USN-5835-1: Cinder vulnerability
Guillaume Espanel, Pierre Libeau, Arnaud Morin, and Damien Rannou discovered that Cinder incorrectly handled VMDK image processing. An authenticated attacker could possibly supply a specially...
USN-5835-2: OpenStack Glance vulnerability
Guillaume Espanel, Pierre Libeau, Arnaud Morin, and Damien Rannou discovered that OpenStack Glance incorrectly handled VMDK image processing. An authenticated attacker could possibly supply a...
java-latest-openjdk-19.0.2.0.7-1.rolling.el9
FEDORA-EPEL-2023-fc74dc491a Packages in this update: java-latest-openjdk-19.0.2.0.7-1.rolling.el9 Update description: New in release OpenJDK 19.0.2 (2023-01-17) CVEs Fixed CVE-2023-21835 CVE-2023-21843 Security Fixes * JDK-8286070: Improve UTF8 representation...
java-latest-openjdk-19.0.2.0.7-1.rolling.el8
FEDORA-EPEL-2023-52e0512741 Packages in this update: java-latest-openjdk-19.0.2.0.7-1.rolling.el8 Update description: New in release OpenJDK 19.0.2 (2023-01-17) CVEs Fixed CVE-2023-21835 CVE-2023-21843 Security Fixes * JDK-8286070: Improve UTF8 representation...
USN-5833-1: python-future vulnerability
Sebastian Chnelik discovered that python-future incorrectly handled certain HTTP header field. An attacker could possibly use this issue to cause a denial of service. Read...
Trovent Security Advisory 2203-01 / Micro Focus GroupWise transmits session ID in URL
Posted by Stefan Pietsch on Jan 30 # Trovent Security Advisory 2203-01 # ##################################### Micro Focus GroupWise transmits session ID in URL ################################################# Overview ########...
ZDI-23-093: Cacti poll_for_data Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cacti. Authentication is not required to exploit this vulnerability. Read More
USN-5832-1: Linux kernel (Raspberry Pi) vulnerabilities
Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a...
rust-bat-0.21.0-7.el9
FEDORA-EPEL-2023-6e0c4a7f59 Packages in this update: rust-bat-0.21.0-7.el9 Update description: This update contains a rebuild of bat against a version of the libgit2-sys crate that ship fixes...
vim-9.0.1262-1.fc36
FEDORA-2023-340f1d6ab9 Packages in this update: vim-9.0.1262-1.fc36 Update description: The newest upstream commit Security fix for CVE-2023-0288 Read More