Gentoo Linux Security Advisory 202407-09
Tuesday, July 2, 2024

Gentoo Linux Security Advisory 202407-9 - A vulnerability has been discovered in OpenSSH, which can lead to remote code execution with root privileges. Versions greater than or equal to 9.7_p1-r6 are affected. .. read more..

WordPress FooGallery 2.4.16 Cross Site Scripting
Tuesday, July 2, 2024

WordPress FooGallery plugin version 2.4.16 suffers from a persistent cross site scripting vulnerability. .. read more..

WordPress Gallery 2.3.6 Cross Site Scripting
Tuesday, July 2, 2024

WordPress Gallery version 2.3.6 suffers from a persistent cross site scripting vulnerability. .. read more..

Ubuntu Security Notice USN-6851-2
Tuesday, July 2, 2024

Ubuntu Security Notice 6851-2 - USN-6851-1 fixed vulnerabilities in Netplan. The update lead to the discovery of a regression in netplan which caused systemctl enable to fail on systems without dbus. This update fixes the problem. .. read more..

Ubuntu Security Notice USN-6844-2
Tuesday, July 2, 2024

Ubuntu Security Notice 6844-2 - USN-6844-1 fixed vulnerabilities in the CUPS package. The update lead to the discovery of a regression in CUPS with regards to how the cupsd daemon handles Listen configuration directive. This update fixes the problem. Rory McNamara discovered that when starting th... .. read more..

Red Hat Security Advisory 2024-4212-03
Tuesday, July 2, 2024

Red Hat Security Advisory 2024-4212-03 - An update for golang is now available for Red Hat Enterprise Linux 9. .. read more..

Red Hat Security Advisory 2024-4211-03
Tuesday, July 2, 2024

Red Hat Security Advisory 2024-4211-03 - An update for kernel is now available for Red Hat Enterprise Linux 8. Issues addressed include double free, memory leak, null pointer, spoofing, and use-after-free vulnerabilities. .. read more..

Red Hat Security Advisory 2024-4210-03
Tuesday, July 2, 2024

Red Hat Security Advisory 2024-4210-03 - An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.9 for RHEL 8. Issues addressed include a denial of service vulnerability. .. read more..

Red Hat Security Advisory 2024-4209-03
Tuesday, July 2, 2024

Red Hat Security Advisory 2024-4209-03 - An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.2 for RHEL 8. Issues addressed include a denial of service vulnerability. .. read more..

PowerVR Driver Missing Sanitization
Tuesday, July 2, 2024

The PowerVR driver does not sanitize ZS-Buffer / MSAA scratch firmware addresses. .. read more..

Ubuntu Security Notice USN-6859-1
Monday, July 1, 2024

Ubuntu Security Notice 6859-1 - It was discovered that OpenSSH incorrectly handled signal management. A remote attacker could use this issue to bypass authentication and remotely access systems without proper credentials. .. read more..

Debian Security Advisory 5724-1
Monday, July 1, 2024

Debian Linux Security Advisory 5724-1 - The Qualys Threat Research Unit (TRU) discovered that OpenSSH, an implementation of the SSH protocol suite, is prone to a signal handler race condition. If a client does not authenticate within LoginGraceTime seconds (120 by default), then sshd's SIGALRM ha... .. read more..

Gentoo Linux Security Advisory 202407-08
Monday, July 1, 2024

Gentoo Linux Security Advisory 202407-8 - Multiple vulnerabilities have been discovered in GNU Emacs and Org Mode, the worst of which could lead to arbitrary code execution. Versions greater than or equal to 26.3-r16:26 are affected. .. read more..

Gentoo Linux Security Advisory 202407-07
Monday, July 1, 2024

Gentoo Linux Security Advisory 202407-7 - A vulnerability has been discovered in cpio, which can lead to arbitrary code execution. Versions greater than or equal to 2.13-r1 are affected. .. read more..

Packet Storm New Exploits For June, 2024
Monday, July 1, 2024

This archive contains all of the 65 exploits added to Packet Storm in June, 2024. .. read more..

OpenSSH Server regreSSHion Remote Code Execution
Monday, July 1, 2024

Qualys has discovered a a signal handler race condition vulnerability in OpenSSH's server, sshd. If a client does not authenticate within LoginGraceTime seconds (120 by default, 600 in old OpenSSH versions), then sshd's SIGALRM handler is called asynchronously, but this signal handler calls vario... .. read more..

OpenSSH 9.8p1
Monday, July 1, 2024

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups. .. read more..

Ubuntu Security Notice USN-6858-1
Monday, July 1, 2024

Ubuntu Security Notice 6858-1 - It was discovered that eSpeak NG did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service, or execute arbitrary code. .. read more..

Gentoo Linux Security Advisory 202407-06
Monday, July 1, 2024

Gentoo Linux Security Advisory 202407-6 - Multiple vulnerabilities have been discovered in cryptography, the worst of which could lead to a denial of service. Versions greater than or equal to 42.0.4 are affected. .. read more..

Gentoo Linux Security Advisory 202407-05
Monday, July 1, 2024

Gentoo Linux Security Advisory 202407-5 - A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution. Versions greater than or equal to 2.5.2-r1 are affected. .. read more..

Simple Laboratory Management System 1.0 SQL Injection
Monday, July 1, 2024

Simple Laboratory Management System version 1.0 suffers from a remote time-based SQL injection vulnerability. .. read more..

Ubuntu Security Notice USN-6855-1
Monday, July 1, 2024

Ubuntu Security Notice 6855-1 - Mansour Gashasbi discovered that libcdio incorrectly handled certain memory operations when parsing an ISO file, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. .. read more..

Gentoo Linux Security Advisory 202406-06
Monday, July 1, 2024

Gentoo Linux Security Advisory 202406-6 - Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution. Versions greater than or equal to 1.22.11-r1 are affected. .. read more..

Azon Dominator Affiliate Marketing Script SQL Injection
Monday, July 1, 2024

Azon Dominator Affiliate Marketing Script suffers from a remote SQL injection vulnerability. .. read more..

Gentoo Linux Security Advisory 202407-02
Monday, July 1, 2024

Gentoo Linux Security Advisory 202407-2 - A vulnerability has been discovered in SDL_ttf, which can lead to arbitrary memory writes. Versions greater than or equal to 2.20.0 are affected. .. read more..

[remote] - Android - 'BadKernel' Remote Code Execution
Monday, November 28, 2016

Android - 'BadKernel' Remote Code Execution .. read more..

[remote] - VX Search Enterprise 9.1.12 - Buffer Overflow
Monday, November 28, 2016

VX Search Enterprise 9.1.12 - Buffer Overflow .. read more..

[remote] - Sync Breeze Enterprise 9.1.16 - Buffer Overflow
Monday, November 28, 2016

Sync Breeze Enterprise 9.1.16 - Buffer Overflow .. read more..

[remote] - Disk Sorter Enterprise 9.1.12 - Buffer Overflow
Monday, November 28, 2016

Disk Sorter Enterprise 9.1.12 - Buffer Overflow .. read more..

[remote] - Dup Scout Enterprise 9.1.14 - Buffer Overflow
Monday, November 28, 2016

Dup Scout Enterprise 9.1.14 - Buffer Overflow .. read more..

[remote] - Disk Savvy Enterprise 9.1.14 - Buffer Overflow
Monday, November 28, 2016

Disk Savvy Enterprise 9.1.14 - Buffer Overflow .. read more..

[remote] - Disk Pulse Enterprise 9.1.16 - Buffer Overflow
Monday, November 28, 2016

Disk Pulse Enterprise 9.1.16 - Buffer Overflow .. read more..

[webapps] - Tenda/Dlink/Tplink TD-W8961ND - 'DHCP' Cross-Site Scripting
Monday, November 28, 2016

Tenda/Dlink/Tplink TD-W8961ND - 'DHCP' Cross-Site Scripting .. read more..

[dos] - NTP 4.2.8p3 - Denial of Service
Monday, November 28, 2016

NTP 4.2.8p3 - Denial of Service .. read more..

[local] - Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' PTRACE_POKEDATA Race Condit...
Monday, November 28, 2016

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' PTRACE_POKEDATA Race Condition Privilege Escalation (/etc/passwd) .. read more..

Powered by Feed Informer