USN-5764-1: U-Boot vulnerabilities
It was discovered that U-Boot incorrectly handled certain USB DFU download setup packets. A local attacker could use this issue to cause U-Boot to crash,...
libarchive-3.6.1-3.fc37
FEDORA-2022-e15be0091f Packages in this update: libarchive-3.6.1-3.fc37 Update description: Fix for CVE-2022-36227 Read More
Multiple Vulnerabilities in Google Android OS Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for arbitrary code execution. Android is an operating system...
CVE-2021-39434
A default username and password for an administrator account was discovered in ZKTeco ZKTime 10.0 through 11.1.0, builds 20180901, 20190510.1, 20200309.3, 20200930, 20201231, and 20210220....
DSA-5296 xfce4-settings – security update
Robin Peraglie and Johannes Moritz discovered an argument injection bug in the xfce4-mime-helper component of xfce4-settings, which can be exploited using the xdg-open common tool....
DSA-5297 vlc – security update
A buffer overflow was discovered in the VNC module of the VLC media player, which could result in the execution of arbitrary code. Read More
CVE-2022-23143 (otcp_firmware)
ZTE OTCP product is impacted by a permission and access control vulnerability. Due to improper permission settings, an attacker with high permissions could use this...
CVE-2021-34181 (tomexam)
Cross Site Scripting (XSS) vulnerability in TomExam 3.0 via p_name parameter to list.thtml. Read More
CVE-2022-1540 (postmagthemes_demo_import)
The PostmagThemes Demo Import WordPress plugin through 1.0.7 does not validate the imported file, allowing high-privilege users such as admin to upload arbitrary files (such...
USN-5762-1: GNU binutils vulnerability
It was discovered that GNU binutils incorrectly handled certain COFF files. An attacker could possibly use this issue to cause a crash or execute arbitrary...