Debian Linux Security Advisory 5316-1 - Several out-of-memory, stack overflow or HTTP request smuggling vulnerabilities have been discovered in Netty, a Java NIO client/server socket framework, which may allow attackers to cause a denial of service or bypass restrictions when used as a proxy.
d79e44dc740a4bdba61067f17bc2f8d1870d872798afcbc0a4bdd6ffab09ccdd
Red Hat Security Advisory 2023-0114-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
1bced552d02930355321bf85efb8d95f0bbfdbf4b3da3866ad31bc6cdc68db5c
Red Hat Security Advisory 2023-0110-01 - SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
bf743dba03503f4d3a42bfce76ce71be5ac8b2e06732cace41a7e09fbd3aa494
Debian Linux Security Advisory 5315-1 - XStream serializes Java objects to XML and back again. Versions prior to 1.4.15-3+deb11u2 may allow a remote attacker to terminate the application with a stack overflow error, resulting in a denial of service only via manipulation of the processed input stream. The attack uses the hash code implementation for collections and maps to force recursive hash calculation causing a stack overflow. This update handles the stack overflow and raises an InputManipulationException instead.
442616c277f5fe435b492c064fd24a02dc319b343463ace4afb9427f04df76b8
eCart Web version 5.0.0 suffers from a cross site scripting vulnerability.
e72f56a0b136ad4d7215662fb4e94fa28b79b57e199ed4353a8831db37b3da89
Red Hat Security Advisory 2023-0123-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.
75c784a7c4fadcf59cc4c552db60909a6d027d24cff14a235f613e636fde1322
Red Hat Security Advisory 2023-0128-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR7-FP20. Issues addressed include a randomization vulnerability.
bdbddc7d3df8e2f53b434840a6cd8a1cb93bb002a0d7aa7fff1f98a6b17fe17c
Online Food Ordering System version 2.0 suffers from a remote shell upload vulnerability.
ed85146f24b10099cae57f78d6acaf8386a62cc901158ad0489e271b7f3389ab
Red Hat Security Advisory 2023-0113-01 - PostgreSQL is an advanced object-relational database management system.
72389b4a8ee2045ef26ddfb7a3008d55164864d2d390214fe0657af01486e4da
Red Hat Security Advisory 2023-0100-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups.
4324366b933d1008195dbad66c47c18e418bf32d77a0c83877229b588af2cace
Foloosi Shopping version 5.5.7 appears to leave a default administrative account in place post installation.
023e4bb5c955d21c1cb90446bde4e16116425a7656679db11a4e067e30379549
Flex version 5.2.2 appears to leave a default administrative account in place post installation.
229825a437f202f67bb1f03b1998d5f1a770f3e53615c7a040c0f54525a53414
Red Hat Security Advisory 2023-0116-01 - A library that provides Abstract Syntax Notation One parsing and structures management, and Distinguished Encoding Rules encoding and decoding functions.
13e8478ae5be63037669e02758be4612c139811be295fadc4cdd8c35ad36ce78
Red Hat Security Advisory 2023-0099-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include an out of bounds read vulnerability.
8753f93fa0258ef75515559ad4767a2976163ac109746fa49270f8969ef50a83
ChiKoi version 1.0 suffers from a remote SQL injection vulnerability.
bfbead85273eb8f3029c1797266638fcaaa8f9debd43ae379274799ca7ac9e7f
Red Hat Security Advisory 2023-0101-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.
295f4a5c98495fb6094e0c3afeb4e279a119d9951e37bbca96f8cae6fc6d1e93
Red Hat Security Advisory 2023-0103-01 - Expat is a C library for parsing XML documents. Issues addressed include a use-after-free vulnerability.
2e0a4e56304b83878bac582cb6d58aa687e4b112a2d05bc8c800847e3e4fc145
Deprixa Pro version 7.5 appears to leave a default administrative account in place post installation.
b745d80d10a9cf6d74df71babb3f62d563da0d1354d488a4dcf9a6cf6d6e79de
Blesta version 5.4.1 appears to leave a default administrative account in place post installation.
098039ff6d83508ece4f6f823ca46d76e4703e381d3cb13f5c1cb49fc6fa5998
Debian Linux Security Advisory 5314-1 - It was discovered that missing input sanitising in the ctags functionality of Emacs may result in the execution of arbitrary shell commands.
8d71031be094dc1bac13e1c7994d1cfcdb0da1ae5dd428700ba4439417aa0081
Red Hat Security Advisory 2023-0089-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Issues addressed include a script execution vulnerability.
57c798cbfcb79afd7af8f4f8a3cddaee87df114905924c2d3e53f07a7cbe44b1
2ad Guestbook version 2.0 suffers from a database disclosure vulnerability.
27af057e7a815ded437681cb77d42c19f57060bdf9df71cf778351aa5728d4d1
Red Hat Security Advisory 2023-0095-01 - The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Issues addressed include buffer overflow, denial of service, double free, and out of bounds read vulnerabilities.
c03e05a4c41c6aa72e39ed4d6f02c63f8fb0a53726b2f3fa368e44b6da42afe5
Red Hat Security Advisory 2023-0096-01 - D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility.
12f4891bdc69026546186341fab7d669ce604c715b1cb41c6773676f51d782e5
Red Hat Security Advisory 2023-0087-01 - The USBGuard software framework provides system protection against intrusive USB devices by implementing basic whitelisting and blacklisting capabilities based on device attributes. To enforce a user-defined policy, USBGuard uses the Linux kernel USB device authorization feature.
febf245be7475f9ba3ec0f6c2290df306d445666c69535cf2a0b900f0ce6b642