Red Hat Security Advisory 2023-0820-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.8.0. Issues addressed include a use-after-free vulnerability.
537024c4cab810d90fc030cf6a31d8aeaba39da5053307430086476c543be13f
Debian Linux Security Advisory 5355-1 - Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code.
0f4b7e99ba15bbfd85f7386e545fc53f7d8d15979fc3bb26c7f05c85596889da
Debian Linux Security Advisory 5354-1 - Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data from a compromised host.
70bd678158e429e420784d3be6dfb3a7fad6ffbaabdcee832e1d3f20de7066c1
Debian Linux Security Advisory 5353-1 - Christian Holler discovered that incorrect handling of PKCS 12 Safe Bag attributes in nss, the Mozilla Network Security Service library, may result in execution of arbitrary code if a specially crafted PKCS 12 certificate bundle is processed.
068c59397fcd13600b29d512e21b00e1a4fc98e267e2b38fdc5820e8281a93e7
Ubuntu Security Notice 5880-1 - Christian Holler discovered that Firefox did not properly manage memory when using PKCS 12 Safe Bag attributes. An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes. Johan Carlsson discovered that Firefox did not properly manage child iframe's unredacted URI when using Content-Security-Policy-Report-Only header. An attacker could potentially exploits this to obtain sensitive information.
52a03d98745dab7fc6ca08096031142868f3b4b4ad08bdeed6e8c320a08a74d8
Red Hat Security Advisory 2023-0809-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
64d760b0f84fd884f5a9580099f973acc202f7650607526caf85e5b0ae907220
Red Hat Security Advisory 2023-0805-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
cfa40fc256c77d593c5a6e960f9f6b2c2fb43426fb7e9cbdd6b7ab80e95c6bdb
Red Hat Security Advisory 2023-0808-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
88c7f4685c90b5318576d6349b3dd56ba1e45ab3a8d6c95cd1385cf47623d58e
AIEngine is a next generation interactive/programmable Python/Ruby/Java/Lua and Go network intrusion detection system engine. AIEngine also helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
65c5483016570ea2fd986c9fd302001786b8924e7bfe294e0bbbd46f415bf974
Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about Falco as a mix between snort, ossec and strace.
996c138ce94c027c6a27898950c48ee664c380889d564871d14f9b0e48185b77
Red Hat Security Advisory 2023-0810-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
354e9d9061ece6bd38e95b02c6d61d18d689e1465de7a220b51ab3d7907f8082
Red Hat Security Advisory 2023-0811-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
348dc1d326351bfa69305ff0d4787a66503f853f4ccd0deb8677243fdfad3d29
Red Hat Security Advisory 2023-0807-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
0911573444772b9f436a584525bbaf1bd4031b7625d24312a05ebb46f26f7172
Red Hat Security Advisory 2023-0812-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
9d1404f089b3e095d818b7ae21e1522909439edf033484cd2022cc88ec372578
Red Hat Security Advisory 2023-0806-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.8.0 ESR. Issues addressed include a use-after-free vulnerability.
79bdeec98aaa0f2a23eb6fd1b2536af0429592d9f65c04ff0a63e8df4d0e5c96
This advisory ties together older research on a contact file handling flaw on Microsoft Windows as well as recent research discovered that uses the same methodologies.
bd483c57b86b3adc56157efdf3dd779e6e9b6a498c944d78ee46fe9d56a01c00
Kardex Mlog MCC version 5.7.12+0-a203c2a213-master suffers from a file inclusion vulnerability that allows for remote code execution.
960e6d130eb7b30180562e91395b84ea4b20026b7ec3c0ea3b55a62820151341
Debian Linux Security Advisory 5352-1 - An anonymous researcher discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
d661d56f97324d31097d8132ca6c40a2190655ca85552ad31d778705cdc002df
Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.
3c84faaa080021bafaf9b679e0c16af3aa684edf557c1836014c2cf350d7cee2
Red Hat Security Advisory 2023-0803-01 - An update is now available for Red Hat OpenShift GitOps 1.7. Red Hat Product Security has rated this update as having a security impact of Important.
05bca020b45a5ad890a5c1c749e28d4f329578a1e2dd2a308e6f48d053941a32
Red Hat Security Advisory 2023-0804-01 - An update is now available for Red Hat OpenShift GitOps 1.5. Red Hat Product Security has rated this update as having a security impact of Important.
d0f00b645749c7f3dab3ca1da2c175d01a5adf448a194fffc6eacf10adf65637
Best POS Management System version 1.0 suffers from a remote shell upload vulnerability.
18380c19144362b994cc7304b96b87275954a1fb405a57ba6bf5c9c56fbabf2d
Red Hat Security Advisory 2023-0802-01 - An update is now available for Red Hat OpenShift GitOps 1.6. Red Hat Product Security has rated this update as having a security impact of Important.
32806dda2f0b1a0d5696e60557e35891b58c9f6eab69373f3f1c5382b3b90376
Best POS Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
a7acc7de5abd2e101dd0e5cabd1f51c6855082d6151c6540a217afade665b956
Best POS Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
65540cda9a5044b98904f5c7344b4da99770506e9ddaa56169a2197b44ef3845