Red Hat Security Advisory 2021-2027-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include a denial of service vulnerability.
7724024d261f156145058ca79301153422e968574921531a34c3f06e0a3891a4Red Hat Security Advisory 2021-2039-01 - This release of Red Hat Integration - Service registry 1.1.1.GA serves as a replacement for 1.1.0.GA, and includes the below security fixes. Issues addressed include XML injection and remote SQL injection vulnerabilities.
016baf810f0fc092f71233e8a3a373f15cd931df73eb2a65bb7e42e8e6050a8aUbuntu Security Notice 4945-2 - USN-4945-1 fixed vulnerabilities in the Linux kernel for Ubuntu 20.04 LTS and Ubuntu 18.04 LTS. This update provides the corresponding Linux kernel updates targeted specifically for Raspberry Pi devices in those same Ubuntu Releases. It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
b7d2e192331fc5eeec68d356aef0b7b1f58186fdabc93af9473f0e7868618fd2Red Hat Security Advisory 2021-2021-01 - Red Hat OpenShift Serverless 1.10.2 is a generally available release of the OpenShift Serverless Operator. This version of the OpenShift Serverless Operator is supported on Red Hat OpenShift Container Platform version 4.5. Issues addressed include a code execution vulnerability.
cea1cf00dcdae1e8f10b304383784974afe87eafeed9543bfd8952847505e233Red Hat Security Advisory 2021-1989-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.
64a66ea18fea84ef27571f2cd8b668522be25a05e9942e1d641f8ec431519096Red Hat Security Advisory 2021-1979-01 - Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Issues addressed include a HTTP request smuggling vulnerability.
145f1357b9fcaba420f9a1f2e1c30b4c676680f2b205e72fac61b654000b0a4dRed Hat Security Advisory 2021-1983-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include a denial of service vulnerability.
58f997e6b5d7fbffd3868e93018e0b08ce5aa9b6952803648651cbe83be3fd04Red Hat Security Advisory 2021-1600-01 - The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Issues addressed include a buffer overflow vulnerability.
ea042d188cee89c2dc9f437d3c23a4652e29a08604879f32eb926a2818622549Red Hat Security Advisory 2021-1586-01 - GNOME is the default desktop environment of Red Hat Enterprise Linux. Issues addressed include code execution, insecure permissions, out of bounds write, and use-after-free vulnerabilities.
83850ab16175a11b58bb98d158fec9786cbf3c1014ed6eabb5bf6fd703ec9fd0Red Hat Security Advisory 2021-1702-01 - Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It is similar in speed with deflate but offers more dense compression. Issues addressed include a buffer overflow vulnerability.
92cfb0438d432779dede8f6e150073fc8b1a657afd297a4f8c10d71f372116ceRed Hat Security Advisory 2021-1758-01 - The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include an out of bounds read vulnerability.
e4682c43d85593964b6d82ee764e2a2a2531392c35063353dbb8761bed37812dWhitepaper that discusses improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up that allows for arbitrary code execution when parsing a malicious image.
0517fcbf4b8f3c300d297bd3f60618a661d06f0ec5760f4909a67a4c5ac00216Red Hat Security Advisory 2021-1723-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.
eaac6a74857744887bf4d8f981f85c15222e7de2df1bae9d31b5fd2386f285f3Red Hat Security Advisory 2021-1783-01 - Virtual Network Computing is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.
2976cd13b135853831ffbc8a3cab885923c1027271cc7b8c75252935808455adRed Hat Security Advisory 2021-1679-01 - The bash packages provide Bash, which is the default shell for Red Hat Enterprise Linux.
bedd180f89519978a938efa7386b96d2a29ca03aa105a237c7520eed9b71134eRed Hat Security Advisory 2021-1811-01 - LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Issues addressed include buffer overflow, denial of service, information leakage, and null pointer vulnerabilities.
989c7c7a8b862491fda2080a22ef46eea64cdd2291abf9a2c70ec3dde79b59f1Red Hat Security Advisory 2021-1756-01 - Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Issues addressed include a buffer over-read vulnerability.
eaa46f888ace08e3209689467faa4c28e3c246c296da78700fcb1d6b55b27334Backdoor.Win32.RMFdoor.c malware suffers from bypass and code execution vulnerabilities.
107ad28331b4ab861dc4cb9d59d629178c8cd98bc9f71c9038e458fcee131887Red Hat Security Advisory 2021-1881-01 - Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format, PostScript, Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File format files. Issues addressed include a denial of service vulnerability.
7902b715881e48c06c7d7ab6b18f69dfb182487614057345e4cc0d534c8b8262Red Hat Security Advisory 2021-1887-01 - Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Issues addressed include a denial of service vulnerability.
045796f3b8418b5d1ac6859ee2713ae9bc1a6fe4c33f84ee2b09f1874015aaf9Red Hat Security Advisory 2021-1972-01 - Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Issues addressed include a denial of service vulnerability.
667547749f96ff11e87ec9a262c02e7a9bba2575db365e5e14b6b0bc446f5c5fRed Hat Security Advisory 2021-1796-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
17e4148f715fcdfc5e42a3ba824d6297565714fa4d9e2d205fb63e5f46b32bedBackdoor.Win32.Psychward.ds malware suffers from a weak hardcoded password issue.
0ab64808842591d301acbc2d58147a30b71905e5e45c00c9650e6911343e47d3Backdoor.Win32.Psychward.c malware suffers from a code execution vulnerability.
f0a8ca9925ac7417a795e36198758a4789aab87dd2411a49d22a556a72702a1dRed Hat Security Advisory 2021-1734-01 - The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. Issues addressed include buffer overflow, out of bounds write, and use-after-free vulnerabilities.
dcedb24de00b5d9719c9c7f64315132bbca8814439dcc86339e598a30b79e84d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed