chromium-112.0.5615.165-1.el9
update to 112.0.5615.165. Fixes the following security issues:
CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 CVE-2023-2033 CVE-2023-2136
chromium-112.0.5615.165-1.el7
update to 112.0.5615.165. Fixes the following security issues:
CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 CVE-2023-2033 CVE-2023-2136
update to 112.0.5615.121. Fixes the following security issues:
CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 CVE-2023-2033
Multiple vulnerabilities have been discovered in PaperCut NG/MF, the most severe of which could allow for remote code execution. PaperCut NG/MF is a comprehensive print management system. Successful exploitation of this vulnerability could allow for unauthenticated remote attackers to execute arbitrary code on the server in the context of the System user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
The squid you eat most likely comes from unregulated waters.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my blog posting guidelines here.
Cisco fixed serious vulnerabilities across several of its products this week, including in its Industrial Network Director, Modeling Labs, ASR 5000 Series Routers, and BroadWorks Network Server. The flaws can lead to administrative command injection, authentication bypass, remote privilege escalation and denial of service.
The Cisco Industrial Network Director (IND), a network monitoring and management server for operational technology (OT) networks, received patches for two vulnerabilities rated critical and medium respectively. These were fixed in version 1.11.3 of the software.
Iranian APT hacking group MuddyWater has been observed using SimpleHelp, a legitimate remote device control and management tool, to ensure persistence on victim devices.
SimpleHelp itself, as used by the threat actors, has not been compromised — instead, the group has found a way to download the tool from the official website and use it in their attacks, according to a Group-IB blog post.
Posted by Georgi Guninski on Apr 21
There is minor information disclosure vulnerability similar
to nmap in browser.
It is possible to check the existence of firewalled URL U via
the following javascript in a browser:
<script src=”U”
onload=”alert(‘Exists’)”
onerror=”alert(‘Does not exist’)”>
This might have privacy implication on potentially
“semi-blind CSRF” (XXX does this makes sense?).
Works for me in…
Posted by Georgi Guninski on Apr 21
In short in Firefox 112, it is possible to check existence
of firewalled web servers. This doesn’t work in Chrome and Chromium 112
for me.
If user A has tcp connection to web server B, then in the
following html:
<iframe src=”http://B" onload=”load()” onerror=”alert(‘error’)” id=”i1″ />
the javascript function load() will get executed if B serves
valid document to A’s browser…
