Ubuntu Security Notice 4070-1 - Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.04 have been updated to MySQL 5.7.27. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.
8e6d55b03963e3868ff46ee7677119f5Apple Security Advisory 2019-7-23-3 - iCloud for Windows 10.6 is now available and addresses code execution and cross site scripting vulnerabilities.
98cc5a2a662daa690366a47dd9e07e3eTufin SecureChange uses Richfaces version 4.3.5 which suffers from a remote code execution vulnerability.
2743f520f90c45673a1da076a342ebdfApple Security Advisory 2019-7-23-2 - iTunes for Windows 12.9.6 is now available and addresses code execution and cross site scripting vulnerabilities.
f8389ffec863bcb70370d22531dc7142Apple Security Advisory 2019-7-23-1 - iCloud for Windows 7.13 is now available and addresses code execution and cross site scripting vulnerabilities.
96064e089020b42473b27575a18b6a66Ovidentia version 8.4.3 suffers from a cross site scripting vulnerability.
7948505d048e13418b525f7529298364This whitepaper is a technical analysis of BlueKeep with a path for exploitation.
7ba4b8d09d46d3096f36895599cb528cUbuntu Security Notice 4071-1 - It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information. It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
c6470681d0c096bdda4171065c21834cOvidentia version 8.4.3 suffers from a remote SQL injection vulnerability.
079c074a2e4e7544864f48b6b949dae1Red Hat Security Advisory 2019-1839-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Issues addressed include a deserialization vulnerability.
da6f807bad9a52943083d8217d12a5a8Red Hat Security Advisory 2019-1833-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components. This update fixes various bugs and adds enhancements.
4c7b7d7ddc435f334046dff80e999716FreeBSD Security Advisory - Insufficient validation of environment variables in the telnet client supplied in FreeBSD can lead to stack-based buffer overflows. A stack-based overflow is present in the handling of environment variables when connecting via the telnet client to remote telnet servers. This issue only affects the telnet client. Inbound telnet sessions to telnetd(8) are not affected by this issue. These buffer overflows may be triggered when connecting to a malicious server, or by an active attacker in the network path between the client and server. Specially crafted TELNET command sequences may cause the execution of arbitrary code with the privileges of the user invoking telnet(1).
ab448af83d8c939a666a34e2fc68c7f5Ubuntu Security Notice 4069-1 - It was discovered that an integer overflow existed in the Linux kernel when reference counting pages, leading to potential use-after-free issues. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Jann Horn discovered that a race condition existed in the Linux kernel when performing core dumps. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.
6df771797de75dc230e8feb33ae00aaeWordPress Hybrid Composer plugin version 1.4.6 suffers from an unauthenticated configuration access vulnerability.
917f63a9a09de6eca455a886654c34eb155 bytes small Linux/x86_64 wget Linux enumeration script shellcode.
f2c30e98a3f66298f4742eb06d15fb67Mikrotik RouterOS versions prior to 6.44.5 and 6.45.1 suffer from stack and resource exhaustion vulnerabilities.
eeba1d7bbe580c07aa40fc01480b5df5
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed