Ubuntu Security Notice 5991-1 - It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service. It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service or possibly execute arbitrary code.
3560637df360f1ac89db43e6f7478418a3608bd908f00448013d1616b6595f39Ubuntu Security Notice 5990-1 - It was discovered that musl did not handle certain i386 math functions properly. An attacker could use this vulnerability to cause a denial of service or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 LTS. It was discovered that musl did not handle wide-character conversion properly. A remote attacker could use this vulnerability to cause resource consumption , denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS.
b6e09cb3df48f1603306a37b23ec5dbf13b8d183102120952ebf7665142a0fb0Ubuntu Security Notice 5989-1 - Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of service.
f989cc2bd0d3a7f40419b723142ff870fd239945ff8fad5b2a817b928069dc57Judging Management System version 1.0 suffers from bypass and remote shell upload vulnerabilities.
b2b1ea3efbc39916a8b6780d53b2a8a58c209c0d240ccfc1afc9c263d48f5142Judging Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for login bypass.
c36671f4c18dabebfb4ac38ad51b98f6b1c989d4f3b2c717cdb996cef42f7aafEQ Enterprise Management System version 2.2.0 suffers from a remote SQL injection vulnerability.
3bcaf97f13e7af562b4c5aee3ec0d4d3dfcaa22c00a7c4e4adfa0991703b1749Online Pizza Ordering version 1.0 suffers from a remote SQL injection vulnerability.
469baff57259c3edfd5b9dc9e8bb4a1d8c40b8043d5480830f7ddc095f662638rconfig version 3.9.7 suffers from a remote SQL injection vulnerability.
df3ba429f5e78218eb22753e367ddfe33daefa3c49241c3dca96529f31f60a8eCoolerMaster MasterPlus version 1.8.5 suffers from an unquoted service path vulnerability.
7573c6a1f85d55ad712651f58454825096ad1ed16f25b583488e0dc97287b836Ubuntu Security Notice 5988-1 - It was discovered that integer overflows vulnerabilities existed in Xcftools. An attacker could use this to cause a denial of service or possibly execute arbitrary code.
bde642c6657d07ea328d86508275a3383ebe1962bfbef9e018aa344510b008e4Qubes Mirage Firewall versions 0.8.0 through 0.8.3 suffer from a denial of service vulnerability.
5f45f1b2f19df34e7b84103b836c78bb7dd504a9c645807af0e711e38743d5edWordPress WooCommerce plugin version 7.1.0 suffers from a remote code execution vulnerability.
f021cd47c7f1b017839fccc746799aa283e87568ba3bd7b36c7e5308828f5b5eCacti version 1.2.22 suffers from a remote command execution vulnerability.
bc9ecc25f4fbe8075d07bfe9bc77d607edb0a252aa91b78b0c9c13fbd7a33a3bTextpattern version 4.8.8 suffers from an authenticated remote code execution vulnerability.
89d596b7562691bc5e3d1b701cec34938f03d197f1f7784c76de0061cdc011ccBludit version 3-14-1 suffers from a remote shell upload vulnerability.
f5baef0a0f9582f9e9b79f39070eaecf02e29c6dea03fc9562e5f4a59969f8c3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed