Category Archives: Advisories

USN-7162-1: curl vulnerability

December 16, 2024

Read Time:11 Second

Harry Sintonen discovered that curl incorrectly handled credentials from
.netrc files when following HTTP redirects. In certain configurations, the
password for the first host could be leaked to the followed-to host,
contrary to expectations.

Advisories

ZDI-24-1693: Dell Avamar Web Restore Login Action SQL Injection Information Disclosure Vulnerability

December 16, 2024

Read Time:12 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Dell Avamar. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.2. The following CVEs are assigned: CVE-2024-47484.

Advisories

ZDI-24-1692: Dell Avamar Fitness Analyzer API SQL Injection Information Disclosure Vulnerability

December 16, 2024

Read Time:12 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Dell Avamar. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.1. The following CVEs are assigned: CVE-2024-47977.

Advisories

ZDI-24-1691: Dell Avamar Fitness Analyzer API SQL Injection Information Disclosure Vulnerability

December 16, 2024

Read Time:12 Second

Advisories

ZDI-24-1690: Dell Avamar Fitness Analyzer API SQL Injection Information Disclosure Vulnerability

December 16, 2024

Read Time:12 Second

Advisories

ZDI-24-1689: Dell Avamar Fitness Analyzer API SQL Injection Information Disclosure Vulnerability

December 16, 2024

Read Time:12 Second

Advisories

DSA-5832-1 gstreamer1.0 – security update

December 16, 2024

Read Time:14 Second

Antonio Morales reported an integer overflow vulnerability in the memory
allocator in the Core GStreamer libraries, which may result in denial of
service or potentially the execution of arbitrary code if a malformed
media file is processed.

https://security-tracker.debian.org/tracker/DSA-5832-1

Advisories

USN-7160-1: Mpmath vulnerability

December 15, 2024

Read Time:9 Second

It was discovered Mpmath incorrectly handled certain regular expressions.
An attacker could possibly use this issue to cause Mpmath to consume
resources, leading to a denial of service.

Advisories

doctl-1.120.0-1.fc42

December 15, 2024

Read Time:17 Second

FEDORA-2024-6267b82cf7

Packages in this update:

doctl-1.120.0-1.fc42

Update description:

Automatic update for doctl-1.120.0-1.fc42.

Changelog

* Sun Dec 15 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 1.120.0-1
– Update to 1.120.0 – Closes rhbz#2272525 rhbz#2292680 rhbz#2294002
rhbz#2331944 rhbz#2331970

Advisories

GLSA 202412-20: NVIDIA Drivers: Privilege Escalation

December 14, 2024

Read Time:1 Second

Post Content

News, Advisories and much more

Exit mobile version