Red Hat Security Advisory 2020-0471-01 - The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. Issues addressed include a buffer overflow vulnerability.
aa3da2b2017fd512cdbfd1d3ac8867a001d77cb75767b8620a665847af5fbea7
Red Hat Security Advisory 2020-0466-01 - The nss-softokn package provides the Network Security Services Softoken Cryptographic Module. An out-of-bounds write was addressed.
328281cc43d7f4c03bf42e66dae205249de58525158bbb33aca4ee51247f013c
Google Chrome suffers from a heap buffer overflow in PasswordFormManager::OnGeneratedPasswordAccepted.
f5139e268214cd751e4b2cf1b926e0dd357c22780a625c86477985f58e8f9907
Google Chrome suffers from a heap use-after-free vulnerability in PannerHandler::TailTime.
4976b111be33279e517731b1c015b3f56800e2b74a649f459bafdae592200209
Red Hat Security Advisory 2020-0470-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP5. Issues addressed include a deserialization vulnerability.
6216e8d4e1da4d2f6f992918c2fa47b00a0bea765abdfaa4164bac0dbaa1b5c6
smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell meta-characters in a MAIL FROM field. This affects the "uncommented" default configuration. The issue exists because of an incorrect return value upon failure of input validation.
f42f9b3d984851bedec7966cba6c70991ad906a48462064b1ae90325c6aa112b
Red Hat Security Advisory 2020-0468-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP60. Issues addressed include a deserialization vulnerability.
f4ade7e35800211c52d601ac3df90ee3a3e02a9afba8ad250bfec55fedd9f93f
Wedding Slideshow Studio version 1.36 suffers from a buffer overflow vulnerability.
c64c60f4378c95228ac5e2af236e47ca5859da652cd8d4d1173a26e1a2e24e8f
Red Hat Security Advisory 2020-0469-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP5. Issues addressed include a deserialization vulnerability.
88ac1a565b7fe278abb5e9522506dcc68f41637bf39c819df9bb1b27a22cb707
Red Hat Security Advisory 2020-0467-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP60. Issues addressed include a deserialization vulnerability.
eb204e04b7f44c1169bc42dada42ed5f5821d9faf7768db69b21ef904c45b71a
DVD Photo Slideshow Professional version 8.07 Name and Key buffer overflow proof of concept exploits.
e348f70d835a2767f4732b7abe15ec0d321e3c2364bfa358cd7fa92d91ebc397
CHIYU BF430 TCP IP Converter suffers from a persistent cross site scripting vulnerability.
a97e6652b54a6e213462a18bf798714e11945b4cee44fe4556ec6fbe64c90f92
Red Hat Security Advisory 2020-0465-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP5. Issues addressed include a deserialization vulnerability.
76f32fadc78b4fab7d8eb98e47672443e23346855409ebffea2c3b14e12c4e00
FreeSSHd version 1.3.1 suffers from an unquoted service path vulnerability.
449c3689a63dcfbbe6a86ba60e7ead07b589382add0fdd290e157f92550d7d69
Sync Breeze Enterprise version 12.4.18 suffers from an unquoted service path vulnerability.
c7ceb40e2229776bc765c1cdb1097483ca161bc28a53be6248903b339cecf168
Disk Savvy Enterprise version 12.3.18 suffers from an unquoted service path vulnerability.
a535a5f2d8414192ea3be648c6a6e8f17320a7c7e73858acc1dfd75dcfaa7084
Disk Sorter Enterprise version 12.4.16 suffers from an unquoted service path vulnerability.
9dbb7d8c35e0db2f23e2299adbf5a0d98d35b6df794a1ba9ef998ba7e01faf75
freeFTPd version 1.0.13 suffers from an unquoted service path vulnerability.
dfc9722cae1f420638f5bce79b61f96dd2d4fa607dc9140751675d7f6b08afd3
Torrent iPod Video Converter version 1.51 suffers from a stack overflow vulnerability.
6841f495b852501a439f794e6afd2782a70855697efd15cadc9802173a931e21