This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installation of ConnMan. Authentication is not required to exploit this vulnerability.
Category Archives: Advisories
ZDI-22-1186: (Pwn2Own) ConnMan wispr_portal_web_result wp_object Double Free Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ConnMan. Authentication is not required to exploit this vulnerability.
CVE-2021-34236
Buffer Overflow in Netgear R8000 Router with firmware v1.0.4.56 allows remote attackers to execute arbitrary code or cause a denial-of-service by sending a crafted POST to ‘/bd_genie_create_account.cgi’ with a sufficiently long parameter ‘register_country’.
CVE-2020-19914
Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web script or HTML via the attachment upload function.
ImageMagick-6.9.12.62-1.el8
FEDORA-EPEL-2022-915a045bea
Packages in this update:
ImageMagick-6.9.12.62-1.el8
Update description:
Update ImageMagick to 6.9.12.62 (#2121962)
Fixes CVE-2021-3574 (#2124540, #2124541, #2124542)
ImageMagick-6.9.12.62-1.el9
FEDORA-EPEL-2022-46c270bec2
Packages in this update:
ImageMagick-6.9.12.62-1.el9
Update description:
Update ImageMagick to 6.9.12.62 (#2121962)
Fixes CVE-2021-3574 (#2124540, #2124541, #2124542)
ImageMagick-6.9.12.62-1.fc35
FEDORA-2022-ed44881ff7
Packages in this update:
ImageMagick-6.9.12.62-1.fc35
Update description:
Update ImageMagick to 6.9.12.62 (#2121962)
Fixes CVE-2021-3574 (#2124540, #2124541, #2124542)
ImageMagick-6.9.12.62-1.fc36
FEDORA-2022-776925f086
Packages in this update:
ImageMagick-6.9.12.62-1.fc36
Update description:
Update ImageMagick to 6.9.12.62 (#2121962)
Fixes CVE-2021-3574 (#2124540, #2124541, #2124542)
ImageMagick-6.9.12.62-1.fc37
FEDORA-2022-c3a50ebb66
Packages in this update:
ImageMagick-6.9.12.62-1.fc37
Update description:
Update ImageMagick to 6.9.12.62 (#2121962)
Fixes CVE-2021-3574 (#2124540, #2124541, #2124542)
pcs-0.11.3-4.fc38
FEDORA-2022-23f40e879d
Packages in this update:
pcs-0.11.3-4.fc38
Update description:
Automatic update for pcs-0.11.3-4.fc38.
Changelog
* Wed Sep 7 2022 Miroslav Lisik <mlisik@redhat.com> – 0.11.3-4
– Fixed ruby socket permissions
– Resolves: rhbz#2123389