Red Hat Security Advisory 2021-2758-01 - Nettle is a cryptographic library that is designed to fit easily in almost any context: In crypto toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like LSH or GNUPG, or even in kernel space.
f366a4741628270515ea9df33e6f46069b4595fc20f17cc3b7778a467f9fa2f9Ubuntu Security Notice 5010-1 - Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 21.04. Various other issues were also addressed.
c4d63dc41ceb7caa0f49a3eacc4d8caaa17252efd4913df4a83ba610c5446f40Ubuntu Security Notice 5009-1 - Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. It was discovered that libslirp incorrectly handled certain udp packets. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. Various other issues were also addressed.
3df328646a71434fe2e1d5504ff218ec999fb6d3102937176e3146ec99041529Red Hat Security Advisory 2021-2755-01 - These are CVE issues filed against XP2 releases that have been fixed in the underlying EAP 7.3.x base, so no changes to the EAP XP2 code base. Issues addressed include bypass, code execution, cross site scripting, and information leakage vulnerabilities.
31ae69e9f08af4355de9d2d62aa94a61d534a59f0507a16500efa8303f69b4d5Red Hat Security Advisory 2021-2743-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.12.0 ESR. Issues addressed include out of bounds write and use-after-free vulnerabilities.
9d05f2e046334279c7313e4259b7673579f5336ce95840ef194c2e6ff2df7421Gentoo Linux Security Advisory 202107-35 - A buffer overflow in OpenSCAD might allow remote attacker(s) to execute arbitrary code. Versions less than 2021.01 are affected.
a19c0a8dcb647acdd93d8751cb40d62d6a3617c87e58aabf1e5dbde39f554ffeGentoo Linux Security Advisory 202107-36 - Multiple vulnerabilities have been found in urllib3, the worst of which could result in a Denial of Service condition. Versions less than 1.26.5 are affected.
d6f9dff903ace617c49b44ad13ca943dc52549bd0c464c31b70d60646cb1f840Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.
6c4cee51ef997cb9d9aaee84113525a5629157d3c743d7c4e320000de804a09dRed Hat Security Advisory 2021-2742-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.12.0 ESR. Issues addressed include out of bounds write and use-after-free vulnerabilities.
b9a9e8af2d7512910ddb5e5ac8f6fe890f2a565ec0d03084dfdb2ecceb2c51f6Gentoo Linux Security Advisory 202107-34 - A vulnerability was found in FluidSynth that could result in remote code execution. Versions less than 2.2.0 are affected.
429e4362517a182b1866799653dc856546a87161c0764c1358362ca8872eb132Tor suffers from an issue where half-closed connection tracking ignores layer_hint and due to this, entry/middle relays can spoof RELAY_END cells on half-closed streams, which can lead to stream confusion between OP and exit.
0544acc1f8cb71eaae260f7d2c03e6b0c3ebabe6b8549cd83018b8757f7db64aWordPress Popular Posts plugin version 5.3.2 suffers from a remote shell upload vulnerability.
ff63288153a9c377f078916bf250b9b6d773c32bd4d87e67f9a087fc58cb7ea2Red Hat Security Advisory 2021-2741-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.12.0 ESR. Issues addressed include out of bounds write and use-after-free vulnerabilities.
a9970c6321cdd0ed73a572109f505055b760c75e73191b8d0fa9590575164cddRed Hat Security Advisory 2021-2740-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.12.0 ESR. Issues addressed include out of bounds write and use-after-free vulnerabilities.
24ae57b31c62f8d5e29ec73d3153d834c2408232d1e1452102a872dca00d287fosCommerce version 2.3.4.1 remote code execution exploit. This is a variant of the original discovery of code execution in this version by Simon Scannell in March of 2018.
2bb23c70d70bf33f8afa0d2286b9025a5cfeabe779deea7141c7625996c9982e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed