FEDORA-2023-2c9ef9e004
Packages in this update:
netconsd-0.3-1.fc38
Update description:
Update to prevent invalid fragment values from leading to a buffer overrun
netconsd-0.3-1.fc38
Update to prevent invalid fragment values from leading to a buffer overrun
netconsd-0.3-1.el9
Update to prevent invalid fragment values from leading to a buffer overrun
netconsd-0.3-1.fc39
Update to prevent invalid fragment values from leading to a buffer overrun
netconsd-0.3-1.el8
Update to prevent invalid fragment values from leading to a buffer overrun
netconsd-0.3-1.fc37
Update to prevent invalid fragment values from leading to a buffer overrun
FAIR is a leading methodology for quantifying and managing information risk. Here’s how a CIS SecureSuite Membership can support your risk analysis.
A vulnerability has been discovered in Cisco BroadWorks Application Delivery Platform and Xtended Services Platform which could allow for arbitrary code execution. Cisco BroadWorks Application Delivery Platform and Xtended Services Platform is an enterprise-grade calling and collaboration platform that integrates with Cisco Webex to meet the full range of enterprise communications and collaboration needs. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Here is an overview of the CIS Benchmarks that the Center for Internet Security updated or released for September 2023.
SearchBlox before Version 9.1 is vulnerable to cross-origin resource sharing misconfiguration.
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in “Featured Results” parameter.