openssl-3.0.5-1.fc37
FEDORA-2022-1c20b4dde2 Packages in this update: openssl-3.0.5-1.fc37 Update description: Automatic update for openssl-3.0.5-1.fc37. Changelog * Tue Jul 5 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.5-1 - Rebase...
openssl1.1-1.1.1q-1.fc36
FEDORA-2022-89a17be281 Packages in this update: openssl1.1-1.1.1q-1.fc36 Update description: Changelog * Thu Jul 07 2022 Clemens Lang <cllang@redhat.com> - 1:1.1.1q-1 - Upgrade to 1.1.1q Resolves: CVE-2022-2097...
USN-5506-1: NSS vulnerabilities
Tavis Ormandy discovered that NSS incorrectly handled an empty pkcs7 sequence. A remote attacker could possibly use this issue to cause NSS to crash, resulting...
xen-4.15.3-2.fc35
FEDORA-2022-2c9f8224f8 Packages in this update: xen-4.15.3-2.fc35 Update description: Linux disk/nic frontends data leaks [XSA-403, CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742] (#2104747) update to xen-4.15.3 x86: MMIO Stale...
USN-5505-1: Linux kernel vulnerabilities
Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could...
Ransom Lockbit 3.0 / Code Execution
Posted by malvuln on Jul 06 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799_B.txt Contact: malvuln13 () gmail com Media:...
Ransom Lockbit 3.0 / Local Unicode Buffer Overflow (SEH)
Posted by malvuln on Jul 06 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799.txt Contact: malvuln13 () gmail com Media:...
EQS Integrity Line: Multiple Vulnerabilities
Posted by Giovanni Pellerano on Jul 06 EQS Integrity Line: Multiple Vulnerabilities Name Multiple Vulnerabilities in EQS Integrity Line Systems Affected EQS Integrity Line through...
CVE-2022-30550: Privilege escalation possible in dovecot when similar master and non-master passdbs are used
Posted by Aki Tuomi via Fulldisclosure on Jul 06 Affected product: Dovecot IMAP Server Internal reference: DOV-5320 Vulnerability type: Improper Access Control (CWE-284) Vulnerable version:...
ZDI-22-952: Foxit PDF Reader Annotation modDate Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in...