Read Time:7 Second
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
Category Archives: Advisories
DSA-5162 containerd – security update
Read Time:6 Second
Two vulnerabilities were discovered in the containerd container
runtime, which could result in denial of service or incomplete restriction
of capabilities.
collectd-5.12.0-16.fc36 qemu-6.2.0-12.fc36 xen-4.16.1-2.fc36
Read Time:23 Second
FEDORA-2022-0142d562ca
Packages in this update:
collectd-5.12.0-16.fc36
qemu-6.2.0-12.fc36
xen-4.16.1-2.fc36
Update description:
stop building for ix86 and armv7hl due to missing build dependency
x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362]
x86 pv: Insufficient care with non-coherent mappings [ XSA-402,
CVE-2022-26363, CVE-2022-26364]
Split qemu-user-static into per-arch subpackages (bz 2061584)
golang-github-docker-libnetwork-0.8.0-18.20220610gitf6ccccb.fc35 moby-engine-20.10.17-2.fc35
Read Time:16 Second
FEDORA-2022-3ecd21576a
Packages in this update:
golang-github-docker-libnetwork-0.8.0-18.20220610gitf6ccccb.fc35
moby-engine-20.10.17-2.fc35
Update description:
moby-engine
https://github.com/moby/moby/releases/tag/v20.10.17
Includes updates to bundled libraries that fix CVEs.
golang-github-docker-libnetwork
Bump to f6ccccb1c082a432c2a5814aaedaca56af33d9ea
golang-github-docker-libnetwork-0.8.0-17.20220610gitf6ccccb.fc36 moby-engine-20.10.17-2.fc36
Read Time:16 Second
FEDORA-2022-cea20dae0b
Packages in this update:
golang-github-docker-libnetwork-0.8.0-17.20220610gitf6ccccb.fc36
moby-engine-20.10.17-2.fc36
Update description:
moby-engine
https://github.com/moby/moby/releases/tag/v20.10.17
Includes updates to bundled libraries that fix CVEs.
golang-github-docker-libnetwork
Bump to f6ccccb1c082a432c2a5814aaedaca56af33d9ea
CVE-2017-20037
Read Time:12 Second
A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads to privilege escalation. The attack can be launched remotely.
CVE-2017-20038
Read Time:14 Second
A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file card_scan_decoder.php. The manipulation of the argument No/door leads to privilege escalation. The attack may be launched remotely.
CVE-2017-20039
Read Time:11 Second
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible to initiate the attack remotely.
CVE-2017-20040
Read Time:12 Second
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads to weak encryption. Attacking locally is a requirement.
SEC Consult SA-20220609-0 :: Multiple vulnerabilities in SoftGuard SNMP Network Management Extension
Read Time:18 Second
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jun 10
SEC Consult Vulnerability Lab Security Advisory < 20220609-0 >
=======================================================================
title: Multiple vulnerabilities
product: SoftGuard SNMP Network Management Extension
vulnerable version: SoftGuard Web (SGW) < 5.1.5
fixed version: SoftGuard version 5.1.5 from 2022-06-01
CVE number: CVE-2022-31201, CVE-2022-31202
impact: High…