A content spoofing vulnerability was found in Kiali. It was discovered that Kiali does not implement error handling when the page or endpoint being accessed cannot be found. This issue allows an attacker to perform arbitrary text injection when an error response is retrieved from the URL being accessed.
plantuml-1.2023.11-1.el8
Update plantuml to the latest version v1.2023.11. This update also includes fixes for CVE-2023-3431 and CVE-2023-3432.
plantuml-1.2023.11-2.el9
Update plantuml to the latest version v1.2023.11. This update also includes fixes for CVE-2023-3431 and CVE-2023-3432.
plantuml-1.2023.11-1.fc39
Update plantuml to the latest version v1.2023.11. This update also includes fixes for CVE-2023-3431 and CVE-2023-3432.
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-6 macOS Ventura 13.6
macOS Ventura 13.6 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213931.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Additional CVE entries coming soon.
Kernel
Available for: macOS Ventura
Impact: A local attacker may be able to…
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-7 macOS Monterey 12.7
macOS Monterey 12.7 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213932.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Additional CVE entries coming soon.
Kernel
Available for: macOS Monterey
Impact: A local attacker may be able to…
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-5 watchOS 9.6.3
watchOS 9.6.3 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213929.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Kernel
Available for: Apple Watch Series 4 and later
Impact: A local attacker may be able to elevate their privileges. Apple…
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-4 watchOS 10.0.1
watchOS 10.0.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213928.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Kernel
Available for: Apple Watch Series 4 and later
Impact: A local attacker may be able to elevate their privileges. Apple…
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7
iOS 16.7 and iPadOS 16.7 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213927.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Additional CVE entries coming soon.
Kernel
Available for: iPhone 8 and later, iPad Pro (all models),…
Posted by Apple Product Security via Fulldisclosure on Sep 22
APPLE-SA-2023-09-21-2 iOS 17.0.1 and iPadOS 17.0.1
iOS 17.0.1 and iPadOS 17.0.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213926.
Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Kernel
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation
and later, iPad Pro…
