Category Archives: Advisories

USN-5311-1: containerd vulnerability

Read Time:12 Second

It was discovered that containerd allows attackers to gain access to read-
only copies of arbitrary files and directories on the host via a specially-
crafted image configuration. An attacker could possibly use this issue to
obtain sensitive information.

Read More

usbguard-1.1.0-1.fc37

Read Time:19 Second

FEDORA-2022-1869fe2aec

Packages in this update:

usbguard-1.1.0-1.fc37

Update description:

Automatic update for usbguard-1.1.0-1.fc37.

Changelog

* Thu Mar 3 2022 Radovan Sroka <rsroka@redhat.com> – 1.1.0-1
– rebase to 1.1.0
Resolves: rhbz#2058450
– fixed CVE-2019-25058 usbguard: Fix unauthorized access via D-Bus
Resolves: rhbz#2058466

Read More

USN-5300-2: PHP vulnerabilities

Read Time:35 Second

USN-5300-1 fixed vulnerabilities in PHP. This update provides the
corresponding updates for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.

Original advisory details:

It was discovered that PHP incorrectly handled certain scripts.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2015-9253, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120)

It was discovered that PHP incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a denial of service,
or possibly obtain sensitive information. (CVE-2017-9119)

It was discovered that PHP incorrectly handled certain scripts with XML
parsing functions.
An attacker could possibly use this issue to obtain sensitive information.
(CVE-2021-21707)

Read More

radare2-5.6.4-1.el8

Read Time:54 Second

FEDORA-EPEL-2022-49fa7851f7

Packages in this update:

radare2-5.6.4-1.el8

Update description:

Bugfix release.
fixes CVE-2022-0518 2055256, 2055130 – https://github.com/radareorg/radare2/commit/9650e3c352f675687bf6c6f65ff2c4a3d0e288fa
fixes CVE-2022-0519 2055103, 2055104 – https://github.com/radareorg/radare2/commit/6c4428f018d385fc80a33ecddcb37becea685dd5
fixes CVE-2022-0520 2055145, 2055146 – https://github.com/radareorg/radare2/commit/8525ad0b9fd596f4b251bb3d7b114e6dc7ce1ee8
fixes CVE-2022-0521 2055043, 2055044 – https://github.com/radareorg/radare2/commit/6c4428f018d385fc80a33ecddcb37becea685dd5
fixes CVE-2022-0522 2055029, 2055030 – https://github.com/radareorg/radare2/commit/d17a7bdf166108a29a27cd89bf454f9fa6c050d6
fixes CVE-2022-0523 2055152, 2055153 – https://github.com/radareorg/radare2/commit/35482cb760db10f87a62569e2f8872dbd95e9269
fixes CVE-2022-0559 2055256. 2055257 – https://github.com/radareorg/radare2/commit/b5cb90b28ec71fda3504da04e3cc94a362807f5e
fixes CVE-2022-0676 2056758, 2056759 – https://github.com/radareorg/radare2/commit/c84b7232626badd075caf3ae29661b609164bac6
fixes CVE-2022-0712 2057173, 2057174, 2057175, 2057176 – https://github.com/radareorg/radare2/commit/515e592b9bea0612bc63d8e93239ff35bcf645c7
fixes CVE-2022-0713 2057707, 2057708, 2057709, 2057710 – https://github.com/radareorg/radare2/commit/a35f89f86ed12161af09330e92e5a213014e46a1
fixes CVE-2022-0476 2057712, 2057713, 2057714, 2057715 – https://github.com/radareorg/radare2/commit/27fe8031782d3a06c3998eaa94354867864f9f1b
fixes CVE-2022-0695 2058522, 2058523, 2058525 – https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf

Read More