SpotAuditor version 5.3.2 suffers from a denial of service vulnerability.
978407ee340b95fa4b09bb3152f890d72c691b862c9c74423625ff1e758deb66Microsoft DirectX SDK 2010 suffers from a denial of service vulnerability.
85027970bc8614d80e0b59ffa521da2a5836108f419a2d1d1b4fcdf99ed64c0aGnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
30d37ce2ca55b2b9b61480b2a175a3b22066ab41cd3f84688448919b566dec0aUbuntu Security Notice 4201-1 - It was discovered that Ruby incorrectly handled certain files. An attacker could possibly use this issue to pass path matching what can lead to an unauthorized access. It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could use this issue to cause a denial of service. It was discovered that Ruby incorrectly handled certain HTTP headers. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.
fb5207d2d5cd13b28e5fc571f6f9365cd6eb101ba786fb264b4bd1794b1d6f86Red Hat Security Advisory 2019-3978-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.
2e22aead63d5c2a4d32dc397e1b73d57dd240b6705ba813c44df31f6111d50b2Red Hat Security Advisory 2019-3981-01 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Issues addressed include a bypass vulnerability.
ca365ccd293079c52be9b6ecb251a7bf0c79d6ea710617a283a29d8b003f7a03Red Hat Security Advisory 2019-3968-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures. Issues addressed include a buffer overflow vulnerability.
eec0176b358ad1dceab72caae24a05a4110f389838501cf9a6606e9c563066e8pari/gp versions 2.9.1 on Debian Stretch and 2.11 on Debian Buster allow arbitrary file write and hence arbitrary code execution.
ffffda78c0913f524e10b48ae7dd7f2a88fb017e7d948c4b48b4348c11a63e02Red Hat Security Advisory 2019-3976-01 - The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. A stack-based buffer over-read was addressed.
74e2ed1907e5493742c1be87b24081ca4514695335a44791aac28a5113e8f0eaRed Hat Security Advisory 2019-3979-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include null pointer and use-after-free vulnerabilities.
3f7932f4deb3df7af3b999b13ede29fdfcd5523a78d33407a216349cad3b9847Red Hat Security Advisory 2019-3967-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.
66e722646d95d8050e8689ab877a158f944b3ed35f9ac87838daa6fb683821f9Red Hat Security Advisory 2019-3964-01 - The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. Issues addressed include an information leakage vulnerability.
372b28f86d6f534625102250b8d78291deadffa5f72301abc92a9cc1046c5553Debian Linux Security Advisory 4576-1 - An out-of-bounds write vulnerability was discovered in php-imagick, a PHP extension to create and modify images using the ImageMagick API, which could result in denial of service, or potentially the execution of arbitrary code.
5756a4fdbd2a09e27d7b82fe649917fa0a292e2a03c8ae606cb8221bdd2431a9Fortinet products, including FortiGate and Forticlient, regularly send information to Fortinet servers using XOR "encryption" with a static key. FortiClientWindows versions 6.0.6 and below, and FortiClientMac versions 6.2.1 and below. After this advisory was released, Fortinet has confirmed that only FortiOS version 6.2.0 includes the patch.
8dc47eb79b4cc21fe29d2fa486d30fd36bd9bb27983db8a7c9f4ea84620972f0Ubuntu Security Notice 4200-1 - It was discovered that Redmine incorrectly handle certain inputs that could cause textile formatting errors. An attacker could possibly use this issue to cause a XSS attack. It was discovered that an SQL injection could allow users to access protected information via a crafted object query.
623c8e3a17e14a602b525ab5f5540e738d4bb3f031a88de1d5acd06feb27ea0eDebian Linux Security Advisory 4575-1 - Several vulnerabilities have been discovered in the chromium web browser.
2f082be534072cb931a5d21f8d4121dcc68f528edc20287c077ccd5b4b1b16ddiNetTools for iOS version 8.20 suffers from a denial of service vulnerability.
2d6f29f1dd6aa8f4c79f15e1cfe1e0fec8e9d8376f819cf783b6c200b49d4312InduSoft Web Studio version 8.1 SP1 suffers from a denial of service vulnerability.
6366535aefb1f96747e1775600301c88409b37c3364ba70eb9ddde8e3efd6dcbAnhui Huami Mi Fit Android application versions 4.0.10 and below does not encrypt the connection when it checks for an update.
e185e7156a12339d666b12c950cb9ece3e3e38a8514d9a1395d67f5123e52007Gentoo Linux Security Advisory 201911-8 - Multiple vulnerabilities have been found in Expat, the worst of which could result in a Denial of Service condition. Versions less than 2.2.8 are affected.
47162c7e1df3889457be23a657c191abf49d902bd68ccdb3bc1755160377b0d2Ubuntu Security Notice 4199-1 - It was discovered that libvpx did not properly handle certain malformed WebM media files. If an application using libvpx opened a specially crafted WebM file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.
58f31267e250b79cd377a3c71cea7c07563f9d8255961b04c7d2c585ac73df05Waves MaxxAudio Drivers version 1.1.6.0 suffers from an unquoted service path vulnerability.
d9a785f0cc29b82091e884c52a3c1a2f45dabc8c9489b5345e2c38acfaf64a20InTouch Machine Edition version 8.1 SP1 denial of service proof of concept exploit.
ec77e960829caa7b23c3294df2aa687ebe99b5283cb9df0050fd00aa8ec7aaa4Red Hat Security Advisory 2019-3955-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.108. Issues addressed include out of bounds access and use-after-free vulnerabilities.
3e707cbf8d00256d53bebd08c8f1207946cb95ae63a37842688bdc0fe8b9b9cdRed Hat Security Advisory 2019-3950-01 - Simple DirectMedia Layer is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. Issues addressed include a buffer overflow vulnerability.
8847e08b4ebf2864605e8197b01a2c32412f2f6dc81ffc6e76120aa15bb43737
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed