The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.
4e7d9c1219b863e39d225be538ccc87470baf905dc8ad588979e13515f50cf4fIn K7 Ultimate Security versions prior to 17.0.2019, the driver file (K7RKScan.sys - this version 15.1.0.7) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of a null pointer dereference from IOCtl 0x222010 and 0x222014. At the same time, the drive is accessible to all users in the "Everyone" group.
bfb4ecddc23a05440389081ce78b782dbf92b391de062ebc99d6641e95cdaa89Debian Linux Security Advisory 5748-1 - Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
dcdf50d9162bc4f1c368b1a7e238b29e400c5c616e7f499e623f9c5904a3a995Red Hat Security Advisory 2024-5365-03 - An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include double free and null pointer vulnerabilities.
fd22251dbb2de158270294e361bce359c544fbdfa4977dcadca82fe733d39b62Red Hat Security Advisory 2024-5364-03 - An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include double free, memory leak, and null pointer vulnerabilities.
f9feb53139ec1a87ef8d549e2733d7de03f5bcca315b3c737fde565e038476d8Red Hat Security Advisory 2024-5338-03 - An update for pcs is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
a76994ac7f5599d8089736743cac47001601d8ea7bea958d0ada09a598c9825eCVE-2024-6768 is a vulnerability in the Common Log File System (CLFS.sys) driver of Windows, caused by improper validation of specified quantities in input data. This flaw leads to an unrecoverable inconsistency, triggering the KeBugCheckEx function and resulting in a Blue Screen of Death (BSoD). The issue affects all versions of Windows 10 and Windows 11, Windows Server 2016, Server 2019 and Server 2022 despite having all updates applied. This Proof of Concept (PoC) shows that by crafting specific values within a .BLF file, an unprivileged user can induce a system crash.
0ec1d82e1e6a31fe57b2e6f518e950e98281a0c7e322246a6ffaddcc34e5296aUbuntu Security Notice 6959-1 - It was discovered that .NET suffered from an information disclosure vulnerability. An attacker could potentially use this issue to read targeted email messages.
0aaff00746e0a905480253c3bcc728acece90316aa7ecacac8629d61a199fd98Red Hat Security Advisory 2024-5337-03 - An update for.NET 8.0 is now available for Red Hat Enterprise Linux 8. Issues addressed include an information leakage vulnerability.
230ff5a282ebab3c9c6cc4e2ce8e72656212b2a46a1a48ed53eb701dd9528066Red Hat Security Advisory 2024-5329-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
662ec83a3af0f0a16659e4f9b48d5a6b9120113f911373d77ad213fdd4ab2896Ubuntu Security Notice 6949-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
cd80fe22658722af52da15543cf446c4bb8a4031831b20aed105f0e174f6fe35Red Hat Security Advisory 2024-5328-03 - An update for firefox is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
a9b909418073f509ff25ea1c295859ba52b0dbfde6e1aa4536f16f7e58f30f77Red Hat Security Advisory 2024-5327-03 - An update for firefox is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
45bb09d8c3fe3517525ce7a2dbc32b63414f092c42ec31f45f98857b20bea7faRed Hat Security Advisory 2024-5326-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
0bccf4fdc9744fab14e701eddbbdc1bff335bd060941ddd0203f951c45f99a4aRed Hat Security Advisory 2024-5325-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
2b371f567120c4015fb98051ca59ba5e7a6cf33eddb620053e80cf4d04bf9d89Red Hat Security Advisory 2024-5324-03 - An update for firefox is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.
14adba7dfd46b594d008b948dd5c4680f8fab7a4c9f58a386e39e695dfae36cfRed Hat Security Advisory 2024-5323-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
55d6ba9c602a2ea51ccd1513c3971405d36f9f853ba240d43a039f781f5a3ed6Ubuntu Security Notice 6952-2 - Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious #VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to expose sensitive information or possibly execute arbitrary code in the trusted execution environment. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
2ec5b9718d9b9c02dfbc17231e580ae35883ce5fe7b5f347d0827492d4006ee2Red Hat Security Advisory 2024-5316-03 - An update for krb5 is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support.
8ef8951e18308c81544fe9967bd7f541b572a13e5562615d26790a94994f97faRed Hat Security Advisory 2024-5315-03 - An update for open-vm-tools is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Issues addressed include a bypass vulnerability.
2e3007243d9646ee5654809507539754868647eb457320815e16f0558cbe2b6bKortex version 1.0 suffers from an insecure direct object reference vulnerability.
b5387d8bfce8e3033d7413641e3e9b7894ff5bafea17fd748b642abf24fa1ae8Red Hat Security Advisory 2024-5314-03 - Red Hat OpenShift Virtualization release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements.
4a11f93f69caa8f086482e9a0650860be58f3802f78d9ef62cb744fd2bcfa747Red Hat Security Advisory 2024-5312-03 - An update for krb5 is now available for Red Hat Enterprise Linux 8.
882990bd0c6e317445a1bb9febcd72331836807a3d76ae69cd39ea03a132fe62Red Hat Security Advisory 2024-5309-03 - An update for python-urllib3 is now available for Red Hat Enterprise Linux 8.
26d91382ce3b7ddca583d585d84a25f0d47d55ad1c1f086b5a2e2ce936851e8aRed Hat Security Advisory 2024-5306-03 - An update for orc is now available for Red Hat Enterprise Linux 8. Issues addressed include a buffer overflow vulnerability.
e0cb15e4dd2d647cb46ec89234de02404740a3fbca7a04d3b18e28936f422d7c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed