Gentoo Linux Security Advisory 202101-38 - A vulnerability was discovered in NSD which could allow a local attacker to cause a Denial of Service condition. Versions less than 4.3.4 are affected.
7d524441ccd8474adf4b85bdd76aa9cb9c85c2b7ff7a88a04dffde4e91306901
Ubuntu Security Notice 4714-1 - Zhihong Tian and Hui Lu found that XStream was vulnerable to remote code execution. A remote attacker could run arbitrary shell commands by manipulating the processed input stream. It was discovered that XStream was vulnerable to server-side forgery attacks. A remote attacker could request data from internal resources that are not publicly available only by manipulating the processed input stream. Various other issues were also addressed.
0599be6b3cfb387f0c1c305c18e99a24d7e7aabf6f5bb1820cebfd59b75b191b
Metasploit Framework version 6.0.11 msfvenom APK template command injection exploit.
0d9c5f7dc903dd1d7e2dd33b50690e3be7b460458dacf13578f2a28fa5ba3ec3
Packed.Win32.Katusha.o suffers from an insecure permissions vulnerability.
a9b5e83001190ef68d071f5929c56248aad49dd3be5021af063c90e76906e12d
Backdoor.Win32.MiniBlackLash malware suffers from a denial of service vulnerability.
990e85aa559b8d7872f4bd1d2d9c7414e72696a4e08982398c71d435a17e36c1
Online Voting System version 1.0 suffers from an authorization bypass vulnerability that allows for the password change of other users.
b5602920743becf85d943b0687ceab51b1b1fe2b42685c27fffed369ebcea8e3
Red Hat Security Advisory 2021-0299-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
47a6c099170886d0dfec4ce713a988a2cfc638ff6c8591e9a90a90b77ed1376e
BloofoxCMS version 0.5.2.1 suffers from a persistent cross site scripting vulnerability.
c6cc0a7902952943c480d0bed0bedebd44d4bb52108d4e042d32b75d376fb55a
Gentoo Linux Security Advisory 202101-37 - A buffer overflow in VLC might allow remote attacker(s) to execute arbitrary code. Versions less than 3.0.12.1 are affected.
4f3ec9b81da7090724694c74da49a355c57de39fca2fc9b1a27a44eb6f0dc55a
Gentoo Linux Security Advisory 202101-36 - A vulnerability in ImageMagick's handling of PDF was discovered possibly allowing code execution. Versions less than 6.9.11.41-r1 are affected.
c2ba100de84f7d1fd8ec3787eaeac17dfcce035fef1ed1f023f21d07def2b642
Online Grading System version 1.0 suffers from a remote SQL injection vulnerability.
b03d85739dc18f083afd092e5bcc7421a9399a88f8fcb6b91fbece090f151f02
Backdoor.Win32.Mhtserv.b malware suffers from a missing authentication vulnerability.
c2d962b6b33685f4a1b80d7ef4869d759d00c5699b31aa97936bf2d6accbf8a3
Red Hat Security Advisory 2021-0298-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
3522adef5d9665bda2b6a20a4478bdf85a0af546dacec458397fbdd1752a84dc
Quick.CMS versions 6.7 and below suffer from an authenticated remote code execution vulnerability.
c14f2374f378b8f14bdd754ad6b876269ddc8433b34763841ada668656c12a01
Home Assistant Community Store (HACS) version 1.10.0 suffers from a path traversal vulnerability that allows for account takeover.
06a8ea0658722e24ff3247bf292a001bb12ff1cf3cce3876e958d4add5ff945b
Backdoor.Win32.Zhangpo malware suffers from a denial of service vulnerability.
5cb8723bcc0056e506df32a4a5bd6da484f5fa7c392b129308a901e46c9a4dee
Backdoor.Win32.Zetronic malware suffers from a denial of service vulnerability.
58737cb63d2968feaacbe6dce8c7ad02a3d0289723f92f5a5dff7376fb89db3f
MyBB Hide Thread Content plugin version 1.0 suffers from an information leakage vulnerability.
7f46b890703ec52c6f242ce37fd468e2f2fd79d720184202e24037508b01fd8b
Red Hat Security Advisory 2021-0297-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
238fdcbe4d4917b8291e1febe41d0d12f2e523bf85472e50e2b701209c7c7d4b
If an application uses iconv() with an attacker specified character set, there's an assertion in the gconv buffer management code that can be triggered, crashing the application. The crash only occurs with ISO-2022-JP-3 encoding.
c6a21c4fe097d825b800e707fc854c169f367c24e1653ab4813d566b22024d97
Debian Linux Security Advisory 4806-2 - The update for minidlna released as DSA 4806-1 introduced a regression when purging the package. Updated minidlna packages are now available to correct this issue.
fa016f6a33c4b414fd5fb1e640fa079e1c96cd11e815202c4f08047c24cff24f
Debian Linux Security Advisory 4823-1 - It was discovered that incorrect validation of JWT tokens in InfluxDB, a time series, metrics, and analytics database, could result in authentication bypass.
f27a1ee5809e7396fcc1df33173759952f11d2dc156b6ec1306744a1bfdb5860
Debian Linux Security Advisory 4824-1 - Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure.
78ae179da093a6a577d6550cb23d27e5e249f89eb26dccf78b4377df3c7b642d
Debian Linux Security Advisory 4825-1 - Several vulnerabilities have been discovered in the Dovecot email server.
cf693b635e996bdc26281c39413a36a22f79f81d8a17b14eed1e84213499f91a
Debian Linux Security Advisory 4826-1 - Two vulnerabilities were discovered in Node.js, which could result in denial of service and potentially the execution of arbitrary code or HTTP request smuggling.
e2b5d65d7f6f0ab587468c3f477ba1e069f60f0a6607c72f983e63a159263283