Showing 1 - 6 of 6

Files Date: 2022-07-20

Ubuntu Security Notice USN-5528-1: Posted Jul 20, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5528-1 - It was discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, or possibly execute arbitrary code.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-27404; SHA-256 | e4399fee1fafb757db2cc7084bced0d8077ec2ee656c7d3e483d74589880986a; Download | Favorite | View

Ubuntu Security Notice USN-5525-1: Posted Jul 20, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5525-1 - It was discovered that Apache XML Security for Java incorrectly passed a configuration property when creating specific key elements. This allows an attacker to abuse an XPath Transform to extract sensitive information.; tags | advisory, java; systems | linux, ubuntu; advisories | CVE-2021-40690; SHA-256 | 5a7567c51fc5535217fe76db85a30037524b5faac7d584fbe7e0d988cc43929b; Download | Favorite | View

Ubuntu Security Notice USN-5527-1: Posted Jul 20, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5527-1 - It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to information disclosure. It was discovered that Checkmk incorrectly handled certain inputs. An attacker could use these cross-site scripting issues to inject arbitrary html or javascript code to obtain sensitive information including user information, session cookies and valid credentials.; tags | advisory, arbitrary, javascript, xss, info disclosure; systems | linux, ubuntu; advisories | CVE-2017-14955, CVE-2021-40906, CVE-2022-24565; SHA-256 | 45daf753e998edd792b4728e6f35f35c6493b1e6cc974ee1082da7f33c59b2dc; Download | Favorite | View

Ubuntu Security Notice USN-5526-1: Posted Jul 20, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5526-1 - Aapo Oksman discovered that PyJWT incorrectly handled signatures constructed from SSH public keys. A remote attacker could use this to forge a JWT signature.; tags | advisory, remote; systems | linux, ubuntu; advisories | CVE-2022-29217; SHA-256 | 9f4662cb5a95ee03ce93366d52dac96d27a5c0d5e8a2c08609919e3ec43b155f; Download | Favorite | View

Emporium eCommerce Online Shopping CMS 1.2 SQL Injection: Posted Jul 20, 2022; Authored by CraCkEr; Emporium eCommerce Online Shopping CMS version 1.2 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | fb0f85b86fd9b86364521ebf50d5426b97f071383915691f325e4d51fddad0af; Download | Favorite | View

GNUnet P2P Framework 0.17.2: Posted Jul 20, 2022; Authored by Christian Grothoff | Site ovmj.org; GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP (IPv4 and IPv6), TCP (IPv4 and IPv6), HTTP, or SMTP messages. GNUnet supports accounting to provide contributing nodes with better service. The primary service build on top of the framework is anonymous file sharing.; Changes: This is a bugfix release for gnunet 0.17.1.; tags | tool, web, udp, tcp, peer2peer; systems | unix; SHA-256 | 38b13b578e2490a99222757c64727deb97939fdf797107f986287c2944ee7541; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days