Red Hat Security Advisory 2020-0540-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
093a6b0f2cb100fde3128d6893134efba26147263f605ec9272cf28fd502f62cRed Hat Security Advisory 2020-0541-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Issues addressed include a deserialization vulnerability.
90fe1ee5b7f3046f2ce6eeefe392f46a872cd5ed8cdf6cebc511ba9775cbed0dOpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
b2c0caa673b8cfef73585dedf276997f5ca69bb3d523ce4e080f70dfcb23c56cRed Hat Security Advisory 2020-0543-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow and use-after-free vulnerabilities.
8ab8efed79f5f3bd7cd516f00264a695888543a958fe8fbb221191731955a067Red Hat Security Advisory 2020-0544-01 - The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Issues addressed include denial of service, null pointer, and out of bounds write vulnerabilities.
b0a7cd24faf58381d9944e0f03bca872a110b57e09834c7814f9ff0b81d45b1bRed Hat Security Advisory 2020-0542-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include code execution, cross site scripting, denial of service, deserialization, and traversal vulnerabilities.
4f19a78dd5d3c61c3ce79c0d1075a43722dda00bc3563f1213bddfe1887eb30dUbuntu Security Notice 4280-1 - It was discovered that ClamAV incorrectly handled memory when the Data-Loss-Prevention feature was enabled. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service.
0cc06ff0e1d6b53648bddd88865336add2227295352f7ba5a0ee56c72feda1d1Ubuntu Security Notice 4282-1 - It was discovered that PostgreSQL incorrectly performed authorization checks when handling the "ALTER ... DEPENDS ON EXTENSION" sub-commands. A remote attacker could possibly use this issue to drop any function, procedure, materialized view, index, or trigger under certain conditions.
b1f67c6f75b1c9cef8525f2d03601895acffa27cc699defa89fb67aff394cf53Ubuntu Security Notice 4281-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
7e5454c9423262054de81dc667749168a6e52fd2ff359b5a60cdd252e8ef32b9Debian Linux Security Advisory 4626-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names.
f6816b624654c7e22f816bc23604063ee2015df2829ee2ecf33737fd6009f293Debian Linux Security Advisory 4627-1 - Cross site scripting, denial of service, and various other vulnerabilities have been discovered in the webkit2gtk web engine.
f0fdc31ab869bf51c7f25aa2d0563f1ffb0cba5df6bb5d7d99c9d1cba14fe05eUbuntu Security Notice 4279-1 - It was discovered that PHP incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS. It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. Various other issues were also addressed.
35c44b2639f51e3d5109181fec1017d9dad7dc903a468c990166ee3dc77f03daWordPress WP Sitemap Page plugin version 1.6.2 suffers from a persistent cross site scripting vulnerability.
3377ded1e0f525ddee5f75e066c8568cbbd86ff93ff9dc98cf1eea64f5fca115The Bitdefender parsing engine supports the GZIP archive format. The parsing engine can be bypassed by specifically manipulating a GZIP Archive (Compression Method) so that it can be accessed by an end-user but not the Anti-Virus software. The AV engine is unable to scan the archive and issues the file a "clean" rating.
c256232508baed278b7019fdb1635fe3c42c5be13f855d4c505917c5e8668458Lulzbuster is a very fast and smart web directory and file enumeration tool written in C.
81cc362508c138f517757bc1069bf0435771ac5b16c7997732983080243e716e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed