Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to plain-text traffic sniffing.
Category Archives: Advisories
DSA-5278 xorg-server – security update
It was discovered that a buffer overflow in the _getCountedString()
function of the Xorg X server may result in denial of service or
potentially the execution of arbitrary code.
DSA-5277 php7.4 – security update
Multiple security issues were discovered in PHP, a widely-used open
source general purpose scripting language which could result in denial
of service, information disclosure, insecure cooking handling or
potentially the execution of arbitrary code.
js-jquery-ui-1.13.2-1.el9
FEDORA-EPEL-2022-8d55a68e09
Packages in this update:
js-jquery-ui-1.13.2-1.el9
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
js-jquery-ui-1.13.2-1.el8
FEDORA-EPEL-2022-2da86b14b9
Packages in this update:
js-jquery-ui-1.13.2-1.el8
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
js-jquery-ui-1.13.2-1.el7
FEDORA-EPEL-2022-a06d5c7af1
Packages in this update:
js-jquery-ui-1.13.2-1.el7
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
js-jquery-ui-1.13.2-1.fc36
FEDORA-2022-1a01ed37e2
Packages in this update:
js-jquery-ui-1.13.2-1.fc36
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
js-jquery-ui-1.13.2-1.fc37
FEDORA-2022-7291b78111
Packages in this update:
js-jquery-ui-1.13.2-1.fc37
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
js-jquery-ui-1.13.2-1.fc35
FEDORA-2022-22d8ba36d0
Packages in this update:
js-jquery-ui-1.13.2-1.fc35
Update description:
A flaw was found in the jquery-UI package. Affected versions of this package are vulnerable to Cross-site scripting (XSS) attack via the initialization of a check-box-radio widget on an input tag enclosed within a label, leading to the parent label contents being considered as the input label.
DSA-5276 pixman – security update
Maddie Stone reported a heap-based buffer overflow flaw in pixman, a
pixel-manipulation library for X and cairo, which could result in denial
of service or potentially the execution of arbitrary code.