Red Hat Security Advisory 2019-0309-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 72.0.3626.81. Issues addressed include a buffer overflow vulnerability.
8f26567dfa4d0164a43053fdca5810d33726f8f908f97343f76c13a13ea0c8daThe Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
c72fe9efbd4aeab61b28fe3f7385711d5d22171304183089ba0fde18e56e3434Ubuntu Security Notice 3886-1 - It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a denial of service.
e89a4a1068eddaf0a9c361aefd4eed39c426e285e7ae7a8cb93215fa4c371e0eDebian Linux Security Advisory 4388-1 - Three vulnerabilities were discovered in the Mosquitto MQTT broker, which could result in authentication bypass.
41bc3a5a4d1300c705acf98facd1d98003e98611aeceab7a0a851c2fe2340a84A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals. Affected products include 1.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3.DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4.DT721-cb GPON Uplink Home Gateway (GPON+2FE+1POTS), 5.DT741-cb GPON uplink home gateway (GPON+4FE+1POTS+WIFI+USB), 6.DT741-cb GPON Uplink Home Gateway (GPON+4FE+1POTS+WIFI+USB), and 7.DT741-cbGPON uplink home gateway DT741-cb.
4f48da3e8a78a9cf4093887c381e510d71c9c97ebafd060e27501d9e12a2e61dRed Hat Security Advisory 2019-0304-01 - Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere. Issues addressed include an overwrite vulnerability.
581a1305c7a081ecdf9695e54daa99bafd4246f49cec1a80ccaefbf6eb34bbd8IP-Tools version 2.5 local buffer overflow SEH exploit with egghunter shellcode.
ce14f4fbad55ce301c2c42169b69065f06deba5346cb4d605a9f3f45686ac89fRed Hat Security Advisory 2019-0303-01 - The runC tool is a lightweight, portable implementation of the Open Container Format that provides container runtime. Issues addressed include an overwrite vulnerability.
aaa2d1b7c5e79ab037789efaa9ce871476609fd4528b344eaff16402594e3064River Past Cam Do version 3.7.6 suffers from a local buffer overflow vulnerability.
4e8c00d1bf4451850756feb16e08737db71ec67c4481166b97a53e5b31e4e806VA MAX version 8.3.4 suffers from a post-authentication remote code execution vulnerability.
83895e02490abd5dff21baf3e6cb7ef84abf36fa23f4bc7a4401f14daf917e92Indusoft Web Studio version 8.1 SP2 suffers from a remote code execution vulnerability.
172f1b393e16e90073a60eec389b5293b0c2c8c938d22107e508e058a1be074bDebian Linux Security Advisory 4387-1 - Harry Sintonen from F-Secure Corporation discovered multiple vulnerabilities in OpenSSH, an implementation of the SSH protocol suite. All the vulnerabilities are in found in the scp client implementing the SCP protocol.
6c0fb736b4beddde6c918aa8b4223d25be2803590c6188c24970d558ae469ec0Joomla WebLinks version 3.6.0 suffers from database disclosure and remote SQL injection vulnerabilities.
a4068ddcbd32a8c741a16ef047033b266126d738123e4e2c0541a1d4ce6c8295FutureDj Pro version 1.7.2.0 suffers from a denial of service vulnerability.
51aacfe9ac2c0a29c4de8622a6e3bfcd41f55195dd3ff96aba4cead1760c1ea8Joomla JVLE JV-LinkExchanger version 3.2 suffers from a remote SQL injection vulnerability.
3e243feb67cfb6606ebd0cf4c30448662cde7c77ffaf9915b5acc4069c373382Joomla jDownloads version 3.2.63 suffers from database disclosure and remote SQL injection vulnerabilities.
0b7fdc048b2cea3955747dfb55271ab6b068a66c4dfdb622567124752691a1adAirDroid version 4.2.1.6 suffers from a denial of service vulnerability.
200c0f85314b379722fad57bae8ec77c15ba0c020c373ad862074a9d40fcc83eCoship Wireless Router versions 4.0.0.x and 5.0.0.x suffer from an unauthenticated password reset vulnerability.
742d291bcd896fd9ba85b5d50ba706f45a2123fec491f2b06618d7d8a7cafab2Joomla BreezingForms version 1.9.0 suffers from database disclosure and remote SQL injection vulnerabilities.
31e61abd7ab11e7519450c4c5825c4431472e14a9b0bf897182bdffdb76f6d4aJoomla AcePolls version 3.x suffers from a remote SQL injection vulnerability.
32fbe2df37724dcfb98ca02c4c44102297b51926d1b6062584d3a44d64bd88f3WebKitGTK+ and WPE WebKit suffer from multiple memory corruption vulnerabilities that can lead to code execution. Multiple versions are affected.
3cb5fdcd6bc0ec5fd603824f6ca990d828d8b0a217586bb8ab36b7bb300e82c5NordVPN version 6.19.6 suffers from a denial of service vulnerability.
207194b4a30aca78e19312cc6e59474057676278f36365b76233dad05480d44f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed