Ubuntu Security Notice 4643-1 - It was discovered that atftp's FTP server did not properly handler certain input. An attacker could use this to to cause a denial of service or possibly execute arbitrary code. It was discovered that atftp's FTP server did not make proper use of mutexes when locking certain data structures. An attacker could use this to cause a denial of service via a NULL pointer dereference.
3b6bc9b46d9d6aa32a2461a6debd03303a67760fd5ff0a3c496573182775fb7b
GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
c55307b247af4b6f44d2916a25ffd1fb64ce2e509c3c3d028dbe7fbf309dc30a
nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.
accdca619abec4f541c7063323bd6a248a13530f91a38dfe072240aeceabcfcb
ZTE WLAN router MF253V version 1.0.0B04 suffers from cross site request forgery, hardcoded password, outdated component, and cross site scripting vulnerabilities.
2ad4c83e851b5a6d905cd41028173a338d0361610fcbc55e00ab71b116573c19
This Metasploit module exploits an unauthenticated command injection vulnerability found in ZeroShell version 3.9.0 in the "/cgi-bin/kerbynet" url. As sudo is configured to execute /bin/tar without a password (NOPASSWD) it is possible to run root commands using the "checkpoint" tar options.
e52e0c15527e1e5b23e1a5f32e17df46f22d8f0dc8643606d04c891cd43c603d
Seowon 130-SLC router version 1.0.11 suffers from a remote code execution vulnerability.
a001ec1fd474376077daad767cd7474ae02456a498b1fdd3e608dcce5c710674
Red Hat Security Advisory 2020-5179-01 - The org.ovirt.engine-root is a core component of oVirt. Issues addressed include a denial of service vulnerability.
fdc2b5c3091634e36c48dee56a3e76656949a67420cbf37fb72b9a0af3999f28
Red Hat Security Advisory 2020-5218-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include a denial of service vulnerability.
15aba49494e2fb2808bf07128e9109274c598f62c5d401739156e45e752497c9
Red Hat Security Advisory 2020-5118-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a denial of service vulnerability.
252e1d15a3567abb864679496c50326cc1b87ae1d07f0f4efc9f8758ab859038
Red Hat Security Advisory 2020-5119-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a denial of service vulnerability.
705249a7ee1d97b8757ad759d72450e5edf418d08f2863e5efbdbefa6f51cf21
Red Hat Security Advisory 2020-5203-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.
50329a39035397f99842c0736e85bed4c8c01c41c61459a70df00e7c3f413a2f
Ubuntu Security Notice 4642-1 - It was discovered that PDFResurrect incorrectly handled certain memory operations during PDF summary generation. An attacker could use this to cause out-of-bounds writes, resulting in a denial of service or arbitrary code execution.
b1f3c0d4598d65ab3c336e9686ae3a3299fbc7e19f1215d1c5a2c9b044490922
Ubuntu Security Notice 4641-1 - It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a denial of service. It was discovered that Libextractor incorrectly handled certain specially crafted files. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.
5352ee994314ed020f2d2fc940e7774d864f1c4317a46818006d8a4604874f59
Red Hat Security Advisory 2020-5185-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include an information leakage vulnerability.
d16a504a4236e997a4015c695aa8166d5d0c7955549b35384dde435a4bf05ad0
Red Hat Security Advisory 2020-5206-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service, out of bounds write, and use-after-free vulnerabilities.
433743a8398de7b0d9a122f5f0adf74b3b7650d32af4a46ee0b0fb70aa8ba46c
Ubuntu Security Notice 4640-1 - James Henstridge discovered that an Ubuntu-specific patch caused PulseAudio to incorrectly handle snap client connections. An attacker could possibly use this to expose sensitive information.
5f384fec92507bfd6ba02cc4c667a7ae9de98134147b08fe2d9c964d8a8cbf09
Red Hat Security Advisory 2020-5199-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.
60ebef663393ac53bc26fc6c492194a464e64dec91ee9baf3b775236a60fa27d
Red Hat Security Advisory 2020-5201-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser.
b31623decc964d6377a5a8baf05d70be15e0f2694502c2916618edf5d2a04b5f
Red Hat Security Advisory 2020-5198-01 - Red Hat OpenShift Jaeger is Red Hat's distribution of the Jaeger project, tailored for installation into an on-premise OpenShift Container Platform installation.
0364e0f4cfb6f1c12dc78b676e6f0e4d9366d5964d1742935b19b337664bfe67
OpenCart version 3.0.3.6 suffers from multiple persistent cross site scripting vulnerabilities.
18a331e01f44393dd5a97c23319ba3b19e021d80b21c07ba30affea1b951be1a
Red Hat Security Advisory 2020-5190-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include an information leakage vulnerability.
0c5997ad04517c019cbbe19511497d01ffe6ed470c7b8682e943bdfa20d8b32e
Red Hat Security Advisory 2020-5188-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include an information leakage vulnerability.
70b6bf2a71af641dff83dc7b6b1aaf7cffa59dcfc6e92f6235a19d314f5d72e3
Red Hat Security Advisory 2020-5189-01 - The microcode_ctl packages provide microcode updates for Intel.
701f3c026318cf16a85dbf3cd65b9d1846c5c5e777255134796e00ff5b09f305
nopCommerce Store version 4.30 suffers from a persistent cross site scripting vulnerability.
e527067166d57a9787a243b7f4ac07f1587eb0e0975b2bdb8ab4a5a87257d057
Red Hat Security Advisory 2020-5181-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include an information leakage vulnerability.
b25d456ebb0609a53b5e41d455f2ce371c4890fb9f844f2be12a6f92c61461c7