[CVE-2022-21225] Intel Data Center Manager Console <= 4.1 “getRoomRackData" Authenticated (Guest+) SQL Injection
Posted by Julien Ahrens (RCE Security) on Dec 08 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Intel Data Center Manager Vendor URL: https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html...
DSA-5298 cacti – security update
Two security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in unauthenticated command injection or LDAP...
flatpak-runtime-f37-3720221117153339.3 flatpak-sdk-f37-3720221117153339.3
FEDORA-FLATPAK-2022-cbf2e8ae04 Packages in this update: flatpak-runtime-f37-3720221117153339.3 flatpak-sdk-f37-3720221117153339.3 Update description: Updated flatpak runtime and SDK, including latest Fedora 37 security and bug-fix errata. Read More
CVE-2022-23469
Traefik is an open source HTTP reverse proxy and load balancer. Versions prior to 2.9.6 are subject to a potential vulnerability in Traefik displaying the...
USN-5770-1: GCC vulnerability
Todd Eisenberger discovered that certain versions of GNU Compiler Collection (GCC) could be made to clobber the status flag of RDRAND and RDSEED with specially...
USN-5769-1: protobuf vulnerabilities
It was discovered that protobuf did not properly manage memory when serializing large messages. An attacker could possibly use this issue to cause applications using...
USN-5767-2: Python vulnerability
USN-5767-1 fixed a vulnerability in Python. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was...
python3-docs-3.11.1-1.fc37 python3.11-3.11.1-1.fc37
FEDORA-2022-dbb811d203 Packages in this update: python3.11-3.11.1-1.fc37 python3-docs-3.11.1-1.fc37 Update description: Update to 3.11.1 Read More
USN-5767-1: Python vulnerabilities
Nicky Mouha discovered that Python incorrectly handled certain SHA-3 internals. An attacker could possibly use this issue to cause a crash or execute arbitrary code....
USN-5768-1: GNU C Library vulnerabilities
Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could possibly use this...