Debian Linux Security Advisory 5676-1 - Security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
c8a90b6292a6c4c3420fce49648c7bda2ab98985db0fced3a1043d2b9fa2b7c6Ubuntu Security Notice 6747-2 - USN-6747-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Bartek Nowotarski discovered that Firefox did not properly limit HTTP/2 CONTINUATION frames. An attacker could potentially exploit this issue to cause a denial of service. Gary Kwong discovered that Firefox did not properly manage memory when running garbage collection during realm initialization. An attacker could potentially exploit this issue to cause a denial of service, or execute arbitrary code. Lukas Bernhard discovered that Firefox did not properly manage memory during JIT optimizations, leading to an out-of-bounds read vulnerability. An attacker could possibly use this issue to cause a denial of service or expose sensitive information. Nan Wang discovered that Firefox did not properly manage memory during WASM garbage collection. An attacker could potentially exploit this issue to cause a denial of service, or execute arbitrary code. Various other issues were also addressed.
7c2c9d128db1252739be1d7a0b93beb403f7c031e510470fefa2f2f7a74db59dRed Hat Security Advisory 2024-2651-03 - An update for the nodejs:16 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a denial of service vulnerability.
973632fb4064029537b1b304fc430a77ef240763c28c8135e263ded1f9abb3a5Ubuntu Security Notice 6760-1 - George-Andrei Iosif and David Fernandez Gonzalez discovered that Gerbv did not properly initialize a data structure when parsing certain nested RS-274X format files. If a user were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service.
17978e436015209b652836f16189a4839bd9524fb9c7fa08f62a850a68c2395bLonial Con discovered that the netfilter subsystem in the Linux kernel contained a memory leak when handling certain element flush operations. A local attacker could use this to expose sensitive information (kernel memory). Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel did not properly handle inactive elements in its PIPAPO data structure, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Various other issues were also addressed.
9e5eb976874c7a13fcf2a71119849f5abece485528a92084501d9c7e0d3b4529Red Hat Security Advisory 2024-2625-03 - An update for rhc-worker-script is now available for Red Hat Enterprise Linux 7. Issues addressed include a denial of service vulnerability.
1774b826c76a8385f36ae200bd5582f6e4a7a13b06376c7b4283243844cfd834Red Hat Security Advisory 2024-2584-03 - An update for pcs is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
31c5205fb8645b679d2cf6c7c794d0efbc504e18c0cd804fe5c77b6b84235b9eRed Hat Security Advisory 2024-2581-03 - An update for pcs is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a denial of service vulnerability.
76a4603dab353eef47085072a7dfa7b3adbed7b87804dabed9538ab12dd774ddRed Hat Security Advisory 2024-2575-03 - An update for expat is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
513c275d3d315c33d51595f23b0c16d48f6fa1fec1bcfb1c0170194a1b67fadbRed Hat Security Advisory 2024-2564-03 - An update for mod_http2 is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
8e6628488e6108ff6695d0307cffc55b4b26ddcfbc056abd4adf4256bdeb07eaRed Hat Security Advisory 2024-2562-03 - An update for golang is now available for Red Hat Enterprise Linux 9. Issues addressed include denial of service, memory exhaustion, and memory leak vulnerabilities.
5642d245ff223701e0e1b969fbb176f20288ab28d6880360b0a56d5fda156a78Red Hat Security Advisory 2024-2559-03 - An update for python-jwcrypto is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
d57c593f87b1c3af1db8e653f8db1f35bb9247bc2729d39ae842d3a029078435Ubuntu Security Notice 6758-1 - It was discovered that the JSON5 parse method incorrectly handled the parsing of keys named __proto__. An attacker could possibly use this issue to pollute the prototype of the returned object, setting arbitrary or unexpected keys, and cause a denial of service, allow unintended access to network services or have other unspecified impact, depending on the application's use of the module.
10c35ac640b9fc8c5f799d18da39309e30d744b585fd766bdde2765ee9ecbda3Ubuntu Security Notice 6759-1 - It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service.
3a5628139a70311c31214964c15cd8597177950d361357a28e3507256052bf61Red Hat Security Advisory 2024-2447-03 - An update for openssl and openssl-fips-provider is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
462bc3d09215be0bbf81e8c4c531f8af9c1a08788384e4109de00f728a5419d4Red Hat Security Advisory 2024-2368-03 - An update for mod_http2 is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
0f5aa200c9600539480d0e610eaa416fe914f44d18db901641229f81dadf01f1Red Hat Security Advisory 2024-2272-03 - An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
aab3ea11ba3cc43c986d8f387bed1562f9c6e7142c5f49b717d1f8fc9e15cb51Red Hat Security Advisory 2024-2245-03 - An update for buildah is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
e3a890a94fcfd6915e19ffb4ed33d3c57acc11fed1da871a5e574f9854812f19Red Hat Security Advisory 2024-2193-03 - An update for podman is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
5de72c44aefdf5578e02d90c6af0b90c216978f2c1acb52e6fd03f127f8c07d2Red Hat Security Advisory 2024-2184-03 - An update for libsndfile is now available for Red Hat Enterprise Linux 9. Issues addressed include denial of service and integer overflow vulnerabilities.
2731dd1ec804a96acfe3a51dc62314bf991ab4a07f95f0b946a9cb62f1664ec6Red Hat Security Advisory 2024-2160-03 - An update for toolbox is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
c8d61c7795041e610ddcba8110d59ad4885b82b91d49c53fb5a67a47815eb6d5Red Hat Security Advisory 2024-2156-03 - An update for frr is now available for Red Hat Enterprise Linux 9. Issues addressed include denial of service, null pointer, and out of bounds read vulnerabilities.
322e995e947b0f50c6a28c612069dfcfec9b69f5fd131b62429972f99975294aRed Hat Security Advisory 2024-2147-03 - An update for ipa is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
a39117bce15df63c0eeb0adc17a49cd241ff1e935fb21cf7a64795de25961d69Red Hat Security Advisory 2024-2135-03 - An update for qemu-kvm is now available for Red Hat Enterprise Linux 9. Issues addressed include denial of service, null pointer, and use-after-free vulnerabilities.
6aed43bd4a645b4866faa207eff247f254ced1faa9c2d71da518875587f3e3f1Red Hat Security Advisory 2024-2126-03 - An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9. Issues addressed include code execution, denial of service, and use-after-free vulnerabilities.
8baa4f4c7bf33e4e714b9101573fdfd7b6c0b19e9a37df72797570d863dca77f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed