Red Hat Security Advisory 2020-3585-01 - Red Hat JBoss Enterprise Application Platform CD20 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform CD20 includes bug fixes and enhancements. Issues addressed include XML injection, deserialization, man-in-the-middle, memory exhaustion, remote SQL injection, and traversal vulnerabilities.
8b3a2c2f6830bb1355631c1c8b746bafadd1627926c2cc0323c535706f9f733fRed Hat Security Advisory 2020-3581-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a password leak vulnerability.
ad853c6d567b09664b902360df96adf9938e41523967c5d88fb4937412a5c0baGentoo Linux Security Advisory 202008-24 - Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in the arbitrary execution of code. Versions less than 8.262_p01:8 are affected.
221e15e177c9d60e2f40a7d0acfa79376696e22ed27b68df7fd5e90ce6039c46Gentoo Linux Security Advisory 202008-23 - A vulnerability in chrony may allow a privileged attacker to cause data loss via a symlink. Versions less than 3.5.1 are affected.
0e72365869ffc88090f4698bf4341be2269ef89bec5be6dbec57920bf84c3fd1Gentoo Linux Security Advisory 202008-22 - Multiple vulnerabilities have been found in targetcli-fb, the worst of which could result in privilege escalation. Versions less than 2.1.53 are affected.
fa34d09c34fa3259386cad22533bbb5622d4f428e5937a0634176fe5b999f60bApache2 suffers from an incorrect handling of large requests issue in mod_proxy_uwsgi.
a6d25204a474a382b45dc4bcc2aef5cc3b47408552e918aedeac6dce35405571Gentoo Linux Security Advisory 202008-21 - A vulnerability in Kleopatra allows arbitrary execution of code. Versions less than 20.04.3-r1 are affected.
e1c55ad77a02f9ad386f9231473baf38bf8f681b228eed3e9f90e21eaba9dec2Gentoo Linux Security Advisory 202008-20 - Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which could result in the arbitrary execution of code. Versions less than 9.52 are affected.
ae7145ed74d18bfb3784312e9db7332b2b5c4185d5cce351690b27a3c9c707e7Gentoo Linux Security Advisory 202008-19 - Multiple vulnerabilities have been found in BIND, the worst of which could result in a Denial of Service condition. Versions less than 9.16.6 are affected.
7e86ed90997a56c060545bffa20785d25efa20fa00c9f3b6ccd5f08740562da0Debian Linux Security Advisory 4757-1 - Several vulnerabilities have been found in the Apache HTTPD server.
477fb63b920c27e1d3a64f470a6550d15e30af94541beebdc96cfddf4a5d21a5MikroTik RouterOS suffers from NULL pointer dereference, memory corruption and division by zero vulnerabilities.
093cf827a466522125a9a60ebaa8035bdab73e9adbf53421b45d078526ed91b9The VSIX Installer of Visual Studio allows for revival of expired code-signing certificates and modification of timestamps.
1932bca2b0e783b85e85684f614bf214f5590a29611bd69f1965b60a056e9d5eDebian Linux Security Advisory 4754-1 - Multiple security issues have been found in Thunderbird which could result in the execution of arbitrary code or the unintended installation of extensions.
3981bb9f2545755f1cdf95e9bb3980e31dc5d26cb8f57a58049de6efb9f6c11cDebian Linux Security Advisory 4756-1 - Faidon Liambotis discovered that Lilypond, a program for typesetting sheet music, did not restrict the inclusion of Postscript and SVG commands when operating in safe mode, which could result in the execution of arbitrary code when rendering a typesheet file with embedded Postscript code.
bfdff4be267892f408601b1cfa29fd5f975363de871cb3de0774e87e4bc19055Debian Linux Security Advisory 4741-1 - Tobias Stoeckmann discovered an integer overflow in the json-c JSON library, which could result in denial of service or potentially the execution of arbitrary code if large malformed JSON files are processed.
a624d5ab564c8fd412469da7a39fbfdbbb94b00bafbaef4eeaf9161434f5d3b9Debian Linux Security Advisory 4744-1 - It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, is prone to cross-site scripting vulnerabilities in handling invalid svg and math tag content.
1cd30b3d54f45f2e18cfaf9ea71c657a8c040777efe171720fd0843567fa80a8Debian Linux Security Advisory 4746-1 - Several vulnerabilities were discovered in net-snmp, a suite of Simple Network Management Protocol applications, which could lead to privilege escalation.
83b5d59ffab79a217eb9cf992eef6fe4c92aabc95d5b419a5b1ab1082a241ed6Debian Linux Security Advisory 4747-1 - A directory traversal vulnerability was discovered in Icinga Web 2, a web interface for Icinga, which could result in the disclosure of files readable by the process.
acc8acd40cdce4196aae50a16724f8ae73cd370fa63d37da04ba26c0f989d690Debian Linux Security Advisory 4748-1 - Multiple security issues were discovered in Ghostscript, the GPL PostScript/PDF interpreter which could result in denial of service and potentially the execution of arbitrary code if malformed document files are processed.
1e70c3877e5bb25cc59143e89941cafd87e7e571a726fdad370fe74d42112bbdDebian Linux Security Advisory 4750-1 - It was reported that the Lua module for Nginx, a high-performance web and reverse proxy server, is prone to a HTTP request smuggling vulnerability.
069a0750508098f2ee6bfc51176f8bbdb3174e2266c7e9b5ec99e5b2a52e854fDebian Linux Security Advisory 4752-1 - Several vulnerabilities were discovered in BIND, a DNS server implementation.
237dadcb5460cd41550b3d247f118957ce0398434f7b64164ff802d0bf414c5cDebian Linux Security Advisory 4753-1 - A heap-based buffer overflow flaw was discovered in MuPDF, a lightweight PDF viewer, which may result in denial of service or the execution of arbitrary code if a malformed PDF file is opened.
a720d618b0a524b333005786d05637f0fece2d59c918a769a799ef1108e12769Debian Linux Security Advisory 4755-1 - Multiple security issues were found in the OpenEXR image library, which could result in denial of service and potentially the execution of arbitrary code when processing malformed EXR image files.
84054f2502a28bc847257291db8abc11cfced6707361d33b2bf8f7d0a6344057Gentoo Linux Security Advisory 202008-18 - Multiple vulnerabilities have been found in X.org X11 library, the worst of which could result in the arbitrary execution of code. Versions less than 1.6.12 are affected.
e3dcf0ff66dcf77049ea1208252a28831ead0b0d320e99ef1dd9274d980b25a0Gentoo Linux Security Advisory 202008-17 - Multiple vulnerabilities have been found in Redis, the worst of which could result in the arbitrary execution of code. Versions less than 5.0.9 are affected.
db24a85e4e23bd66c5ed821031a74352b867e8b531b443300307014d175cb546
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed