Category: Advisories

FEDORA-2024-a3fecfab32 Packages in this update: emacs-29.4-3.fc40 Update description: Update to Emacs 29.4, fixing CVE-2024-39331. Read More

Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd process fails to validate if bind call passed. An...

It was discovered that Hibernate incorrectly handled certain inputs with unsanitized literals. If a user or an automated system were tricked into opening a specially...

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 23 SEC Consult Vulnerability Lab Security Advisory < 20240620-0 > ======================================================================= title: Arbitrary File Upload...

Posted by Egidio Romano on Jun 23 Hello list, Just wanted to share with you my latest blog post: https://karmainsecurity.com/zip-slip-meets-artifactory-a-bug-bounty-story Enjoy it! Read More

Posted by malvuln on Jun 23 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/eeb631127f1b9fb3d13d209d8e675634.txt Contact: malvuln13 () gmail com Media:...

Posted by SBA Research Security Advisory via Fulldisclosure on Jun 23 # Paradox IP150 Internet Module Cross-Site Request Forgery # Link: https://github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240321-01_Paradox_Cross_Site_Request_Forgery ## Vulnerability Overview...

The update for composer released as DSA 5715 introduced a regression in the handling of git feature branches. Updated composer packages are now available to...

FEDORA-EPEL-2024-28e58f443c Packages in this update: python-PyMySQL-0.9.3-2.el7 Update description: Security fix for CVE-2024-36039 Read More

FEDORA-2024-07c9cfd337 Packages in this update: libreswan-4.15-1.fc39 Update description: Update to 4.15 for CVE-2024-3652 Read More