Red Hat Security Advisory 2022-1851-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a memory leak vulnerability.
2324d9e37f35a58b59282b367250dc1c5d6f823c1ead4892ee10af453d212d56Anuko Time Tracker version 1.20.0.5640 suffers from a remote SQL injection vulnerability.
e4482fcf6e8633bde341b060885eef6ee281ae2dd86d01b3a88b52afec8264a3Red Hat Security Advisory 2022-2013-01 - OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Issues addressed include a privilege escalation vulnerability.
13bc1420d8a6b3ab9e7cc3edb50bece9071c44dfad388f8f4a9f1a3ec25f6121Red Hat Security Advisory 2022-1842-01 - Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extract and delete methods for Exif thumbnails, classes to access Ifd, and support for various image formats. Issues addressed include a denial of service vulnerability.
ccb8d5c192208c14df34a946a5d2b12b7fb96142f3e49bfc870fdecd3d096ed7Red Hat Security Advisory 2022-1766-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.
5b846c221d454c90b54c27181222908dd32fca2b480faa78ffd9087c0eef3083Whitepaper discussing how to crack Notezilla passwords.
db3961e08ef61a0d202ba7ab4184a19ba1f3ed41a5461a43cca0d7b0d4c10807UDisk Monitor Z5 Phone version 2.0.3.0 suffers from an unquoted service path vulnerability.
fcdc8e477ac157da9fa6befbc802ed91df0fb4f8f677ca40a3f8d69a71401c89TCQ suffers from an unquoted service path vulnerability related to ITeCProteccioAppServer.exe.
ece06efa8e457d7e848a6bfc1601ab3b47f8109f9668dd3ecb621adf2cdb2e77Red Hat Security Advisory 2022-1830-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include a man-in-the-middle vulnerability.
16f9b2a051d1a45a9a7701025668007af70d683f92879c34e2d1950f3fb559ddRed Hat Security Advisory 2022-1796-01 - Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Issues addressed include an out of bounds write vulnerability.
5f970f04fcced1e7338521d788189a47f4f6f5a597aea6533136c6236b1bfd4bManageEngine ADSelfService Plus build 6118 suffers from an NTLMv2 hash exposure vulnerability.
f42a82f890c3591b725d59a439ef11e7ca7de7237e5ed593bd8a81bf354e0e19Red Hat Security Advisory 2022-1991-01 - The cpio packages provide the GNU cpio utility for creating and extracting archives, or copying files from one place to another. Issues addressed include integer overflow and out of bounds write vulnerabilities.
24a0cf7784baf59e62fa1e4f391e96a61f3b8c3c80212b5da1fd9457fef97e39Microsoft's CMD.EXE suffers from an integer overflow vulnerability that can cause a denial of service.
0dd89aa95efb736688b5ffc10611f37891e22e136b3e6479a503952ce6a9f6e3Red Hat Security Advisory 2022-1823-01 - The mod_auth_openidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server. Issues addressed include cross site scripting and open redirection vulnerabilities.
f239b6509c167d4f0fb694e9c49ad2a7197e2d9f0765f51fcc0f6869179992dcRed Hat Security Advisory 2022-1814-01 - GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts.
6aef6e9677cf9c1bb55c80d3c53876b94f7260847d6381d799556ac3d7ca711aSAP BusinessObjects Intelligence version 4.3 suffers from an XML external entity injection vulnerability.
56c01844910c634b5ec0e547a629647a5c63894084dfb84fd74cbdf5862a73cfWondershare Dr.Fone 11.4.10 suffers from an insecure permissions vulnerability.
6baab5e5b96ac5b2810f7c58c99e73721e101131d1ccc22103fb1d2cd78d6665Red Hat Security Advisory 2022-1797-01 - Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extract and delete methods for Exif thumbnails, classes to access Ifd, and support for various image formats. Issues addressed include a denial of service vulnerability.
90830d1d7e9d6ddcd3357ae70b66cb6537422d78fa8c9bd814b168cec88ffcccRed Hat Security Advisory 2022-1821-01 - Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for MySQL and PostgreSQL. Issues addressed include a denial of service vulnerability.
7f5d07cb76947dd97d0ef4499761f3a21f5ac6ce8b664d628ff9051f4d8f3ad5DLINK DIR850 suffers from a configuration disclosure vulnerability.
5034a5f0e126b6ab60e98dea096eaebf7cc6ad8b71cab77e3def72b569c48e46DLINK DIR850 suffers from an open redirection vulnerability.
72409a8afce1317e2f05d207afa64d2146abe33a6dccbbd6cf731c303a7744b9Cyclos version 4.14.7 suffers from multiple cross site scripting vulnerabilities.
e710f333bbcaeaac9f58dbc1a7e5505dde0018fe2fe7af025485b2f1b8973bd5Red Hat Security Advisory 2022-1819-01 - Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Issues addressed include a memory exhaustion vulnerability.
0cef4f3cb238b44324063cb73b26ab3a647c83018d6eeb756322cd435509f3e0ExifTool version 12.23 suffers from an arbitrary code execution vulnerability.
64cc166efac5cd6f78570d3b6a1c98c138fa2b30ed3484dfc3395c62d10feda4Red Hat Security Advisory 2022-1777-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include buffer overflow, bypass, code execution, cross site scripting, information leakage, out of bounds read, and use-after-free vulnerabilities.
1b42edcf15bc395449a2f06f7c24ba1c5002c9b86ced5974af0fc8fe1f4ffeb1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed