Category: Advisories

FEDORA-2022-67e0522b94 Packages in this update: ceph-16.2.10-1.fc36 Update description: ceph 16.2.10 GA Security fix for CVE-2022-0670 Read More

Simon Josefsson discovered an out-of-bounds memory read in GNU SASL, an implementation of the Simple Authentication and Security Layer framework, which could result in denial...

FEDORA-2022-7bc84ae2cc Packages in this update: xen-4.15.3-3.fc35 Update description: Retbleed - arbitrary speculative code execution with return instructions [XSA-407, CVE-2022-23816, CVE-2022-23825, CVE-2022-29900] Read More

FortiGuard Labs is aware of the discovery of a new Linux malware variant that is not only complex in design, but modular. Dubbed 'Lightning Framework',...

FortiGuard Labs is aware of a report that a new spyware for Mac was discovered in the field. Dubbed "CloudMensis", the spyware has been active...

A vulnerability was found in InfiniteWP Client Plugin 1.5.1.3/1.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation...

Django REST framework (aka django-rest-framework) before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping. Read More

FEDORA-EPEL-2022-e05ac11f9b Packages in this update: openssl11-1.1.1k-4.el7 Update description: backport from 1.1.1k-7: CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 backport...

FEDORA-2022-482b42705f Packages in this update: podman-4.1.1-3.fc36 Update description: Rebuild v4.1.1 to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang Read More

A vulnerability was found in Itech Movie Portal Script 7.36. It has been declared as critical. Affected by this vulnerability is an unknown functionality of...