Read Time:2 Second
Affiliate deployed LockerGoga, MegaCortex, Hive and Dharma
Monthly Archives: November 2023
firefox-flatpak-120.0-2
Read Time:7 Second
FEDORA-FLATPAK-2023-85f15b91dc
Packages in this update:
firefox-flatpak-120.0-2
Update description:
Fixed freezes on Google Maps
Update to 120.0
opendkim-2.11.0-0.36.el9
Read Time:9 Second
FEDORA-EPEL-2023-9a05f8b1eb
Packages in this update:
opendkim-2.11.0-0.36.el9
Update description:
Add upstream PR that filters Authentication-Results headers correctly to fix CVE-2022-48521.
firefox-120.0-3.fc37
Read Time:8 Second
FEDORA-2023-dce9c4b01f
Packages in this update:
firefox-120.0-3.fc37
Update description:
Fixed freezes on Google Maps
Updated to latest upstream (120.0)
SEC Consult SA-20231123 :: Uninstall Key Caching in Fortra Digital Guardian Agent Uninstaller
Read Time:17 Second
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Nov 27
SEC Consult Vulnerability Lab Security Advisory < 20231123-0 >
=======================================================================
title: Uninstall Key Caching
product: Fortra Digital Guardian Agent Uninstaller
(Data Loss Prevention)
vulnerable version: Agent: <7.9.4
fixed version: Agent: 7.9.4
CVE number: CVE-2023-6253
impact: High…
SEC Consult SA-20231122 :: Multiple Vulnerabilities in m-privacy TightGate-Pro
Read Time:16 Second
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Nov 27
SEC Consult Vulnerability Lab Security Advisory < 20231122-0 >
=======================================================================
title: Multiple Vulnerabilities
product: m-privacy TightGate-Pro
vulnerable version: Rolling Release, servers with the following package
versions are vulnerable:
tightgatevnc < 4.1.2~1
rsbac-policy-tgpro <…
Senec Inverters Home V1, V2, V3 Home & Hybrid Use of Hard-coded Credentials – CVE-2023-39169
Read Time:9 Second
Posted by Phos4Me via Fulldisclosure on Nov 27
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/
gnutls-3.8.2-1.fc38
Read Time:8 Second
FEDORA-2023-41b9510adb
Packages in this update:
gnutls-3.8.2-1.fc38
Update description:
New upstream release with a fix for GNUTLS-SA-2023-10-23.
gnutls-3.8.2-1.fc39
Read Time:8 Second
FEDORA-2023-e075ac32be
Packages in this update:
gnutls-3.8.2-1.fc39
Update description:
New upstream release with a fix for GNUTLS-SA-2023-10-23.
[SYSS-2023-019] SmartNode SN200 – Unauthenticated OS Command Injection
Read Time:24 Second
Posted by Maurizio Ruchay via Fulldisclosure on Nov 27
Advisory ID: SYSS-2023-019
Product: SmartNode SN200 Analog Telephone Adapter (ATA) & VoIP Gateway
Manufacturer: Patton LLC
Affected Version(s): <= 3.21.2-23021
Tested Version(s): 2.21.1-22041, 3.21.2-23021, 3.22.0-23083
Vulnerability Type: OS Command Injection (CWE-78)
Vulnerability Type: Improper Access Control (CWE-284)
Risk Level: High
Solution Status: Open
Manufacturer Notification: 2023-07-05
Public Disclosure: 2023-08-28
CVE…