Category Archives: Advisories

Advisories

DSA-5225 chromium – security update

September 6, 2022

Read Time:5 Second

A security issue was discovered in Chromium, which could result in the
execution of arbitrary code.

Advisories

DSA-5224 poppler – security update

September 6, 2022

Read Time:10 Second

Two vulnerabilities were discovered in poppler, a PDF rendering library,
which could result in denial of service or the execution of arbitrary
code if a malformed PDF file or JBIG2 image is processed.

Advisories

open-vm-tools-12.0.5-3.fc35

September 5, 2022

Read Time:7 Second

FEDORA-2022-9a73b28b96

Packages in this update:

open-vm-tools-12.0.5-3.fc35

Update description:

Security fix for CVE-2022-31676

Advisories

CVE-2021-28398

September 5, 2022

Read Time:22 Second

A privileged attacker in GeoNetwork before 3.12.0 and 4.x before 4.0.4 can use the directory harvester before-script to execute arbitrary OS commands remotely on the hosting infrastructure. A User Administrator or Administrator account is required to perform this. This occurs in the runBeforeScript method in harvesters/src/main/java/org/fao/geonet/kernel/harvest/harvester/localfilesystem/LocalFilesystemHarvester.java. The earliest affected version is 3.4.0.

Advisories

open-vm-tools-12.0.5-3.fc36

September 5, 2022

Read Time:7 Second

FEDORA-2022-cd23eac6f4

Packages in this update:

open-vm-tools-12.0.5-3.fc36

Update description:

Security fix for CVE-2022-31676

Advisories

open-vm-tools-12.0.5-3.fc37

September 5, 2022

Read Time:7 Second

FEDORA-2022-20d374ce8f

Packages in this update:

open-vm-tools-12.0.5-3.fc37

Update description:

Security fix for CVE-2022-31676

Advisories

ZDI-22-1184: ManageEngine OpManager Plus getDNSResolveOption Command Injection Remote Code Execution Vulnerability

September 5, 2022

Read Time:7 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine OpManager Plus. Authentication is required to exploit this vulnerability.

Advisories