Active Exploitation of WSO2 Vulnerability (CVE-2022-29464) Delivers Malware
FortiGuard Labs is aware that a WSO2 vulnerability (CVE-2022-29464) that was patched in February 2022 and was disclosed in April is still being actively exploited...
Ransomware Roundup – 2022/06/02
FortiGuard Labs is aware of a number of new ransomware strains for the week of May 30th, 2022. It is imperative to raise awareness about...
vim-8.2.5052-1.fc35
FEDORA-2022-bb2daad935 Packages in this update: vim-8.2.5052-1.fc35 Update description: Security fixes for CVE-2022-1886, CVE-2022-1942 Security fixes for CVE-2022-1851, CVE-2022-1898, CVE-2022-1897, CVE-2022-1927 Read More
firefox-101.0-1.fc36
FEDORA-2022-080ea50338 Packages in this update: firefox-101.0-1.fc36 Update description: New upstream update (101.0) Fixed missing popups in some scenarios on Wayland (https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) Read More
webkit2gtk3-2.36.3-1.fc35
FEDORA-2022-c05acca28d Packages in this update: webkit2gtk3-2.36.3-1.fc35 Update description: Update to 2.36.3: Support capturing already encoded video streams, which takes advantage of encoding done in hardware...
webkit2gtk3-2.36.3-1.fc36
FEDORA-2022-e883576e1c Packages in this update: webkit2gtk3-2.36.3-1.fc36 Update description: Update to 2.36.3: Support capturing already encoded video streams, which takes advantage of encoding done in hardware...
DSA-5157 cifs-utils – security update
Jeffrey Bencteux reported two vulnerabilities in cifs-utils, the Common Internet File System utilities, which can result in escalation of privileges (CVE-2022-27239) or an information leak...
USN-5459-1: cifs-utils vulnerabilities
Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a password. In certain environments, a local attacker could possibly use this issue to escalate...
buildah-1.23.4-1.fc35
FEDORA-2022-396c568c5e Packages in this update: buildah-1.23.4-1.fc35 Update description: bump to v1.23.4, security fix for CVE-2022-21698 Add missing container networking dependencies (#2081834) Read More
CVE-2021-26633
SQL injection and Local File Inclusion (LFI) vulnerabilities in MaxBoard can cause information leakage and privilege escalation. This vulnerabilities can be exploited by manipulating a...