Category: Advisories

Rhodri James discovered a heap use-after-free vulnerability in the doContent function in Expat, an XML parsing C library, which could result in denial of service...

Several vulnerabilities were discovered in BIND, a DNS server implementation. Read More

A vulnerability in Keylime before 6.3.0 allows an attacker to craft a request to the agent that resets the U and V keys as if...

Rapid7 InsightVM suffers from an information exposure issue whereby, when the user's session has ended due to inactivity, an attacker can use the Inspect Element...

FEDORA-2022-b4583f536b Packages in this update: thunderbird-102.3.0-1.fc37 Update description: Update to 102.3.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en-US/thunderbird/102.3.0/releasenotes/ Read More

FEDORA-2022-e88213dd24 Packages in this update: thunderbird-102.3.0-1.fc35 Update description: Update to 102.3.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en-US/thunderbird/102.3.0/releasenotes/ Read More

FEDORA-2022-feb7bdf6b2 Packages in this update: thunderbird-102.3.0-1.fc36 Update description: Update to 102.3.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en-US/thunderbird/102.3.0/releasenotes/ Read More

FEDORA-2022-f0a2695054 Packages in this update: qemu-6.2.0-15.fc36 Update description: nvme: Fix DMA reentrancy use-after-free (CVE-2021-3929) Read More

The library automation system product KOHA developed by Parantez Teknoloji before version 19.05.03 has an unauthenticated SQL Injection vulnerability. This has been fixed in the...

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the CoreGraphics framework is required to exploit this...