Debian Linux Security Advisory 5111-1 - Danilo Ramos discovered that incorrect memory handling in zlib's deflate handling could result in denial of service or potentially the execution of arbitrary code if specially crafted input is processed.
ba6926a46bb89ee8eb52bf8c72d4648d9660025bcded3da4a338ff191d9efb54Debian Linux Security Advisory 5112-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
9776079ada49ba8f7c9d6ba0d51c701c250dd2c1ac8cf18f0e3da5410734ac90Debian Linux Security Advisory 5113-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or spoofing.
01611edf9c74c2d6fccfdcd693008805cc537c88a217d53db609de1c1966d64fDebian Linux Security Advisory 5114-1 - Sergei Glazunov discovered a security issue in Chromium, which could result in the execution of arbitrary code if a malicious website is visited.
30ddf7ca17607e5fbb34e38e0e85d5f92274270cdc296fc9315189d39313a87aDebian Linux Security Advisory 5115-1 - The following vulnerabilities have been discovered in the WebKitGTK web engine.
f70de87352ec6b6237797d8b677f478cb1d19c060c6caac318da45f6cbcc7ee4Debian Linux Security Advisory 5116-1 - The following vulnerabilities have been discovered in the WPE WebKit web engine.
014963d45ab96a70b89e6f38b86cce9819acdf7b57f758b90df1261608bc6fb8Debian Linux Security Advisory 5117-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in privilege escalation, denial of service or information leaks.
819f8a49cd9f2ae6dc9a4768afc2e71a91e4114e4c5860d415894bcc9b37f10bDebian Linux Security Advisory 5118-1 - Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code.
314c30a5de7cf083ebbee813fe6ee604c9665873a6709ae7eced4cb4a8b45b1eDebian Linux Security Advisory 5119-1 - Several vulnerabilities were discovered in Subversion, a version control system.
1a34f38df0fea59b6eaf4cacde087ffeb38a537decf50636458f2c91b2a756baDebian Linux Security Advisory 5120-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
74c681ba09a0286ca1379ff783f8eb63418a29804da3426133e6212e28dccf67Debian Linux Security Advisory 5121-1 - A security issue was discovered in Chromium, which could result in the execution of arbitrary code.
96f1062896536386781fb9baeba3327f1a750b3e2f2f2da4eba8629d556d31e3Debian Linux Security Advisory 5122-1 - cleemy desu wayo reported that incorrect handling of filenames by zgrep in gzip, the GNU compression utilities, can result in overwrite of arbitrary files or execution of arbitrary code if a file with a specially crafted filename is processed.
5421218ce3e73476ed96ebc8b462941336566a2af7da9bf69a75f8e791c6efd2Debian Linux Security Advisory 5123-1 - cleemy desu wayo reported that incorrect handling of filenames by xzgrep in xz-utils, the XZ-format compression utilities, can result in overwrite of arbitrary files or execution of arbitrary code if a file with a specially crafted filename is processed.
1ab04d49d95e2b0dcc6b863b50b8a84240cc5fbcc66ab587e75600dd44cf18bbDebian Linux Security Advisory 5124-1 - Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
ac31a7ec5c3b6a081e32a479bd7abbfd626e4d0b6e623b6793ab268b54ed7e99Debian Linux Security Advisory 5125-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
90ddacda07c3eada30f1afa712a601abbfa154695d614dbebe409e6a090b946bThe Call For Papers for nullcon Goa 2022 is now open. Nullcon is an information security conference held in Goa, India. The focus of the conference is to showcase the next generation of offensive and defensive security technology. It will take place September 9th through the 10th, 2022. This conference was originally planned for March but was moved due to the pandemic.
39c60f1efe6870f2afbfec3ec20a66a476febcd39809fcf597f4f887ff64ea08Ubuntu Security Notice 5392-1 - It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 20.04 LTS. It was discovered that Mutt incorrectly handled certain input. An attacker could possibly use this issue to cause a crash, or expose sensitive information.
1ba4c79fde835ce103d1c0270c637879d9c0520b1e234e8654f3f73d155c0b2eUbuntu Security Notice 5394-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
4d28ba4ec65abbd647ce541d3f35e56b233b7e97e1369456b0e2db59766b5636Ubuntu Security Notice 5371-2 - USN-5371-1 fixed several vulnerabilities in nginx. This update provides the fix for CVE-2021-3618 for Ubuntu 22.04 LTS. It was discovered that nginx Lua module mishandled certain inputs. An attacker could possibly use this issue to perform an HTTP Request Smuggling attack. This issue only affects Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.
0312d8395edc75623bc232eb22c356f06f0f1ab5ad2bd86ce88f5fc4a29fe7c0Ubuntu Security Notice 5393-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, conduct spoofing attacks, or execute arbitrary code. It was discovered that Thunderbird ignored OpenPGP revocation when importing a revoked key in some circumstances. An attacker could potentially exploit this by tricking the user into trusting the authenticity of a message or tricking them into use a revoked key to send an encrypted message.
dfe0d7843af6c686d2aef7aa4091bcfac518f6bb06c09227a82b7e7c49217bbfHome Clean Service System version 1.0 suffers from a remote SQL injection vulnerability.
713a953a97cc2b254906ef14b96aecd818ac74f87d3c6e66fe86d43c4f287826
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed