DSA-5286 krb5 – security update
Greg Hudson discovered integer overflow flaws in the PAC parsing in krb5, the MIT implementation of Kerberos, which may result in remote code execution (in...
GLSA 202211-04: PostgreSQL: Multiple Vulnerabilities
Post Content Read More
GLSA 202211-03: PHP: Multiple Vulnerabilities
Post Content Read More
CVE-2021-37936
It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to...
CVE-2021-31739
The SEPPmail solution is vulnerable to a Cross-Site Scripting vulnerability (XSS), because user input is not correctly encoded in HTML attributes when returned by the...
CVE-2021-33621
cgi.rb in Ruby through 2.6.x, through 3.0x, and through 3.1.x allows HTTP header injection. If a CGI application using the CGI library inserts untrusted input...
CVE-2021-22141
An open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user visits a maliciously crafted URL, it could...
kubernetes-1.25.4-3.fc37
FEDORA-2022-8647729ff8 Packages in this update: kubernetes-1.25.4-3.fc37 Update description: Resolves, in part, #2142161. Security patches that resolve CVE-2022-3162 and CVE-2022-3294. Read More
USN-5729-2: Linux kernel vulnerabilities
It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use...
USN-5728-2: Linux kernel vulnerabilities
Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure...