USN-6340-1: Linux kernel vulnerabilities
Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker...
USN-6339-1: Linux kernel vulnerabilities
It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could...
USN-6338-1: Linux kernel vulnerabilities
Zi Fan Tan discovered that the binder IPC implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause...
salt-3005.2-1.el9
FEDORA-EPEL-2023-d9153eda95 Packages in this update: salt-3005.2-1.el9 Update description: Fixes for CVE-2023-20897 and CVE-2023-20898 Read More
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser...
CVE-2020-10128
SearchBlox product with version before 9.2.1 is vulnerable to stored cross-site scripting at multiple user input parameters. In SearchBlox products multiple parameters are not sanitized/validate...
salt-3005.2-1.fc37
FEDORA-2023-ac1aa963e4 Packages in this update: salt-3005.2-1.fc37 Update description: Fixes for CVE-2023-20897 and CVE-2023-20898 Read More
Minor firefox DoS – semi silently polluting ~/Downloads with files
Posted by Georgi Guninski on Sep 05 This is barely a DoS, but since Chrome has explicit protection against it, we decided to disclose it....
CVE-2021-40546
Tenda AC6 US_AC6V4.0RTL_V02.03.01.26_cn.bin allows attackers (who have the administrator password) to cause a denial of service (device crash) via a long string in the wifiPwd_5G...
CVE-2020-35593
BMC PATROL Agent through 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host. Read More