Ubuntu Security Notice 5994-1 - It was discovered that HAProxy incorrectly initialized certain connection buffers. A remote attacker could possibly use this issue to obtain sensitive information.
0b12eb127007d009b328481f57a8c4cab0b1976b880e87809c443130d9e9f328Ubuntu Security Notice 5993-1 - Demi Marie Obenour discovered that the Samba LDAP server incorrectly handled certain confidential attribute values. A remote authenticated attacker could possibly use this issue to obtain certain sensitive information. Andrew Bartlett discovered that the Samba AD DC admin tool incorrectly sent passwords in cleartext. A remote attacker could possibly use this issue to obtain sensitive information.
c23223e206a443c735593985b5d1b76da75dabd5f6e3964632e6821bfaaa23ceGNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP (IPv4 and IPv6), TCP (IPv4 and IPv6), HTTP, or SMTP messages. GNUnet supports accounting to provide contributing nodes with better service. The primary service build on top of the framework is anonymous file sharing.
00a63df408d5987f5ba9a50441f2a77182bd9fb32f1e302ae563ac94e7ac009bUbuntu Security Notice 5992-1 - Demi Marie Obenour discovered that ldb, when used with Samba, incorrectly handled certain confidential attribute values. A remote authenticated attacker could possibly use this issue to obtain certain sensitive information.
52d1accd19ee9515c93cc70bd35ec5948347fffb73ef4d4003055edfaa272f93Ubuntu Security Notice 5966-3 - USN-5966-1 fixed vulnerabilities in amanda. Unfortunately that update caused a regression and was reverted in USN-5966-2. This update provides security fixes for Ubuntu 22.10, Ubuntu 22.04 LTS, Ubuntu 20.04 LTS and Ubuntu 18.04 LTS.
ea71202aded622ee4e8de6356e00ba3b57faf444a20b0a0f55f161d918e6ed6cRed Hat Security Advisory 2023-1533-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling, buffer overflow, bypass, and denial of service vulnerabilities.
1d997c727b547d00a2b7b276e0830053a199463662b5eb3fddb9e968cdd8798eChatGPT suffered from a cross site scripting vulnerability. OpenAI has since addressed this issue.
882509d93e19f8df85af690bd15bbc138f097a0dbd7f960df918852913bc0e03Red Hat Security Advisory 2023-1516-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.10 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.9, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.10 Release Notes for information about the most significant bug fixes and enhancements included in this release. Issues addressed include code execution, denial of service, deserialization, and information leakage vulnerabilities.
ada22b83480d530ee8dd30e19a50c7326170a048925344548198a2d631be3992WordPress Accessibility Help Button plugin version 1.1 suffers from a cross site scripting vulnerability.
75d6a490d9ad9d368b93b382cdec95460a02be1d91acb59904a7b7fef549de78Online Pizza Ordering version 1.0 suffers from a remote shell upload vulnerability.
61eb59acfd42c490af5b99991ace3533524b05c94b52f91de19087bd4542f2e7WordPress Paid Memberships Pro plugin version 2.9.8 suffers from a remote SQL injection vulnerability.
8ebec292225492fccbf7564e2769bd2c11d9c173833545ef1816ea3684a094e9GLPI Cartography versions prior to 6.0.0 suffers from a remote shell upload vulnerability.
7676fe48d7091b128e9715013c9a0c7fe49197584da280265b69b30ffe6f0d23GLPI versions 10.0.0 through 10.0.2 suffer from a remote SQL injection vulnerability that can lead to remote code execution.
153ed5c22caa3b6236e34c3a5e5f161d17ed9a98751c255527cfe3ab330beddbGLPI Activity versions prior to 3.1.0 suffer from a local file inclusion vulnerability.
6ce5495c03b7f011dbd108f97157d1d7c2747d04e180ecbb3ccb9944f6dee833GLPI Glpiinventory versions 1.0.1 and below suffer from a local file inclusion vulnerability.
2437abe95d6ebe38784c4e84318845d94947485a47c460c2d8aba16cf6aa4c71GLPI Manageentities versions prior to 4.0.2 suffer from a local file inclusion vulnerability.
8a2a552ceddbc28ec6fe9c4a71ec68d869d1d3401907f3ca5dba7c8ec767d3b3Roxy WI version 6.1.1.0 suffers from an unauthenticated remote code execution vulnerability.
11cc11516eeddd0e5a0cb251ee323bb66a9dbf67e0b5f03df32e5db24cdb36b1Roxy WI version 6.1.0.0 suffers from an unauthenticated remote code execution vulnerability.
f381bc461947ea229afa9cb15d1edb5a506549fe1108d3d551b11d352c4eaeddWordPress File Manager plugin versions 6.0 through 6.9 suffer from a remote shell upload vulnerability.
a1f366a0f60a7beafe96ce6d9ac3ffdd4a66ef5534913ee8ca915a2a5345d1e3Sleuthkit version 4.11.1 suffers from a command injection vulnerability.
1e85fdd93bd45f2e1bbd1ee6ef846a47291ef374fc77f9869963d458248efe80Roxy WI version 6.1.0.0 suffers from an improper authentication control vulnerability.
116e12d74b8ad9f3e09a0c2944b3770abbf6ff9a822932dfa539b05db2b4464dSQL Monitor version 12.1.31.893 suffers from a cross site scripting vulnerability.
2e57c7f6591cbc8fdfe4907b4fcda1119484148e0e1fa475e83b9b3cd6e08241Grand Theft Auto III with Vice City Skin File version 1.1 suffers from a buffer overflow vulnerability.
527cb061084be98edf3ac4d203f8e9f7d317215894bd41765b15f78b41b9681dsudo versions 1.8.0 through 1.9.12p1 local privilege escalation exploit.
940dfd92aecb423ad0c55dc8c35cb7413ed385f1c05de5191eaac03dd2499f68Art Gallery Management System Project version 1.0 suffers from multiple remote SQL injection vulnerabilities.
f61b713085d167089e636689d3db654dc730970503025537ed4d17e48b020de1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed