Ubuntu Security Notice 6554-1 - Zygmunt Krynicki discovered that GNOME Settings did not accurately reflect the SSH remote login status when the system was configured to use systemd socket activation for OpenSSH. Remote SSH access may be unknowingly enabled, contrary to expectation.
5ca5b576f0061df75c3ade49dd6373ae8347c26cd9c25ea2e792b5df29dc58bcUbuntu Security Notice 6548-2 - It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose sensitive information. It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service.
0f39fa4021dcac506c610ceafefe51eff47f66b985fdd6541351564b550db33aApple Security Advisory 12-11-2023-5 - macOS Ventura 13.6.3 addresses code execution and out of bounds read vulnerabilities.
cdf304dadc475dd3f03358918e311872f48284403c05b5d51661ccd40d923b7aApple Security Advisory 12-11-2023-4 - macOS Sonoma 14.2 addresses code execution, out of bounds read, and spoofing vulnerabilities.
746c4e39611c87686c78a9202222f2319cd129230aab094801d415f24ddf5d8fAtos Unify OpenScape Session Border Controller (SBC) versions before V10 R3.4.0, Branch versions before V10 R3.4.0, and BCF versions before V10 R10.12.00 and V10 R11.05.02 suffer from an argument injection vulnerability that can lead to unauthenticated remote code execution and authentication bypass.
15f221e1138d1ef925e8ba667c47a56574048d29e535136df21b4d5bd24bea13Anveo Mobile application version 10.0.0.359 and server version 11.0.0.5 suffer from missing certificate validation and user enumeration vulnerabilities.
c4a7657b4c12593459bacc7aff28a2ad2162f37df6ff2b5a94f451b1bba03ac4Ubuntu Security Notice 6549-2 - It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service. Lin Ma discovered that the Netlink Transformation subsystem in the Linux kernel did not properly initialize a policy data structure, leading to an out-of-bounds vulnerability. A local privileged attacker could use this to cause a denial of service or possibly expose sensitive information.
f127a7cf51a5e0eecacd7fb9e9577578ce834edda3d6c098440bde8fb781b4b5Apple Security Advisory 12-11-2023-3 - iOS 16.7.3 and iPadOS 16.7.3 addresses code execution and out of bounds read vulnerabilities.
1d7208cce425474107de508f8080ab0e13a24d021a1191a347dc1209fb4ae2fdApple Security Advisory 12-11-2023-2 - iOS 17.2 and iPadOS 17.2 addresses code execution and spoofing vulnerabilities.
0438f0a9537e5a05a2fce86952d5d7e45b1197dfffe609685a02eb3c1566aa69Apple Security Advisory 12-11-2023-1 - Safari 17.2 addresses code execution vulnerabilities.
bec6147cd6517d3ffc6a83dabc56dc6d7b6bee596206463e778601465c19dc46Ubuntu Security Notice 6534-2 - It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service. Lin Ma discovered that the Netlink Transformation subsystem in the Linux kernel did not properly initialize a policy data structure, leading to an out-of-bounds vulnerability. A local privileged attacker could use this to cause a denial of service or possibly expose sensitive information.
1c6dd13ae89b3e3cc1d1a05dbb0762f8e462f0c166cbd1e4f34a365a4f55222dUbuntu Security Notice 6552-1 - Florent Saudel and Arnaud Gatignol discovered that Netatalk incorrectly handled certain specially crafted Spotlight requests. A remote attacker could possibly use this issue to cause heap corruption and execute arbitrary code.
4f211f4e04f80fd5fbf4dde15172a611c12c044ceb6946179729753b0dec58bfUbuntu Security Notice 6551-1 - It was discovered that Ghostscript incorrectly handled writing TIFF files. A remote attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service.
e76496662ef44d852a96f68620111b693cbb8190bcb08cb99b0a117a3da9e113Apple Security Advisory 11-30-2023-3 - macOS Sonoma 14.1.2 addresses code execution and out of bounds read vulnerabilities.
dca2a5ae5628bad95a1121b67c8de5cfa55101a72d4e64c420dc7c600d767778Apple Security Advisory 11-30-2023-2 - iOS 17.1.2 and iPadOS 17.1.2 addresses code execution and out of bounds read vulnerabilities.
809f36842c144ce17448dabebed90228266f0006e5ee86f71f950fee499a28f2Apple Security Advisory 11-30-2023-1 - Safari 17.1.2 addresses code execution and out of bounds read vulnerabilities.
ec5b1ebb333d8f30c168cd3d1d52606ade427c18b5e9471d44d0875a23d9292bRed Hat Security Advisory 2023-7773-03 - An update is now available for Red Hat Ansible Automation Platform 2.4.
8ce1c6442235d47c4a0fe0a6ebeb2b98c9bb6e038809e8a3c5ce23a29286317bRed Hat Security Advisory 2023-7772-03 - An update for rh-postgresql13-postgresql is now available for Red Hat Software Collections. Issues addressed include integer overflow and remote SQL injection vulnerabilities.
26ab9a9353f9439f0d28b3f1db6c8784f3b0c583998b708386a843f71915fc33Red Hat Security Advisory 2023-7771-03 - An update for rh-postgresql10-postgresql is now available for Red Hat Software Collections. Issues addressed include an integer overflow vulnerability.
ff4c63b3909bd2f7d5d3eeceb34a56f9db5e8bb8449f2042e2d778f562f68986Red Hat Security Advisory 2023-7770-03 - An update for rh-postgresql12-postgresql is now available for Red Hat Software Collections. Issues addressed include integer overflow and remote SQL injection vulnerabilities.
529f90c9237e1f7c15d1a1906ee4207ad4f6ef961e7e81f9da69c0cc423fcf8dRed Hat Security Advisory 2023-7766-03 - An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.
3ab4421a8bf67db0d5e35bad20c679c37272f7e16e3fc48dd9cd2939d7b91991Red Hat Security Advisory 2023-7765-03 - An update for podman is now available for Red Hat Enterprise Linux 9.
2288a015d9356d9c04b2c252867a6841bbe0a079cd7d0ec7500a0d1ba21668ceRed Hat Security Advisory 2023-7764-03 - An update for buildah is now available for Red Hat Enterprise Linux 9.
c7b9857d74ad83391a0605d07b7bf5bf5d58a4c5765d89634f391719cc15ab0eRed Hat Security Advisory 2023-7763-03 - An update for runc is now available for Red Hat Enterprise Linux 9.
dded1eac5cf18e7dd82340c0a6bdb1fbcdde4ea5e5f7e3cd4864f9781d152c13Red Hat Security Advisory 2023-7762-03 - An update for skopeo is now available for Red Hat Enterprise Linux 9.
c9a79a7b5cf0deb96af1221bc2b82c8e5c1b078c4d30721b18477a3fc0bcacc4
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed