Red Hat Security Advisory 2021-2085-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
4f0a81e2c5d27fd9a6c3b5e1e56f67f322754ea46a1bd409211ea15627fa957d
Red Hat Security Advisory 2021-2077-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include buffer overflow, denial of service, and memory leak vulnerabilities.
705bb18b078700e9fd3519317ba6fa9569a33116767336c61e78eb943ce836ca
Red Hat Security Advisory 2021-2070-01 - Red Hat Single Sign-On 7.4 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.4.7 serves as a replacement for Red Hat Single Sign-On 7.4.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include an information leakage vulnerability.
7578f5d5a1382ac369ceea4ea502ae58bc21dcff6d70b2118e08a915a5e53ffc
Spotweb-Develop version 1.4.9 suffers from a cross site scripting vulnerability.
edc08c2a5faaffc264b7ebd53bd4a33e8c3c676b0c81127f6aa98fce2d4127ad
GRR Rapid Response is an incident response framework focused on remote live forensics. The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely. GRR consists of 2 parts: client and server. GRR client is deployed on systems that one might want to investigate. On every such system, once deployed, GRR client periodically polls GRR frontend servers for work. "Work" means running a specific action: downloading file, listing a directory, etc. GRR server infrastructure consists of several components (frontends, workers, UI servers) and provides web-based graphical user interface and an API endpoint that allows analysts to schedule actions on clients and view and process collected data.
6eb8e889cd5d36a2882152da0ee21316d93409184738ea0b1cc9a7320da289f4
Red Hat Security Advisory 2021-2063-01 - Red Hat Single Sign-On 7.4 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.4.7 serves as a replacement for Red Hat Single Sign-On 7.4.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
2d94d628fff183b8bda7439b36a66bd0a88152b124667aef77772b30dd1123f6
Red Hat Security Advisory 2021-2064-01 - Red Hat Single Sign-On 7.4 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.4.7 serves as a replacement for Red Hat Single Sign-On 7.4.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
ca330cd165ae9f65b71504ad056484a8e1c4b9cd91183154e930683371117aea
Red Hat Security Advisory 2021-2065-01 - Red Hat Single Sign-On 7.4 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.4.7 serves as a replacement for Red Hat Single Sign-On 7.4.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
509feb989748a2a2ede4a51dc864d3c3f34475ef5553bd818835f7aec1668774
Red Hat Security Advisory 2021-2061-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
eb0886f0c0c16fa210f72e2ade067bf043867c0b3261d23ce696638f432b054c
Acer Updater Service version 1.2.3500.0 suffers from an unquoted service path vulnerability.
77d928a50880722ae51c1f2c416a5749ab865706aa2dae17514953f5869b0507
Acer Backup Manager Module version 3.0.0.99 suffers an unquoted service path vulnerability.
cb21b2549201975f4bcc5b93d7cf2631c2145bb2b66e10a024a9cf09e009cfbd
Proof of concept exploit for the HTTP protocol stack remote code execution vulnerability related to a use-after-free dereference in http.sys.
57b80b9e078587b54adacd2238f1d1c7524d264e79d8cb9ed8c8fda53d586d9e