Category: Advisories

Le Dinh Hai discovered that Spreadsheet::ParseExcel was passing unvalidated input from a file into a string-type "eval". An attacker could craft a malicious file to...

FEDORA-2024-b4b4426a4f Packages in this update: firefox-126.0-7.fc38 Update description: Fixed DBus service to not run without Gnome search requests new upstream update (126.0) New upstream version...

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to...

Posted by Asterisk Development Team via Fulldisclosure on May 20 The Asterisk Development Team would like to announce security release Asterisk 20.8.1. The release artifacts...

Posted by Asterisk Development Team via Fulldisclosure on May 20 The Asterisk Development Team would like to announce security release Asterisk 21.3.1. The release artifacts...

Posted by Asterisk Development Team via Fulldisclosure on May 20 The Asterisk Development Team would like to announce security release Asterisk 18.23.1. The release artifacts...

Posted by Andrea Intilangelo on May 20 CVE-2024-34058: Nethserver 7 & 8 stored cross-site scripting (XSS) in WebTop package Use CVE-2024-34058. Additional info: NethServer is...

FEDORA-EPEL-2024-07403ba3a8 Packages in this update: chromium-125.0.6422.60-3.el7 Update description: update to 125.0.6422.60 High CVE-2024-4947: Type Confusion in V8 High CVE-2024-4948: Use after free in Dawn Medium...

Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free...

It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local...