Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another user, causing the victim’s payment method to be charged instead.
More Stories
USN-6700-1: Linux kernel vulnerabilities
It was discovered that the Layer 2 Tunneling Protocol (L2TP) implementation in the Linux kernel contained a race condition when...
USN-6701-1: Linux kernel vulnerabilities
Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI...
w3m-0.5.3-63.git20230121.el7
FEDORA-EPEL-2024-5253d48b14 Packages in this update: w3m-0.5.3-63.git20230121.el7 Update description: Added upstream patch to fix out-of-bounds access due to multiple backspaces to...
w3m-0.5.3-63.git20230121.el8
FEDORA-EPEL-2024-bf31852fe0 Packages in this update: w3m-0.5.3-63.git20230121.el8 Update description: Added upstream patch to fix out-of-bounds access due to multiple backspaces to...
w3m-0.5.3-63.git20230121.el9
FEDORA-EPEL-2024-0398ebbbfa Packages in this update: w3m-0.5.3-63.git20230121.el9 Update description: Added upstream patch to fix out-of-bounds access due to multiple backspaces to...
w3m-0.5.3-63.git20230121.fc38
FEDORA-2024-38c2261ca0 Packages in this update: w3m-0.5.3-63.git20230121.fc38 Update description: Added upstream patch to fix out-of-bounds access due to multiple backspaces to...