Gentoo Linux Security Advisory 202210-24 - Multiple vulnerabilities have been found in FreeRDP, the worst of which could result in remote code execution. Versions less than 2.8.1 are affected.
f763522e9245e1f76cd06cae1cda9f7a53ed40164bca51a590f630a07b542f3bRed Hat Security Advisory 2022-1715-01 - Red Hat Advanced Cluster Management for Kubernetes 2.3.10 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs. Issues addressed include bypass and traversal vulnerabilities.
3d159d78f952dd38855eff547380186ff43d2649b5b56d70f73248bbeae9a417Red Hat Security Advisory 2022-1681-01 - Red Hat Advanced Cluster Management for Kubernetes 2.4.4 General Availability release images. This update provides security fixes, bug fixes, and updates container images. Issues addressed include bypass and traversal vulnerabilities.
1bee26055b1d06a4bc9715b98ed40f38564faecb40aaae8083d0ca2eed4c2283Red Hat Security Advisory 2022-1546-01 - The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones.
10138639163f878ed972fb49ef0f3a8004e8a728027c1114d9de149bb51da28aUbuntu Security Notice 5304-1 - Kevin Backhouse discovered that PolicyKit incorrectly handled file descriptors. A local attacker could possibly use this issue to cause PolicyKit to crash, resulting in a denial of service.
d4fe0dc859ca9f481562f7719091c3c6f63d05c071bed985bd5ecb5558850e9cUbuntu Security Notice 5154-1 - It was discovered that FreeRDP incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or cause a crash. It was discovered that FreeRDP incorrectly handled certain connections. An attacker could possibly use this issue to execute arbitrary code or cause a crash.
781352e6ee96adcd0dbbf4039c87cf3d2b578ed700eac127e004697252060c6dRed Hat Security Advisory 2021-4621-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
25f350c3b73b8f530c038049ac1c3390c0f3ed2f058a2b01c02ab2a56949da5aRed Hat Security Advisory 2021-4622-04 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
70b8e892815233b2a42fdf2e63085b3dbf75124391f9da3d7a8c6670b75a141bRed Hat Security Advisory 2021-4623-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
22391973c5ba52ff07ad630200253a1268473498c7baa163a3715c2867c765e3Red Hat Security Advisory 2021-4620-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
b3dfa889b13243595f779e5fc1af106d89950a1aed0acd25f90cf8ed08301537Red Hat Security Advisory 2021-4619-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
234077a9cbb436db4b018f74befc08f40d8988006692e78bc42c9e43f64bbd70FreeSWITCH versions 1.10.5 and below fail to authenticate SIP SUBSCRIBE requests by default.
ded0b19e81a7730e97640eb6c3d7fda36f567e10ebdd5b999d5b1929484ee8a4FreeSWITCH versions 1.10.6 and below suffer from a SIP digest leak vulnerability. An attacker can perform a SIP digest leak attack against FreeSWITCH and receive the challenge response of a gateway configured on the FreeSWITCH server. This is done by challenging FreeSWITCH's SIP requests with the realm set to that of the gateway, thus forcing FreeSWITCH to respond with the challenge response which is based on the password of that targeted gateway.
f3e80023a973da7d0680ad72ce2905cfe9105bbb49758f1e37e5b0f8f8570020
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed