When a non-existent resource is requested, the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting.
Category Archives: Advisories
CVE-2021-32997
The affected Baker Hughes Bentley Nevada products (3500 System 1 6.x, Part No. 3060/00 versions 6.98 and prior, 3500 System 1, Part No. 3071/xx & 3072/xx versions 21.1 HF1 and prior, 3500 Rack Configuration, Part No. 129133-01 versions 6.4 and prior, and 3500/22M Firmware, Part No. 288055-01 versions 5.05 and prior) utilize a weak encryption algorithm for storage and transmission of sensitive data, which may allow an attacker to more easily obtain credentials used for access.
Multiple Vulnerabilities in Firefox Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Mozilla Firefox Products, the most severe of which could allow for arbitrary code execution.
Mozilla Firefox is a web browser used to access the Internet.
Mozilla Firefox ESR is a version of the web browser intended to be deployed in large organizations.
Mozilla Thunderbird is an email client
Mozilla Firefox for Android is the Android based Firefox Browser on Android devices.
Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
fapolicyd-1.1.2-1.fc35
FEDORA-2022-47a86f6258
Packages in this update:
fapolicyd-1.1.2-1.fc35
Update description:
Rebase to v1.1.2
fixed CVE-2022-1117
fapolicyd-1.1.2-1.fc36
FEDORA-2022-bba9ca95b5
Packages in this update:
fapolicyd-1.1.2-1.fc36
Update description:
Rebase to v1.1.2
fixed CVE-2022-1117
fapolicyd-1.1.2-1.fc37
FEDORA-2022-55d07e80b7
Packages in this update:
fapolicyd-1.1.2-1.fc37
Update description:
Automatic update for fapolicyd-1.1.2-1.fc37.
Changelog
* Wed May 25 2022 Radovan Sroka <rsroka@redhat.com> – 1.1.2-1
– rebase to v1.1.2
– fixed CVE-2022-1117
Resolves: rhbz#2089692
mariadb-10.7-3520220523151110.f27b74a8
FEDORA-MODULAR-2022-98bb5ef41a
Packages in this update:
mariadb-10.7-3520220523151110.f27b74a8
Update description:
MariaDB 10.7.4
Release notes:
mariadb-10.7-3620220523151110.5e5ad4a0
FEDORA-MODULAR-2022-24d0c27767
Packages in this update:
mariadb-10.7-3620220523151110.5e5ad4a0
Update description:
MariaDB 10.7.4
Release notes:
mariadb-10.6-3620220523134545.5e5ad4a0
FEDORA-MODULAR-2022-baa4367887
Packages in this update:
mariadb-10.6-3620220523134545.5e5ad4a0
Update description:
MariaDB 10.6
Release notes:
mariadb-10.6-3520220523134545.f27b74a8
FEDORA-MODULAR-2022-9faca062c4
Packages in this update:
mariadb-10.6-3520220523134545.f27b74a8
Update description:
MariaDB 10.6
Release notes: