Ubuntu Security Notice 4302-1 - Paulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested guest access the resources of a parent guest in certain situations. An attacker could use this to expose sensitive information. Gregory Herrero discovered that the fix for CVE-2019-14615 to address the Linux kernel not properly clearing data structures on context switches for certain Intel graphics processors was incomplete. A local attacker could use this to expose sensitive information. Various other issues were also addressed.
399774618ce50a03b46b4f27b7f87a67Ubuntu Security Notice 4301-1 - It was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information. Paulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested guest access the resources of a parent guest in certain situations. An attacker could use this to expose sensitive information. Various other issues were also addressed.
6b921a608ab319902047d0ad4c3538bdUbuntu Security Notice 4300-1 - It was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information. Paulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested guest access the resources of a parent guest in certain situations. An attacker could use this to expose sensitive information. Various other issues were also addressed.
caa07f46355fbda12c3113a6958695d0Gentoo Linux Security Advisory 202003-37 - Multiple vulnerabilities have been found in Mozilla Network Security Service (NSS), the worst of which may lead to arbitrary code execution. Versions less than 3.49 are affected.
7824b2d2113f0f93b2e8a0e692d28ed7Gentoo Linux Security Advisory 202003-36 - Multiple vulnerabilities have been found in libvorbis, the worst of which could result in a Denial of Service condition. Versions less than 1.3.6-r1 are affected.
0ad60dce2ec1f0c2ed56b45f699aa5b1Gentoo Linux Security Advisory 202003-35 - Multiple vulnerabilities have been found in ProFTPd, the worst of which may lead to arbitrary code execution. Versions less than 1.3.6c are affected.
7408c84ebed5b296a95f1b448998701aRed Hat Security Advisory 2020-0824-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 20.0.0.3 serves as a replacement for Open Liberty 20.0.0.2 and includes security fixes, bug fixes, and enhancements. For specific information about this release, see links in the References section. Issues addressed include a cross site scripting vulnerability.
4bf5b02b2d6a10ffdbd62114047ce18fRed Hat Security Advisory 2020-0820-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.6.0 ESR. Issues addressed include code execution and use-after-free vulnerabilities.
9204ddea23f88f41f3dafd1f220c7feaGentoo Linux Security Advisory 202003-34 - Multiple vulnerabilities have been found in Squid, the worst of which could lead to arbitrary code execution. Versions less than 4.10 are affected.
8f7b8d365da0caff859f70562d93266cRed Hat Security Advisory 2020-0819-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.6.0 ESR. Issues addressed include code execution and use-after-free vulnerabilities.
62282395f10ed7b3c865bb7fda54fd81Red Hat Security Advisory 2020-0816-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.6.0 ESR. Issues addressed include code execution and use-after-free vulnerabilities.
1d188b9011b0de3b6a0905af2d4482d2Red Hat Security Advisory 2020-0815-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.6.0 ESR. Issues addressed include code execution and use-after-free vulnerabilities.
73fd6bb90d719eebbb0532d16757c745Gentoo Linux Security Advisory 202003-33 - A heap-based buffer overflow in GStreamer Base Plugins might allow remote attackers to execute arbitrary code. Versions less than 1.14.5-r1 are affected.
9b038ed7eb9a3b475143901500d735aeGentoo Linux Security Advisory 202003-32 - A vulnerability in Libgcrypt could allow a local attacker to recover sensitive information. Versions less than 1.8.5 are affected.
5a0c7afb3c9e47d883848ceb6a38ade0Gentoo Linux Security Advisory 202003-31 - A buffer overflow in gdb might allow a remote attacker to cause a Denial of Service condition. Versions less than 9.1 are affected.
72c2e4312474a4fec71c7414d6146825Gentoo Linux Security Advisory 202003-30 - Multiple vulnerabilities have been found in Git, the worst of which could result in the arbitrary execution of code. Versions less than 2.21.1 are affected.
f5d70c6dc4cbf2d733da0373a4d65cdfGentoo Linux Security Advisory 202003-29 - Multiple vulnerabilities have been found in cURL, the worst of which may lead to arbitrary code execution. Versions less than 7.66.0 are affected.
502e92384dc33152f27a17095989604bGentoo Linux Security Advisory 202003-28 - Multiple vulnerabilities have been found in libarchive, the worst of which may lead to arbitrary code execution. Versions less than 3.4.2 are affected.
df816b0e9983c6d2aa57cc76e2e484f2Gentoo Linux Security Advisory 202003-27 - A vulnerability in libssh could allow a remote attacker to execute arbitrary commands. Versions less than 0.9.3 are affected.
2832ef60d9fde5502277348d43aa8605Gentoo Linux Security Advisory 202003-26 - Multiple vulnerabilities have been found in Python, the worst of which could result in a Denial of Service condition. Versions less than 2.7.17:2.7 are affected.
2ba7707d9732d8b3704a3da80777cb8fGentoo Linux Security Advisory 202003-25 - Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. Versions less than 4.1.0 are affected.
5099711b331be6f2e87954fabd2e26cfGentoo Linux Security Advisory 202003-24 - A heap-based buffer overflow in file might allow remote attackers to execute arbitrary code. Versions less than 5.37-r1 are affected.
176fd8109caa8fcb63bb1dc846ae5222Gentoo Linux Security Advisory 202003-23 - Several integer overflows in libjpeg-turbo might allow an attacker to execute arbitrary code. Versions below 2.0.3 are affected.
6387a503ea93d20f7a2d49e0ff18df71Gentoo Linux Security Advisory 202003-22 - Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution. Versions less than 2.26.4 are affected.
c72e044f981c157e7416923887596dd9Gentoo Linux Security Advisory 202003-21 - Multiple vulnerabilities have been discovered in runC, the worst of which may lead to privilege escalation. Versions less than 1.0.0_rc10 are affected.
66b05f7e919dd87ffb864b18c0c2c1b3
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed