Red Hat Security Advisory 2022-1102-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include an HTTP request smuggling vulnerability.
ec9d7ac58797502651fc13c49accea5e13fa6a6c2e8536287634385c77d74f96
Red Hat Security Advisory 2022-1106-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
c85caca64ae06fc933b3f805d873eb51328524cb018dac24d1b41b89dffd77d1
Red Hat Security Advisory 2022-1107-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
548b5969a215b63408fc1ce2bb76de0939dc126576a8bb0a74acf9244630ce2b
Red Hat Security Advisory 2022-1112-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library.
4facf3061c3a84ecb0734a25ebed56e7815402d157677e7fa4f26f506cb210ed
Red Hat Security Advisory 2022-1104-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
3a2b18dd4f7e48dfdae427f12981505f47927eedf6ee8f7a30597c2ad433c204
Red Hat Security Advisory 2022-1110-01 - Red Hat Decision Manager is an open source decision management platform that combines business rules management, complex event processing, Decision Model & Notation execution, and Business Optimizer for solving planning problems. It automates business decisions and makes that logic available to the entire business. This release of Red Hat Decision Manager 7.12.1 serves as an update to Red Hat Decision Manager 7.12.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, denial of service, information leakage, and traversal vulnerabilities.
19ef6b86140614a8bac6c5eef89b228a342fe2890da0cd298556ccd2514bdd7f
Red Hat Security Advisory 2022-1103-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.
cd3da72f66a9d3620802f57598d3a1225d845ad596f9cc707e08f89d7fbccd8c
Red Hat Security Advisory 2022-1108-01 - Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services. This release of Red Hat Process Automation Manager 7.12.1 serves as an update to Red Hat Process Automation Manager 7.12.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, denial of service, information leakage, and traversal vulnerabilities.
7c40dcdbc8c75f8be5ae4c4bf3f34c84f7661a55778b77830347d8a875b6c93e
Ubuntu Security Notice 5313-2 - USN-5313-1 fixed vulnerabilities and added features in OpenJDK. Unfortunately, that update introduced a regression in OpenJDK 11 that could impact interoperability with some popular HTTP/2 servers making it unable to connect to said servers. This update fixes the problem.
1911934539c51bd6df28232883917c98374d9f5b205fb3970482d87c13567eef
Red Hat Security Advisory 2022-1021-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.26. Issues addressed include bypass and denial of service vulnerabilities.
9643b6c8c59dc1959b8e0bc08b83042bd3461d4a3cb4eeaeb911e54bccefe6f6
Red Hat Security Advisory 2022-1091-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library.
547e0428253fe19394e4d502af2ba7da74aa3bbac454474bed040a5c67725505
Ubuntu Security Notice 5353-1 - It was discovered that the IPsec implementation in the Linux kernel did not properly allocate enough memory when performing ESP transformations, leading to a heap-based buffer overflow. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.
406d29aa368301ce542b4f6f12fd32301120acf9aa904fef9458e3370d29fa8d
Red Hat Security Advisory 2022-1083-01 - Red Hat Advanced Cluster Management for Kubernetes 2.3.8 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs. Issues addressed include an information leakage vulnerability.
9442197180deeb5f25977efd08ace4909b97f3f5729b4b0b9f276d27f078ba23
Ubuntu Security Notice 5352-1 - It was discovered that Libtasn1 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service.
951cffd9e25ddf1ad22523ce2eefb8c889a1391d77e042330c60a977076e47a5
Ubuntu Security Notice 5351-1 - Jan Schejbal discovered that Paramiko incorrectly handled permissions when writing private key files. A local attacker could possibly use this issue to gain access to private keys.
5ebff46b7927019366c4c26262bfda5d50351737a0a1eb80ff2a875a4907b62d
When the filter_var function is used in conjunction with the flags FILTER_VALIDATE_DOMAIN and FILTER_FLAG_HOSTNAME, there is a vulnerability in PHP that allows the filter to be bypassed. A patch has been included by the researcher as the PHP security team seems to have ignored this concern.
adddea024dbdd005a547c113193969e21a6c422c65e5611f207efd46bf8ae635
Message System version 1.0 suffers from a remote shell upload vulnerability.
8170a03bb95176827a82f89c1b133b2b0b7a218409494453ee6b43400a78b8a6
Message System version 1.0 suffers from a local file inclusion vulnerability.
d75e21e8a6211018162bbb7942d070f7c8405b2ef826d1256c7f25275857c3f6
Fingerprint Attendance version 1.0 allows for an arbitrary password reset of any user.
349d72455afa61c19576dd3b35d2b351fb9e9242b3dc49747aede103705ebd0b
Fingerprint Attendance version 1.0 suffers from a remote shell upload vulnerability.
452eb3ee24c8a991d97de78ec5746488245a9a38b450e35ee82a4b76c1b19e8f
Fingerprint Attendance version 1.0 suffers from a remote SQL injection vulnerability.
ea4634340bfbd35d88bc8b15ecde35139882faa21acf2cecdd186022fc7b480e
Sports Complex Booking System version 1.0 suffers from a local file inclusion vulnerability.
c37a2040e63761f072da506d3c0fb1c63067a2b28d02b4a6291592e84d8a1f0c