Read Time:6 Second
FEDORA-2022-c8f6a39cf6
Packages in this update:
stb-0^20210910gitaf1a5bc-0.2.fc36
Update description:
Security fix for CVE-2022-28041
Category Archives: Advisories
stb-0^20210910gitaf1a5bc-0.2.fc37
Read Time:16 Second
FEDORA-2022-7807e518ba
Packages in this update:
stb-0^20210910gitaf1a5bc-0.2.fc37
Update description:
Automatic update for stb-0^20210910gitaf1a5bc-0.2.fc37.
Changelog
* Wed Apr 20 2022 Benjamin A. Beasley <code@musicinmybrain.net> 0^20210910gitaf1a5bc-0.2
– Security fix for CVE-2022-28041 (fix RHBZ#2077020, fix RBHZ#2077019)
Post Title
Read Time:5 Second
Multiple vulnerabilities have been discovered in Oracle products, which could allow for remote code execution.
USN-5380-1: Bash vulnerability
Read Time:9 Second
It was discovered that Bash did not properly drop privileges
when the binary had the setuid bit enabled. An attacker could
possibly use this issue to escalate privileges.
libinput-1.20.1-1.fc36
Read Time:8 Second
FEDORA-2022-998f810306
Packages in this update:
libinput-1.20.1-1.fc36
Update description:
libinput 1.20.1, fixes a format string vulnerability (CVE-2022-1215)
libinput-1.19.4-1.fc35
Read Time:9 Second
FEDORA-2022-8d7a412c72
Packages in this update:
libinput-1.19.4-1.fc35
Update description:
libinput 1.19.4, fixes CVE-2022-1215 with a format string vulnerability
libinput-1.19.4-1.fc34
Read Time:9 Second
FEDORA-2022-63de6726ce
Packages in this update:
libinput-1.19.4-1.fc34
Update description:
libinput 1.19.4, fixes CVE-2022-1215 with a format string vulnerability
Oracle Critical Patch Update Advisory – April 2022
[R1] Tenable.sc 5.21.0 Fixes Fix Multiple Third-Party Vulnerabilities
Read Time:27 Second
Tenable.sc leverages third-party software to help provide underlying functionality. Several of the third-party components were found to contain vulnerabilities, and updated versions have been made available by the providers.
Out of caution, and in line with best practice, Tenable has upgraded the bundled components to address the potential impact of these issues. Tenable.sc 5.21.0 updates the following components to address the identified vulnerabilities:
jQuery UI upgraded from 1.12.0 to 1.13.1
MomentJS upgraded from 2.29.1 to 2.29.2
Backdoor.Win32.GateHell.21 / Port Bounce Scan
Read Time:21 Second
Posted by malvuln on Apr 18
Discovery / credits: Malvuln – malvuln.com (c) 2022
Original source:
https://malvuln.com/advisory/5aa81ddc996be64116754efac0e4f55d_B.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Backdoor.Win32.GateHell.21
Vulnerability: Port Bounce Scan
Description: The malware runs an FTP server on TCP ports
5301,5432,5300,5299,5298,5297,5296 and 5295. Third-party adversaries who
successfully logon can abuse the backdoor FTP server as…