Ubuntu Security Notice 5319-1 - Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by Intel to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
bbd8d53f0e0d635954f690413934b79282175a2d88047ff74d8856d695a34df1
DEOS AG OPEN 710 and 810 control systems suffer from a cross site scripting vulnerability.
c31fc1ce54904e4e737b0ec7d0ea5db6d7edba942d5190baba2557d862a05ad2
Red Hat Security Advisory 2022-0790-01 - Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
9c327ee9d068f0a76d3842122bcdb824806e7e00417ac837a149ec7ac9c8eb68
Audio Conversion Wizard version 2.01 suffers from a buffer overflow vulnerability.
605f74098a9e1207ebaa626a713a4b35b630680fc268c569f358559bb81db913
Red Hat Security Advisory 2022-0771-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include denial of service, privilege escalation, and use-after-free vulnerabilities.
1100e18ba1b84b8cfd7bbaf1ce3db0e2cdac4732621c3d5ed4294d5fc7ac6459
Ubuntu Security Notice 5318-1 - Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
fb3ad945b3e7291992b9ae99e08eecf71d087b400048a77ea6a4eedd9929ce5d
Printix Client version 1.3.1106.0 suffers from a privilege escalation vulnerability.
3ece75995fddb445d8154e106ce35d714c54352c186359a662316be8dddd2ab8
Ubuntu Security Notice 5317-1 - Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
9384dd69de0a826ed7ffc40ee1044171e71b4ab1c69a3fd6ee587362193097bf
Webmin version 1.984 authenticated remote code execution exploit.
7286890f523f72cddacdb1075dae1a9d259f00e38f0108409ebfb8be0654690a
Red Hat Security Advisory 2022-0772-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include denial of service, privilege escalation, and use-after-free vulnerabilities.
a0f3d2e4a0ded63d5e1dcf00a3df90c792696c4d2327ff8014f42a6c5e93aaaf
UFONet abuses OSI Layer 7-HTTP to create/manage 'zombies' and to conduct different attacks using GET/POST, multi-threading, proxies, origin spoofing methods, cache evasion techniques, etc.
4d832c6c90e63867d2ed67773e1e473adf4b36bc86918c68af2360c1e8afac7d
Red Hat Security Advisory 2022-0780-01 - The cyrus-sasl packages contain the Cyrus implementation of Simple Authentication and Security Layer. SASL is a method for adding authentication support to connection-based protocols.
440eb34f9264710489e3f09d4642c2c3faacb77b5958b819766df69e427552a9
Red Hat Security Advisory 2022-0777-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service, double free, privilege escalation, and use-after-free vulnerabilities.
d7facb8cf9f19a1e1eb19f51fbd133172869386079a759a4c1f247f4bd8a6026
Cobian Backup version 0.9 suffers from an unquoted service path vulnerability.
f0bf3d93128d4111e4fcc98ebc30a520e09f6821cff02b23d579346e6223949a
Wondershare Dr.Fone version 12.0.18 suffers from an unquoted service path vulnerability.
f89488a1d8af9c4ccb55436d9a9c5ac97a9f0fd97f553477886e612ecbbe1eaa