Post Content
Category Archives: Advisories
GLSA 202208-07: LibRaw: Stack buffer overread
GLSA 202208-06: lxml: Multiple Vulnerabilities
GLSA 202208-19: aiohttp: Open redirect vulnerability
GLSA 202208-18: Motion: Denial of service
GLSA 202208-17: Nextcloud: Multiple Vulnerabilities
GLSA 202208-16: faac: Denial of service
GLSA 202208-15: isync: Multiple Vulnerabilities
[R1] Nessus Version 8.15.6 Fixes Multiple Vulnerabilities
Read Time:30 Second
[R1] Nessus Version 8.15.6 Fixes Multiple Vulnerabilities
Arnie Cabral
Tue, 08/09/2022 – 19:14
Two separate vulnerabilities that utilize the Audit functionality in Nessus were discovered, reported and fixed.
1. CVE-2022-32973 – An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges.
2. CVE-2022-32974 – An authenticated attacker could read arbitrary files from the underlying operating system of the scanner using a custom crafted compliance audit file without providing any valid SSH credentials.
Nessus version 8.15.6 fixes the reported Audit function vulnerabilities.
ntfs-3g-2022.5.17-2.el9
Read Time:14 Second
FEDORA-EPEL-2022-52aeb64bd7
Packages in this update:
ntfs-3g-2022.5.17-2.el9
Update description:
Update to 2022.5.17.
Fixes: CVE-2021-46790, CVE-2022-30783, CVE-2022-30784, CVE-2022-30785, CVE-2022-30786, CVE-2022-30787, CVE-2022-30788, CVE-2022-30789