A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.

Read More

A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.

Read More

A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code.

Read More

On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI.

Read More

Two cross-site scripting vulnerabilities were fixed in Bodhi 5.6.1.

Read More

IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.

Read More

IBM QRadar SIEM 7.4 and 7.5 data node rebalancing does not function correctly when using encrypted hosts which could result in information disclosure. IBM X-Force ID: 225889.

Read More

FEDORA-EPEL-2022-0793e00396

Packages in this update:

python-django3-3.2.15-2.el8

Update description:

Updates to Django 3.2.15 which addresses https://nvd.nist.gov/vuln/detail/CVE-2022-34265 affecting Django < 3.2.14

Read More

FEDORA-2022-0be906c02d

Packages in this update:

apptainer-1.1.2-1.fc36

Update description:

Update to 1.1.2

Read More

FEDORA-EPEL-2022-d23756a749

Packages in this update:

apptainer-1.1.2-1.el7

Update description:

Update to 1.1.2

Read More