunistic TLS downgrade.
b13a8757f4f9e0b2f590ed0cdbe4d23e4718fa37e2ea6ca4ed4d48c3bfa33f2aUbuntu Security Notice 4261-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
c0cae97b6844e451bee938768b445c5af8fef387f98dc53a5b4ea8fcae469fa0Ubuntu Security Notice 4259-1 - Michael Stepankin and Olga Barinova discovered that Apache Solr was vulnerable to an XXE attack. An attacker could use this vulnerability to remotely execute code.
3931c673f360301aa8f26e6e66ddaed7522a4f3629ff128ef0db01f1b7edb518Red Hat Security Advisory 2020-0279-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.
e7499558d2de57797ca19af08c3c3f0cae1c51b67d792eb2b26ff82a4722f8e4Red Hat Security Advisory 2020-0273-01 - SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. A table corruption detection issue has been addressed.
688da5fb1b1dbc8c4a4680ffe3c458224c80d31b4d98e3a56074f499c297eef3Apple Security Advisory 2020-1-28-1 - iOS 13.3.1 and iPadOS 13.3.1 are now available and address code execution vulnerabilities.
451f9f0db4b53867f6b4613f74a664aaee0fadcb5afed494d424333c909099b5Red Hat Security Advisory 2020-0274-01 - OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Issues addressed include a buffer overflow vulnerability.
4ce11b16929a1a9b3767262655cabc8fa00c1cff6728283b65233b33cfed3a8bApple Security Advisory 2020-1-28-2 - macOS Catalina 10.15.3, Security Update 2020-001 Mojave, and Security Update 2020-001 High Sierra are now available and address buffer overflow, bypass, and code execution vulnerabilities.
6dc59a831c4eeb00f22a91e88c410f4413de1117cf660dac3d76799ab2d9c97dApple Security Advisory 2020-1-28-4 - tvOS 13.3.1 is now available and addresses code execution vulnerabilities.
8811822470152c7c5c5739e0be582b4d494845ed881e590aa7e2da5e6d1452fbApple Security Advisory 2020-1-28-3 - watchOS 6.1.2 is now available and addresses code execution vulnerabilities.
dbe2c3cb8a3c6e9e7d49c188d63249672b132824e400c3434a381fea33e430a0Apple Security Advisory 2020-1-28-5 - Safari 13.0.5 is now available and addresses address bar spoofing and password disclosure in transit issues.
1bc6ee3c734c1df22e54ccc3a46190ad2a73832cd3ad87cc91a710439fcb7287Apple Security Advisory 2020-1-28-6 - iTunes for Windows 12.10.4 is now available and addresses a filesystem access issue.
9578f139cdb133f6a9e24a38333666affc55bfc2155c102ca3c4d9e19ebcc47c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed