Red Hat Security Advisory 2024-2559-03 - An update for python-jwcrypto is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
d57c593f87b1c3af1db8e653f8db1f35bb9247bc2729d39ae842d3a029078435Red Hat Security Advisory 2024-2551-03 - An update for bind is now available for Red Hat Enterprise Linux 9.
cee430f5861c0757f723a4218b75b0ac07d7cafc603ad11ac48adbd5b50a5ea2Red Hat Security Advisory 2024-2550-03 - An update for buildah is now available for Red Hat Enterprise Linux 9.
95e9b2617a9499f5ac3220724725f11215861d506bfe91381691605bae4ed0d5Red Hat Security Advisory 2024-2549-03 - An update for skopeo is now available for Red Hat Enterprise Linux 9.
a2e3520f21468945f6063da19b3d74741f22c10074dbd8bc30bb8e9278fbd513Red Hat Security Advisory 2024-2548-03 - An update for podman is now available for Red Hat Enterprise Linux 9.
59072952552698f70fca1669b17efd060f2f7d6636e9dfd477c394135cac2b78Red Hat Security Advisory 2024-2090-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
a17a8ca7ef67ed58fcfe646b9180feeffd68c2744715ca05710ddf9b904b4428Red Hat Security Advisory 2024-2089-03 - An update for podman is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.
77c7e76b7b8d8f9048567e8c27381a19c7fffd029e89c036d6762065ddb5f266Red Hat Security Advisory 2024-2085-03 - An update for libreswan is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
a7d068038fc4ecc8c94d0da93085d0b10c0aedcbcc4ba1254cc0b39da2c45448Red Hat Security Advisory 2024-2082-03 - An update for libreswan is available for Red Hat Enterprise Linux 8.6 Extended Update Support.
7155b2bfa6adfc04f49470749b223a9c6c1350b58cb30d6bbbdb0b68c71142e2Red Hat Security Advisory 2024-2081-03 - An update for libreswan is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
cfc3b2ff2aa5b856176f34876b2abb0d2f06f3b167fe8f9570493cb474fb66f5Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in PspBuildCreateProcessContext that leads to a stack buffer overflow.
0d419f34140c82908299252d3794e80651aedada14ee132d75462cbcf8700e96Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in NtQueryInformationThread that leads to an arbitrary write.
17303e9dc06042a7d7b761657e3f97ac797834b1b9703bc726107b814b22b014This is the full Windows privilege escalation exploit produced from the blog Exploiting the NT Kernel in 24H2: New Bugs in Old Code and Side Channels Against KASLR.
359dac8448d7ce433fa3541cbb436c20ba5d34c9e0efb99cd95d1c887c779304osCommerce version 4 suffers from a cross site scripting vulnerability. This finding is another vector of attack for this issue already discovered by the same researcher in November of 2023.
f8285fdf1bc0d4437ae633d7dde7f4f607db4b9ab45579773b774ad89e950ca2Ubuntu Security Notice 6758-1 - It was discovered that the JSON5 parse method incorrectly handled the parsing of keys named __proto__. An attacker could possibly use this issue to pollute the prototype of the returned object, setting arbitrary or unexpected keys, and cause a denial of service, allow unintended access to network services or have other unspecified impact, depending on the application's use of the module.
10c35ac640b9fc8c5f799d18da39309e30d744b585fd766bdde2765ee9ecbda3Ubuntu Security Notice 6761-1 - It was discovered that Anope did not properly process credentials for suspended accounts. An attacker could possibly use this issue to normally login to the platform as a suspended user after changing their password.
f6658138c22c33ef65562ccb306efc0364b88646591930b4009dc3aa895fa34fUbuntu Security Notice 6759-1 - It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service.
3a5628139a70311c31214964c15cd8597177950d361357a28e3507256052bf61Ubuntu Security Notice 6757-1 - It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. It was discovered that PHP incorrectly handled certain cookies. An attacker could possibly use this issue to cookie by pass.
d148d55e0339c28ab206c4e04376d9c0144caabdf1c279dfc99b6ae169bc4172Red Hat Security Advisory 2024-2528-03 - An update for mingw-glib2 is now available for Red Hat Enterprise Linux 9.
387f40d4a5321b87c83727ab321d5d491928cde0c555e05bc3544de3f70e4559Red Hat Security Advisory 2024-2525-03 - An update for mingw-pixman is now available for Red Hat Enterprise Linux 9. Issues addressed include integer overflow and out of bounds write vulnerabilities.
7611f233f16e4003c69a91ee23499cbe6bed6fd4c7a8d26442bbf86975a89a03Red Hat Security Advisory 2024-2517-03 - An update for wpa_supplicant is now available for Red Hat Enterprise Linux 9. Issues addressed include a bypass vulnerability.
8524f45342379f23a28563d69bc1323f5335b59713270fa1753cd0f9a39bd719Red Hat Security Advisory 2024-2512-03 - An update for file is now available for Red Hat Enterprise Linux 9. Issues addressed include a buffer over-read vulnerability.
c9757f1fb62938415e74e1b72c2623972dd8192885f87e85b130055785b92dddRed Hat Security Advisory 2024-2504-03 - An update for libssh is now available for Red Hat Enterprise Linux 9.
319c2fb25725f4c923d65a48a8b63b79d1937db033f4405d2658a55a308bc12fRed Hat Security Advisory 2024-2483-03 - An update for traceroute is now available for Red Hat Enterprise Linux 9.
951bf24a953cbd3ecf0024db056d9ef69269d38b3117598eb04e129fe43159b4Red Hat Security Advisory 2024-2463-03 - An update for systemd is now available for Red Hat Enterprise Linux 9.
aa80114f691729899b2c102d9086bfb2e6b84c5790e5c17bd15b2a8ad3a1da48
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed