Category Archives: Advisories

SEC Consult SA-20240527-0 :: Multiple vulnerabilities in HAWKI didactic interface

Read Time:17 Second

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 27

SEC Consult Vulnerability Lab Security Advisory < 20240527-0 >
=======================================================================
title: Multiple vulnerabilities
product: HAWKI (Interaction Design Team at the University of Applied
Sciences and Arts in Hildesheim/Germany)
vulnerable version: 1.0.0-beta.1, versions before commit 146967f
    fixed version: Github commit 146967f…

Read More

SEC Consult SA-20240524-0 :: Exposed Serial Shell on multiple PLCs in Siemens CP-XXXX Series

Read Time:18 Second

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 27

SEC Consult Vulnerability Lab Security Advisory < 20240524-0 >
=======================================================================
title: Exposed Serial Shell on multiple PLCs
product: Siemens CP-XXXX Series (CP-2014, CP-2016, CP-2017, CP-2019, CP-5014)
vulnerable version: All hardware revisions
fixed version: Hardware is EOL, no fix
CVE number: –
impact: Low…

Read More

fcitx5-qt-5.1.6-2.fc40 python-pyqt6-6.7.0-2.fc40 qadwaitadecorations-0.1.5-3.fc40 qgnomeplatform-0.9.2-14.fc40 qt6-6.7.1-1.fc40 qt6-qt3d-6.7.1-1.fc40 qt6-qt5compat-6.7.1-1.fc40 qt6-qtbase-6.7.1-2.fc40 qt6-qtcharts-6.7.1-1.fc40 qt6-qtcoap-6.7.1-1.fc40 qt6-qtconnectivity-6.7.1-1.fc40 qt6-qtdatavis3d-6.7.1-1.fc40 qt6-qtdeclarative-6.7.1-2.fc40 qt6-qtgraphs-6.7.1-1.fc40 qt6-qtgrpc-6.7.1-1.fc40 qt6-qthttpserver-6.7.1-1.fc40 qt6-qtimageformats-6.7.1-1.fc40 qt6-qtlanguageserver-6.7.1-2.fc40 qt6-qtlocation-6.7.1-1.fc40 qt6-qtlottie-6.7.1-1.fc40 qt6-qtmqtt-6.7.1-1.fc40 qt6-qtmultimedia-6.7.1-1.fc40 qt6-qtnetworkauth-6.7.1-1.fc40 qt6-qtopcua-6.7.1-1.fc40 qt6-qtpositioning-6.7.1-1.fc40 qt6-qtquick3d-6.7.1-1.fc40 qt6-qtquick3dphysics-6.7.1-1.fc40 qt6-qtquicktimeline-6.7.1-1.fc40 qt6-qtremoteobjects-6.7.1-1.fc40 qt6-qtscxml-6.7.1-1.fc40 qt6-qtsensors-6.7.1-1.fc40 qt6-qtserialbus-6.7.1-1.fc40 qt6-qtserialport-6.7.1-1.fc40 qt6-qtshadertools-6.7.1-2.fc40 qt6-qtspeech-6.7.1-1.fc40 qt6-qtsvg-6.7.1-1.fc40 qt6-qttools-6.7.1-1.fc40 qt6-qttranslations-6.7.1-1.fc40 qt6-qtvirtualkeyboard-6.7.1-1.fc40 qt6-qtwayland-6.7.1-1.fc40 qt6-qtwebchannel-6.7.1-1.fc40 qt6-qtwebengine-6.7.1-1.fc40 qt6-qtwebsockets-6.7.1-1.fc40 qt6-qtwebview-6.7.1-1.fc40 zeal-0.7.0-10.fc40

Read Time:1 Minute, 38 Second

FEDORA-2024-bfb8617ba3

Packages in this update:

fcitx5-qt-5.1.6-2.fc40
python-pyqt6-6.7.0-2.fc40
qadwaitadecorations-0.1.5-3.fc40
qgnomeplatform-0.9.2-14.fc40
qt6-6.7.1-1.fc40
qt6-qt3d-6.7.1-1.fc40
qt6-qt5compat-6.7.1-1.fc40
qt6-qtbase-6.7.1-2.fc40
qt6-qtcharts-6.7.1-1.fc40
qt6-qtcoap-6.7.1-1.fc40
qt6-qtconnectivity-6.7.1-1.fc40
qt6-qtdatavis3d-6.7.1-1.fc40
qt6-qtdeclarative-6.7.1-2.fc40
qt6-qtgraphs-6.7.1-1.fc40
qt6-qtgrpc-6.7.1-1.fc40
qt6-qthttpserver-6.7.1-1.fc40
qt6-qtimageformats-6.7.1-1.fc40
qt6-qtlanguageserver-6.7.1-2.fc40
qt6-qtlocation-6.7.1-1.fc40
qt6-qtlottie-6.7.1-1.fc40
qt6-qtmqtt-6.7.1-1.fc40
qt6-qtmultimedia-6.7.1-1.fc40
qt6-qtnetworkauth-6.7.1-1.fc40
qt6-qtopcua-6.7.1-1.fc40
qt6-qtpositioning-6.7.1-1.fc40
qt6-qtquick3d-6.7.1-1.fc40
qt6-qtquick3dphysics-6.7.1-1.fc40
qt6-qtquicktimeline-6.7.1-1.fc40
qt6-qtremoteobjects-6.7.1-1.fc40
qt6-qtscxml-6.7.1-1.fc40
qt6-qtsensors-6.7.1-1.fc40
qt6-qtserialbus-6.7.1-1.fc40
qt6-qtserialport-6.7.1-1.fc40
qt6-qtshadertools-6.7.1-2.fc40
qt6-qtspeech-6.7.1-1.fc40
qt6-qtsvg-6.7.1-1.fc40
qt6-qttools-6.7.1-1.fc40
qt6-qttranslations-6.7.1-1.fc40
qt6-qtvirtualkeyboard-6.7.1-1.fc40
qt6-qtwayland-6.7.1-1.fc40
qt6-qtwebchannel-6.7.1-1.fc40
qt6-qtwebengine-6.7.1-1.fc40
qt6-qtwebsockets-6.7.1-1.fc40
qt6-qtwebview-6.7.1-1.fc40
zeal-0.7.0-10.fc40

Update description:

Qt 6.7.1 bugfix update.

Read More

USN-6673-3: python-cryptography vulnerability

Read Time:21 Second

USN-6673-1 provided a security update for python-cryptography.
This update provides the corresponding update for Ubuntu 24.04 LTS.

Original advisory details:

It was discovered that python-cryptography incorrectly handled memory
operations when processing mismatched PKCS#12 keys. A remote attacker could
possibly use this issue to cause python-cryptography to crash, leading to a
denial of service. This issue only affected Ubuntu 23.10. (CVE-2024-26130)

Read More