Debian Linux Security Advisory 5565-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
b625ca891650c68bcdc8d27a07f84677e09773bfc8db510915b83508c8be56e1Gentoo Linux Security Advisory 202311-14 - Multiple vulnerabilities have been discovered in GRUB, which may lead to secure boot circumvention or code execution. Versions greater than or equal to 2.06-r9 are affected.
e1d6f653ba430e2e99be01237986f1d5ffba3214eb646bef34b165da21e6965dGentoo Linux Security Advisory 202311-13 - A privilege escalation vulnerability has been discovered in Apptainer. Versions greater than or equal to 1.1.8 are affected.
cd70d1394b8b5a77bce1d12def65c812b6d6080dc8fff06ce0c051ce91f703a5Gentoo Linux Security Advisory 202311-12 - Multiple vulnerabilities have been discovered in MiniDLNA, the worst of which could lead to remote code execution. Versions greater than or equal to 1.3.3 are affected.
cc83bcbe6bdba045adbde73827f2740686afd44ef103d3b118c9f8a6ea84554aGentoo Linux Security Advisory 202311-11 - Multiple vulnerabilities have been discovered in QtWebEngine, the worst of which could lead to remote code execution. Versions greater than or equal to 5.15.10_p20230623 are affected.
a22a94578a7a21e61983f216e5af0590879d461fc663d27ad2e4fffa1e164182Gentoo Linux Security Advisory 202311-10 - Multiple vulnerabilities have been discovered in RenderDoc, the worst of which leads to remote code execution. Versions greater than or equal to 1.27 are affected.
bf84b86dc75bb921790e2af42326e3940b3c710e05cfe037fa3489aacb04b9feGentoo Linux Security Advisory 202311-9 - Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution. Versions greater than or equal to 1.20.10 are affected.
7cd3fdaa4650cc67226eaaa58c1a34f9f619b6ed9f3c06868a9c23ebed7861b0Gentoo Linux Security Advisory 202311-8 - A buffer overflow vulnerability has been discovered in GNU Libmicrohttpd. Versions greater than 0.9.70 are affected.
394c8ae1749eeb72c7825d3a779c90b5750db75501882b617825976a26af8943Debian Linux Security Advisory 5564-1 - Michael Randrianantenaina reported several vulnerabilities in GIMP, the GNU Image Manipulation Program, which could result in denial of service (application crash) or potentially the execution of arbitrary code if malformed DDS, PSD and PSP files are opened.
fbd24a7aded4ef86dc4b6f23073c0509696a83dbacca4a2e89805ddb1bfec060Gentoo Linux Security Advisory 202311-5 - Multiple vulnerabilities have been discovered in LinuxCIFS utils, the worst of which can lead to local root privilege escalation. Versions greater than or equal to 6.15 are affected.
2df3a244ab0a653e6ab0651e00d597833f4a9040f9e8b554d3af1aa0e1eab561Ubuntu Security Notice 6512-1 - It was discovered that LibTIFF could be made to run into an infinite loop. If a user or an automated system were tricked into opening a specially crafted image file, an attacker could possibly use this issue to cause a denial of service. It was discovered that LibTIFF could be made leak memory. If a user or an automated system were tricked into opening a specially crafted image file, an attacker could possibly use this issue to cause a denial of service.
58e70d63d5865b09d6111700a164e09413e70586ccfc4563b147adaebf0aa95eUbuntu Security Notice 6513-1 - It was discovered that Python incorrectly handled certain plist files. If a user or an automated system were tricked into processing a specially crafted plist file, an attacker could possibly use this issue to consume resources, resulting in a denial of service. It was discovered that Python instances of ssl.SSLSocket were vulnerable to a bypass of the TLS handshake. An attacker could possibly use this issue to cause applications to treat unauthenticated received data before TLS handshake as authenticated data after TLS handshake.
6f14c4bab79c5ff6022515ca227db8dbf13728c77319d254ac9fbbed86388ffbUbuntu Security Notice 6510-1 - David Shoon discovered that the Apache HTTP Server mod_macro module incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause the server to crash, resulting in a denial of service.
5966b49779081ba752b4e33c85c54b5f8e54565e22d008ce290653070085179bDebian Linux Security Advisory 5563-1 - Benoit Morgan, Paul Grosen, Thais Moreira Hamasaki, Ke Sun, Alyssa Milburn, Hisham Shafi, Nir Shlomovich, avis Ormandy, Daniel Moghimi, Josh Eads, Salman Qazi, Alexandra Sandulescu, Andy Nguyen, Eduardo Vela, Doug Kwan, and Kostik Shtoyk discovered that some Intel processors mishandle repeated sequences of instructions leading to unexpected behavior, which may result in privilege escalation, information disclosure or denial of service.
d7001a334e8b340f1b8652c36b9d2a6bbfa2e0f10274b965432d30653479e5d9Ubuntu Security Notice 6511-1 - It was discovered that the OpenZFS sharenfs feature incorrectly handled IPv6 address data. This could result in IPv6 restrictions not being applied, contrary to expectations.
742d75e8997769e75077a1f251af030b37c6369b6dbb0bec4b09e498b95db5fcCE Phoenix version 1.0.8.20 suffers from a persistent cross site scripting vulnerability.
1c8c1238c4410cbe04c67a2d6d2f32a07a2415681a363c65c0c3238bb9d4fcfcPyroCMS version 3.0.1 suffers from a persistent cross site scripting vulnerability.
d5b4e223ba2b4dc49049ae6f6748eadea621716df965acc54efe367e1144d7a9Debian Linux Security Advisory 5562-1 - It was discovered that Tor was susceptible to a crash during handshake with a remote relay, resulting in denial of service.
784b0d66e6d8df504013529d27848284e357ab2904737d60f91c54ecc6d0a71cGentoo Linux Security Advisory 202311-7 - A vulnerability has been found in AIDE which can lead to root privilege escalation. Versions greater than or equal to 0.17.4 are affected.
607a9cc94009113695795110e51fd3f99f4c844d2fac41b93831a6c0378d85a3Gentoo Linux Security Advisory 202311-6 - Multiple vulnerabilities have been discovered in multipath-tools, the worst of which can lead to root privilege escalation. Versions greater than or equal to 0.9.3 are affected.
63195caeb1700e3984a26a911b340418b6255d4604193db4aa5e182c66a21b28Gentoo Linux Security Advisory 202311-4 - Multiple vulnerabilities have been discovered in Zeppelin, the worst of which could lead to remote code execution. Versions greater than or equal to 0.10.1 are affected.
d1bd56112e1630db39b4c5df27dc3b827f8c421bcf2c13c7926e5735f384e3b8Ubuntu Security Notice 6508-1 - It was discovered that poppler incorrectly handled certain malformed PDF files. If a user or an automated system were tricked into opening a specially crafted PDF file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. It was discovered that poppler incorrectly handled certain malformed PDF files. If a user or an automated system were tricked into opening a specially crafted PDF file, a remote attacker could possibly use this issue to cause a denial of service.
0a5780d370acd693467a216eb7a49184eb45dde07e93b2febeeb6b2de1efb474Ubuntu Security Notice 6509-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. It was discovered that Firefox did not properly manage memory when images were created on the canvas element. An attacker could potentially exploit this issue to obtain sensitive information.
b829fdf51cf2a37d15b78f3f6807c30a0b585c7fbda044f4d27c269eebcb3308CSZ CMS version 1.3.0 suffers from a remote shell upload vulnerability.
b8f0f3c59686781c297f072ed9c3ca2896c1c6ea8f3916447a7e73c9086eb19aGentoo Linux Security Advisory 202311-3 - Multiple vulnerabilities have been discovered in SQLite, the worst of which may lead to code execution. Versions greater than or equal to 3.42.0 are affected.
1c78773ee054ae93bfcd3b4e97d0857dff73e53681e6d7e0a540acff2c260724
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed