Category Archives: Advisories

Knap (APL) v3.1.3 – Persistent Cross Site Vulnerability

Read Time:16 Second

Posted by info () vulnerability-lab com on Oct 20

Document Title:
===============
Knap (APL) v3.1.3 – Persistent Cross Site Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2307

Release Date:
=============
2022-10-10

Vulnerability Laboratory ID (VL-ID):
====================================
2307

Common Vulnerability Scoring System:
====================================
5.7

Vulnerability Class:
====================
Cross Site…

Read More

OpenStack Horizon, it is posible to trigger a POST Request to any address

Read Time:25 Second

Posted by Sven Anders on Oct 20

Hi,

we opened a bug at OpenStack, 3 month ago, but nobody takes care about it. Due
to the OpenStack guidlines the bug report is now public readable.

https://bugs.launchpad.net/horizon/+bug/1980349

I am not a security expert and do not know how bad this bug is, there is now
CVE and so on. Please be kind.

# Description of the bug

We use OpenStack horizon in the following version: `git+https://opendev.org/

Read More

nginx-mainline-3720221019155610.9e842022

Read Time:1 Minute, 0 Second

FEDORA-MODULAR-2022-03e951278d

Packages in this update:

nginx-mainline-3720221019155610.9e842022

Update description:

Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module might cause a worker process crash, worker process memory disclosure, or might have potential other impact (CVE-2022-41741, CVE-2022-41742).

Feature: the “$proxy_protocol_tlv_…” variables.

Feature: TLS session tickets encryption keys are now automatically rotated when using shared memory in the “ssl_session_cache” directive.

Change: the logging level of the “bad record type” SSL errors has been lowered from “crit” to “info”. Thanks to Murilo Andrade.

Change: now when using shared memory in the “ssl_session_cache” directive the “could not allocate new session” errors are logged at the “warn” level instead of “alert” and not more often than once per second.

Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x.

Bugfix: in logging of the PROXY protocol errors. Thanks to Sergey Brester.

Workaround: shared memory from the “ssl_session_cache” directive was spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL.

Workaround: timeout specified with the “ssl_session_timeout” directive did not work when using TLSv1.3 with OpenSSL or BoringSSL.

Read More

nginx-mainline-820220816123924.9edba152

Read Time:1 Minute, 1 Second

FEDORA-EPEL-MODULAR-2022-e97b3e0f82

Packages in this update:

nginx-mainline-820220816123924.9edba152

Update description:

Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module might cause a worker process crash, worker process memory disclosure, or might have potential other impact (CVE-2022-41741, CVE-2022-41742).

Feature: the “$proxy_protocol_tlv_…” variables.

Feature: TLS session tickets encryption keys are now automatically rotated when using shared memory in the “ssl_session_cache” directive.

Change: the logging level of the “bad record type” SSL errors has been lowered from “crit” to “info”. Thanks to Murilo Andrade.

Change: now when using shared memory in the “ssl_session_cache” directive the “could not allocate new session” errors are logged at the “warn” level instead of “alert” and not more often than once per second.

Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x.

Bugfix: in logging of the PROXY protocol errors. Thanks to Sergey Brester.

Workaround: shared memory from the “ssl_session_cache” directive was spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL.

Workaround: timeout specified with the “ssl_session_timeout” directive did not work when using TLSv1.3 with OpenSSL or BoringSSL.

Read More

nginx-mainline-3520221019155610.f27b74a8

Read Time:1 Minute, 0 Second

FEDORA-MODULAR-2022-2454736cf7

Packages in this update:

nginx-mainline-3520221019155610.f27b74a8

Update description:

Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module might cause a worker process crash, worker process memory disclosure, or might have potential other impact (CVE-2022-41741, CVE-2022-41742).

Feature: the “$proxy_protocol_tlv_…” variables.

Feature: TLS session tickets encryption keys are now automatically rotated when using shared memory in the “ssl_session_cache” directive.

Change: the logging level of the “bad record type” SSL errors has been lowered from “crit” to “info”. Thanks to Murilo Andrade.

Change: now when using shared memory in the “ssl_session_cache” directive the “could not allocate new session” errors are logged at the “warn” level instead of “alert” and not more often than once per second.

Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x.

Bugfix: in logging of the PROXY protocol errors. Thanks to Sergey Brester.

Workaround: shared memory from the “ssl_session_cache” directive was spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL.

Workaround: timeout specified with the “ssl_session_timeout” directive did not work when using TLSv1.3 with OpenSSL or BoringSSL.

Read More

nginx-mainline-3620221019155610.5e5ad4a0

Read Time:1 Minute, 0 Second

FEDORA-MODULAR-2022-d2cc9c919c

Packages in this update:

nginx-mainline-3620221019155610.5e5ad4a0

Update description:

Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module might cause a worker process crash, worker process memory disclosure, or might have potential other impact (CVE-2022-41741, CVE-2022-41742).

Feature: the “$proxy_protocol_tlv_…” variables.

Feature: TLS session tickets encryption keys are now automatically rotated when using shared memory in the “ssl_session_cache” directive.

Change: the logging level of the “bad record type” SSL errors has been lowered from “crit” to “info”. Thanks to Murilo Andrade.

Change: now when using shared memory in the “ssl_session_cache” directive the “could not allocate new session” errors are logged at the “warn” level instead of “alert” and not more often than once per second.

Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x.

Bugfix: in logging of the PROXY protocol errors. Thanks to Sergey Brester.

Workaround: shared memory from the “ssl_session_cache” directive was spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL.

Workaround: timeout specified with the “ssl_session_timeout” directive did not work when using TLSv1.3 with OpenSSL or BoringSSL.

Read More