Red Hat Security Advisory 2021-2351-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.204 and .NET Runtime 5.0.7. Issues addressed include a denial of service vulnerability.
26cfeaf500c9c0a63ef6f345601f65f6Red Hat Security Advisory 2021-2350-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.116 and .NET Runtime 3.1.16. Issues addressed include a denial of service vulnerability.
a68a697718b3f6a7b1798020e39667e7FreeFloat FTP Server version 1.0 SIZE denial of service exploit.
6d5484189be3cde4d35285f6f639eae5Red Hat Security Advisory 2021-2353-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.204 and .NET Runtime 5.0.7. Issues addressed include a denial of service vulnerability.
17b58ad08025bbb81a05137ac3c0fd91Red Hat Security Advisory 2021-2352-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.116 and .NET Runtime 3.1.16. Issues addressed include a denial of service vulnerability.
b8380487634cb5b964d59291a753cefdSAMI FTP server version 2.0.2 USER denial of service exploit.
313e692553a3a89a25aac7fd19c47a88Backup Key Recovery version 2.2.7 suffers from a denial of service vulnerability.
9abf25afe887cb7990ba1f1dcf4a4071Nsauditor version 3.2.3 suffers from a denial of service vulnerability.
b45def01258069c999265cfc129e527bNBMonitor version 1.6.8 suffers from a denial of service vulnerability.
2ca64a66f35b8bd539837bad5041d7e1Ubuntu Security Notice 4969-3 - USN-4969-1 fixed a vulnerability in DHCP. The package for Ubuntu 21.04 introduced a regression causing it to reject certain valid configuration files. This update fixes the problem. Jon Franklin and Pawel Wieczorkiewicz discovered that DHCP incorrectly handled lease file parsing. A remote attacker could possibly use this issue to cause DHCP to crash, resulting in a denial of service. Various other issues were also addressed.
9fe00e0f535c93884b6a5a03be92540aSticky Notes and Color Widgets version 1.4.2 suffers from a denial of service vulnerability.
3e4c061eec5758c66ddc95fd55799276Ubuntu Security Notice 4984-1 - Jan Beulich discovered that the Xen netback backend in the Linux kernel did not properly handle certain error conditions under paravirtualization. An attacker in a guest VM could possibly use this to cause a denial of service. It was discovered that the Realtek RTL8188EU Wireless device driver in the Linux kernel did not properly validate ssid lengths in some situations. An attacker could use this to cause a denial of service. Various other issues were also addressed.
ef9bb22f3bfa67465b7e2c92a0636737FileCOPA FTP Server version 1.01 denial of service exploit.
6423a72967308d9d96265f30530f5012Ubuntu Security Notice 4983-1 - Piotr Krysiuk discovered that the eBPF implementation in the Linux kernel did not properly enforce limits for pointer operations. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Piotr Krysiuk and Benedict Schlueter discovered that the eBPF implementation in the Linux kernel performed out of bounds speculation on pointer arithmetic. A local attacker could use this to expose sensitive information. Various other issues were also addressed.
18944e6d71f08e1228485e41148d89d4Ubuntu Security Notice 4982-1 - Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service. Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel did not properly deallocate memory in certain error situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
48fb2674411f417202ce07ced0925537Ubuntu Security Notice 4981-1 - Joshua Rogers discovered that Squid incorrectly handled requests with the urn: scheme. A remote attacker could possibly use this issue to cause Squid to consume resources, leading to a denial of service. Joshua Rogers discovered that Squid incorrectly handled requests to the Cache Manager API. A remote attacker with access privileges could possibly use this issue to cause Squid to consume resources, leading to a denial of service. This issue was only addressed in Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. Various other issues were also addressed.
dc785af17f095adce3188290ba6dc2cbInkpad Notepad and To Do List version 4.3.61 suffers from a denial of service vulnerability.
05dcb8bee0c6bd181999fca47c72c631My Notes Safe version 5.3 suffers from a denial of service vulnerability.
41ff462d29650978e92e573a5b0366bcMacaron Notes Great Notebook version 5.5 suffers from a denial of service vulnerability.
af7bafb9d7cb523d9ae5f437bcaaca6aColor Notes version 1.4 suffers from a denial of service vulnerability.
a293883cf9e4b92fdc9d7b9b466205f6Red Hat Security Advisory 2021-2230-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include HTTP request smuggling, HTTP response splitting, denial of service, information leakage, and insecure permissions vulnerabilities.
e3874da2921faf9eb845a84c5bf2d476Red Hat Security Advisory 2021-2239-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include buffer overflow, denial of service, and integer overflow vulnerabilities.
365f1ad26e6efd06364c29b4976ba110Ubuntu Security Notice 4979-1 - Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service. Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel did not properly deallocate memory in certain error situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
3034b897d2745e89ae5688e5b2c226c9Ubuntu Security Notice 4978-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, re-enable camera devices without an additional permission prompt, spoof the browser UI, or execute arbitrary code. It was discovered that filenames printed from private browsing mode were incorrectly retained in preferences. A local attacker could potentially exploit this to obtain sensitive information. Various other issues were also addressed.
01e79350aca3fc8a59ec16c81063b717Ubuntu Security Notice 4977-1 - Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service. Kiyin discovered that the NFC LLCP protocol implementation in the Linux kernel did not properly deallocate memory in certain error situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
beb0471b09c906908cd367b5a8f72ecc
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed