Category: Advisories

Posted by Julien Ahrens (RCE Security) on Nov 29 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Intel Data Center Manager Vendor URL: https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html...

Posted by houjingyi on Nov 29 I disclosured a crash in potplayer last year : https://seclists.org/fulldisclosure/2021/Mar/76 And I found a new one this year, this...

USN-5745-1 fixed vulnerabilities in shadow. Unfortunately that update introduced a regression that caused useradd to behave incorrectly in Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, Ubuntu...

The package com.github.samtools:htsjdk before 3.0.1 are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the createTempDir() function in util/IOUtil.java not...

FEDORA-2022-c30d362ce5 Packages in this update: woff-0.20091126-35.fc37 Update description: Fix a possible double free in woffEncode(). Update License to SPDX improved summary and description Add hand-written...

It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial...

It was discovered that Bind incorrectly handled large query name when using lightweight resolver protocol. A remote attacker could use this issue to consume resources,...

FEDORA-EPEL-2022-8f2df2e1e2 Packages in this update: botan2-2.19.3-1.el9 Update description: Bump botan2 to 2.19.3 (RHBZ 2143417, 2143418) Read More

Post Content Read More

The user_id and device_id on the Ourphoto App version 1.4.1 /device/* end-points both suffer from insecure direct object reference vulnerabilities. Other end-users user_id and device_id...