A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Category Archives: Advisories
CVE-2021-40166
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code.
CVE-2022-21936
On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI.
CVE-2020-15855
CVE-2022-22493
IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.
CVE-2022-22480
IBM QRadar SIEM 7.4 and 7.5 data node rebalancing does not function correctly when using encrypted hosts which could result in information disclosure. IBM X-Force ID: 225889.
python-django3-3.2.15-2.el8
FEDORA-EPEL-2022-0793e00396
Packages in this update:
python-django3-3.2.15-2.el8
Update description:
Updates to Django 3.2.15 which addresses https://nvd.nist.gov/vuln/detail/CVE-2022-34265 affecting Django < 3.2.14
apptainer-1.1.2-1.fc36
FEDORA-2022-0be906c02d
Packages in this update:
apptainer-1.1.2-1.fc36
Update description:
Update to 1.1.2
apptainer-1.1.2-1.el7
FEDORA-EPEL-2022-d23756a749
Packages in this update:
apptainer-1.1.2-1.el7
Update description:
Update to 1.1.2
apptainer-1.1.2-1.fc37
FEDORA-2022-f6e1ec28bf
Packages in this update:
apptainer-1.1.2-1.fc37
Update description:
Update to 1.1.2