Ubuntu Security Notice 6054-1 - Moataz Al-Sharida and nawaik discovered that Django incorrectly handled uploading multiple files using one form field. A remote attacker could possibly use this issue to bypass certain validations.
ae0ba53f9519ac67a1f2ae260d466182a277d6949327391761be0dc5190ca27eDebian Linux Security Advisory 5397-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. An anonymous researcher discovered that a website may be able to track sensitive user information. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
906c82aa33e2a5d3a615396adfc2c3297efa50d485469f517e5f3d4abec2f097Gentoo Linux Security Advisory 202305-23 - Multiple vulnerabilities have been discovered in Lua, the worst of which could result in arbitrary code execution.
00aefb3377c44926da8759cd1d9a0caff52ef4beac1d0f7f4a215d7820e9e283The Databricks Platform as of 2023-01-26 suffered from a cluster isolation bypass vulnerability through insecure defaults and shared storage.
c51c70d84e2fff1a493535fad3d25c413be249acfe7890db0198ee13ac5eac27Gentoo Linux Security Advisory 202305-22 - Multiple vulnerabilities have been discovered in ISC DHCP, the worst of which could result in denial of service. Versions less than 4.4.3_p1 are affected.
01af9fd733feb9ee59313a46fa6a69ef223463ef95f3edd2c49015f148a0aadfRed Hat Security Advisory 2023-2085-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include a double free vulnerability.
53c2da02a652387fed667edf0e66f0a8268b4d564d0c049363c85ee6d8a43383Gentoo Linux Security Advisory 202305-20 - A buffer overflow vulnerability has been discovered in libapreq2 which could result in denial of service. Versions less than 2.17 are affected.
792071c590c9fa5e3f086497c3f88e44a5eaf5c99ed93c05a0036daabaa97e82SoftExpert Suite version 2.1.3 suffers from a local file inclusion vulnerability.
86eebbef8604baf8b39e89589799d9208b3fecb0a1fc3656910e519da4c4c213Gentoo Linux Security Advisory 202305-19 - A vulnerability has been discovered in Firejail which could result in local root privilege escalation.
a1cc5fd4c53d65e90316083ec113adeb3139a95bfa06da605b2b15ba54807504Gentoo Linux Security Advisory 202305-18 - Multiple vulnerabilities have been found in libsdl2, the worst of which could result in arbitrary code execution. Versions less than 2.26.0 are affected.
329099e77e1155de31ad66371529080c5715465d8e090924f3aba8938512f75bFS-S3900-24T4S suffers from a privilege escalation vulnerability.
a07739b2f427e832148609c9cae7dd8cdd1d3bc9ccbb95a9c8ed4aae13777962Gentoo Linux Security Advisory 202305-17 - Multiple vulnerabilities have been found in libsdl, the worst of which could result in arbitrary code execution. Versions less than 1.2.15_p20221201>= are affected.
f88cbbf99497c62f630186c9fc9b3387da4a2cc7bd86fcd3e2435a35d63ff6ffGentoo Linux Security Advisory 202305-16 - Multiple vulnerabilities have been found in Vim, the worst of which could result in denial of service. Versions less than 9.0.1157 are affected.
81b5395f5780b813c10198f29c690100f378f19946bb1a709a861b0663668b4eOpenEMR versions 7.0.1 and below remote authentication bruteforcing tool that bypasses mitigations.
9a7f03b28b3643f8abd93cf26310302d0213e7ee85a19d7eab9f3556ffd3cb08Debian Linux Security Advisory 5396-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
caa6ba8a7c6d999f37d1121df65a4754aa4c306b9a151b6edb8be86f9d9c9467Red Hat Security Advisory 2023-2083-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.5 General Availability release images, which fix bugs and security updates container images. Issues addressed include denial of service and server-side request forgery vulnerabilities.
73a3a6d4835d6deabe73aac1424fead885072ae86393a0569e27f07803acfe01Gentoo Linux Security Advisory 202305-15 - Multiple vulnerabilities have been discovered in systemd, the worst of which could result in denial of service.
5385d40a5dc26e14d825f0e98938e718780d2697e083d342fb1504267a87ed38Gentoo Linux Security Advisory 202305-14 - A vulnerability has been discovered in uptimed which could result in root privilege escalation. Versions less than 0.4.6-r1 are affected.
bc372404c988cf4e4c037c3f15aa29c339776307d0b656e7b70be7cfcfb1b929PHPJabbers Simple CMS version 5.0 suffers from a remote SQL injection vulnerability.
83f621397845c84a9917b61152f97ae5a466d86a9cd4d0fb41285c7f7ed1d29cPHPJabbers Simple CMS version 5.0 suffers from a persistent cross site scripting vulnerability.
ac5a25fb5aa54ef7a5f3072c88ec55766e7b60fbe64da0e271c8b427aae69c1dGentoo Linux Security Advisory 202305-12 - A vulnerability has been discovered in sudo which could result in root privilege escalation. Versions less than 1.9.12_p2 are affected.
b8f9643203a24f27c9e405bdb0297e4ad8adff7235b76a4220ae9bf87e546de1Gentoo Linux Security Advisory 202305-11 - Multiple vulnerabilities have been found in Tor, the worst of which could result in denial of service. Versions less than 0.4.7.13 are affected.
b35755744fdd1d6e1ae8281fa91b0190eca10c429f7f73044c5532c64ddd96beGentoo Linux Security Advisory 202305-10 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 109.0.5414.74-r1>= are affected.
fa3546a29e07efaa3af4ab0c41e75094c5aa943da3174dfaf8d8a7fd33602dedPHPFusion version 9.10.30 suffers from a persistent cross site scripting vulnerability.
aa251886281d962736d5731f2bc3b96ee2197a77f04ca5b9d031c9023887dfbcGentoo Linux Security Advisory 202305-9 - A denial of service vulnerability was discovered in rsyslog related to syslog input over the network. Versions less than 3.38.1 are affected.
84eddc583f78055c45f24457505402cbf8f5b1c37d2b55f6ff25ed8c0a2c0825
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed