Ubuntu Security Notice 4739-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
e6a2abe7fda38194f09de5adbeadd44f8ec9c63d730a2d1697bcacd6b7d09e95Ubuntu Security Notice 4738-1 - Paul Kehrer discovered that OpenSSL incorrectly handled certain input lengths in EVP functions. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Tavis Ormandy discovered that OpenSSL incorrectly handled parsing issuer fields. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Various other issues were also addressed.
3674119434b97aa1d488e84d529023ecaeea76725f509e491630edb2026cfda4Backdoor.Win32.Agent.aak malware suffers from a buffer overflow vulnerability.
ff1a91e588666b3bcb88a08c2db2ac1c04d80eeaa528374423c23c387be8602eBatflat CMS versions 1.3.6 and below suffer from a remote code execution vulnerability.
551ecbbad242bc4ac6d5348660133e01326441008828d7ad9b59fbd7682668a3Ubuntu Security Notice 4737-1 - It was discovered that Bind incorrectly handled GSSAPI security policy negotiation. A remote attacker could use this issue to cause Bind to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the Bind AppArmor profile.
2bf46e97a6f3775a141176519c2d8406ecea005a42e0a840999b0f44e8d85446Apport version 2.20 suffers from a local privilege escalation vulnerability.
af1d11f08656643f36dfe7488a38cd9e5ae4a79bc70c8a749d292feb682353e6Red Hat Security Advisory 2021-0423-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.6.17. Issues addressed include cross site scripting, denial of service, deserialization, and traversal vulnerabilities.
e6cd828c9e24e5d969069e35ec54dce03dc9efba03f19eccd10e50fcfb9b66b8Backdoor.Win32.Agent.aak malware suffers from code execution and cross site request forgery vulnerabilities.
07877b46ba2c779b236c2561cd70d8a9f3b6e327ed86d6f5a164b87adc2a81d0Backdoor.Win32.Agent.aak malware suffers from a hardcoded credential vulnerability.
d384b41292fe358452a4a3a80b168dead2cf891a7677d24a3838cd59e7e78221Gitea version 1.12.5 suffers from a remote code execution vulnerability.
2e393151dd708e15c61f1611fe9a4ff583e2479ce02c55061ec3edece7a76adc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed