Red Hat Security Advisory 2021-0992-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.9.0 ESR. Issues addressed include a spoofing vulnerability.
0beb2ace97462de39ed1d992b5064e7d5d9f84b509aa66a9eb5aec5241490152Ubuntu Security Notice 4890-1 - Piotr Krysiuk discovered that the BPF subsystem in the Linux kernel did not properly compute a speculative execution limit on pointer arithmetic in some situations. A local attacker could use this to expose sensitive information. Piotr Krysiuk discovered that the BPF subsystem in the Linux kernel did not properly apply speculative execution limits on some pointer types. A local attacker could use this to expose sensitive information. Various other issues were also addressed.
b25993fe5d12873c32c2eaf455cfa3c641110f1b5ba08a35d185354f593c26a3Red Hat Security Advisory 2021-0996-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.9.0. Issues addressed include a spoofing vulnerability.
230cb77f45733ad34db897a0b588ca5ab5c53732b2700c3f65cb69dd3b978695This Metasploit module exploits an unauthenticated arbitrary file upload in FortiLogger via an insecure POST request. It has been tested on versions prior to 5.2.0 in Windows 10 Enterprise.
a85e9f5cba1f6749154173a1eef48254ac7c27865cfb1fbb2408dc5b6a948e6bUbuntu Security Notice 4889-1 - Adam Nichols discovered that heap overflows existed in the iSCSI subsystem in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Adam Nichols discovered that the iSCSI subsystem in the Linux kernel did not properly restrict access to iSCSI transport handles. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.
653279eb941dc520055abdba149fa888738b66335b33c06e2165860bcea77fd4OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5Linksys EA7500 version 2.0.8.194281 suffers from a cross site scripting vulnerability due to an old jQuery version.
ed64587e6af38672498f31d0fd4d09d6a672715c905304f9cc64acecea858861Backdoor.Win32.DarkKomet.gozu malware suffers from an insecure permissions vulnerability.
30aaeed5c03bdce64c2f92bda1a8989f75842881fccafe66f500629b72c897c9Ubuntu Security Notice 4888-1 - Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain LDAP attributes. A remote attacker could possibly use this issue to cause the LDAP server to crash, resulting in a denial of service. Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain DN strings. A remote attacker could use this issue to cause the LDAP server to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
546850352f9f20cc004c3cc1ad61cf5b2e6f883387eba7f8b259cb8c44df3503Red Hat Security Advisory 2021-0991-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.9.0 ESR. Issues addressed include a spoofing vulnerability.
86846d2863092b129999a9295fec81227ed067d13cdd36bd10bf20ccb17aa1bcRed Hat Security Advisory 2021-0994-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.9.0. Issues addressed include a spoofing vulnerability.
92f592dcd962e5398522f1c3e77119df9ed4cc5f6bdd64edcdd0925207a42fa5Genexis Platinum-4410 version P4410-V2-1.31A suffers from a persistent cross site scripting vulnerability.
d105035438c6e505eec8d6a6830b6e875b2ee08bc4f3242cbb504fdcc480338dWorm.Win32.Ngrbot.acno malware suffers from an insecure permissions vulnerability.
528bccfbfca4aab52d36b43bc4c73536ba55b93cc43938c28a413a4b1123c9beRed Hat Security Advisory 2021-0989-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.9.0 ESR. Issues addressed include a spoofing vulnerability.
7cf8093a6f80ac1bc05fe0300de9409c8d3cd88b64b5412d3a49eda9f88728a8Red Hat Security Advisory 2021-0993-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.9.0. Issues addressed include a spoofing vulnerability.
0a0d78d27867982bbb669a8ab8b155eb15bef29ef1ff4cfce92375ca16cab6feWhitepaper that discusses XXE exploitation via file uploads.
7c6849a41692d2abfdae193b26658ffc1ed539af111174b955d5ba020dc87949Worm.Win32.Recyl.dp malware suffers from an insecure permissions vulnerability.
45e7cf195f3d257485b2ae78f2db65b9214cece48c4a5d9f106b825317fb6835Red Hat Security Advisory 2021-0995-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.9.0. Issues addressed include a spoofing vulnerability.
65c3fb96861a5095748a61811fa91692556423c606441e5ff1405d3b8e13070eRed Hat Security Advisory 2021-0990-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.9.0 ESR. Issues addressed include a spoofing vulnerability.
971c6830932725382e9e107349182a7519e5712cda26ef895c57c3cfb73fa216Red Hat Security Advisory 2021-0988-01 - The RHV-M Virtual Appliance automates the process of installing and configuring the Red Hat Virtualization Manager. The appliance is available to download as an OVA file from the Customer Portal. Issues addressed include a buffer overflow vulnerability.
b1c9760f913a9f1a467e7a016d1241c6bac0c51884cdffd0dafc4297e5a49a74Ovidentia version 6 suffers from a remote SQL injection vulnerability.
b0ed7025e88391ed5c11b59e9b8a85a5fe3a1950079c930a090a9073e7eb6ecfRed Hat Security Advisory 2021-0833-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.404. Issues addressed include denial of service and integer overflow vulnerabilities.
718c3d22997cb29c7fd7fbb6462ab5f80471579aa3b8679a0e023787589a4c18Dolibarr ERP/CRM version 11.0.4 authenticated file upload restrictions bypass exploit that achieves remote code execution.
f58dbb30223078b60e2c591a9796c22c1a7783555278cad42361cd544f71b096Red Hat Security Advisory 2021-0986-01 - The release of Red Hat AMQ Online 1.7.0 serves as a replacement for earlier AMQ Online releases, and includes bug fixes and enhancements, which are documented in the Release Notes document linked in the References. Issues addressed include information leakage and traversal vulnerabilities.
23990e2f898aef17b77d80cf4cd02c8a28de9443759dcc3226d9242052bb06f8OpenSSL Security Advisory 20210325 - The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Other issues were also addressed.
55d25269ba150b01444f96b032ec37fee3669c70ad7324bb78b23f604cf1aed7
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed