RT-Thread RTOS versions 5.0.2 and below suffer from multiple buffer overflows, a weak random source in rt_random driver, and various other vulnerabilities.
7668e32fd902661f2969390da3ee78a01c4b634481c7dec7530ab68c48399ff3Ubuntu Security Notice 6653-4 - It was discovered that a race condition existed in the ATM subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that a race condition existed in the AppleTalk networking subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.
aa48f67fd66f658d9892f7335cc6fb90de9e9c25c6ff2c4f219a83a90245088dRAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot 2010.12 suffer from a directory traversal vulnerability.
4fc9777bae6431fffff54a5e1e945548b2d134853e189f941d1edbb9e6269023Debian Linux Security Advisory 5635-1 - Aviv Keller discovered that the frames.html file generated by YARD, a documentation generation tool for the Ruby programming language, was vulnerable to cross-site scripting.
dcdab1d7f7cf4e649af57210018d82164536fd3183f20fc49dc2b55a1e94d866Solar-Log 200 PM+ version 3.6.0 suffers from a persistent cross site scripting vulnerability.
91c80fe6993444332ef6cfa75038b93091c2168576431c35a2ce5ab6af024a52Ubuntu Security Notice 6674-2 - USN-6674-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 18.04 LTS. Seokchan Yoon discovered that the Django Truncator function incorrectly handled very long HTML input. A remote attacker could possibly use this issue to cause Django to consume resources, leading to a denial of service.
997b193005614a4286e157f3adb9ede1701e065c5ba4f071d3dffb9741612a72WordPress Neon Text plugin versions 1.1 and below suffer from a persistent cross site scripting vulnerability.
f6fa131d3df7c7fa0667803c7757179d6f0f6967ebbb7d6ee2469662460a8a4eUbuntu Security Notice 6674-1 - Seokchan Yoon discovered that the Django Truncator function incorrectly handled very long HTML input. A remote attacker could possibly use this issue to cause Django to consume resources, leading to a denial of service.
8724577a7a85c8ee06c83d3ec00d4db888a3a2260fa6a62b92f39b2d23d729c9KK Star Ratings versions prior to 5.4.6 suffer from rate tampering via a race condition vulnerability.
2e1c4925bca451a88d4a0a461e83cf04f475f7a1e69436d15c5245667df01737Red Hat Security Advisory 2024-1093-03 - An update for frr is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include an out of bounds read vulnerability.
84c6780bc93b46bb892b9191e05cfe57c7d37dc7d25e48a445c326d8ae3ed864Red Hat Security Advisory 2024-1092-03 - An update for tomcat is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a HTTP request smuggling vulnerability.
95e054ee219be1ca26cda4b413601eae9272f7ce16f7e06dd96c6194da4f0a90Red Hat Security Advisory 2024-1090-03 - An update for tcpdump is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a use-after-free vulnerability.
ff1e2376eaf2d61068a709bce9010b632a1f31efe796e8530e51f478f1fc7d04Red Hat Security Advisory 2024-1089-03 - An update for haproxy is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
e4636439ab35021bb357aa2a62cdebbe77ad19dd86e3c7be20371b709059c340Red Hat Security Advisory 2024-1088-03 - An update for libX11 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
76f20e7d7dabebae474ab491a8d9ad78edb6b1dd32335eb19a9d8815b65961e0Red Hat Security Advisory 2024-1086-03 - An update for libfastjson is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include integer overflow and out of bounds write vulnerabilities.
be3e822d34251dbde5473b6534e3dd0d9657eb64fbd05beebf9a07040109b68bRed Hat Security Advisory 2024-1085-03 - An update for squid is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a denial of service vulnerability.
e4c130608dc962062562f9d4781cf0361833443958fd6a0b7e0fc34783572c6bRed Hat Security Advisory 2024-1082-03 - An update for gnutls is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
dab80b2b40347371cff44683a98b336d57121160269d4189f8cf03288f84c5e5Red Hat Security Advisory 2024-1081-03 - An update for sqlite is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
1f401f49e77531791ae7b556cae1d51f721b1b97eeb13fb22c68cd602999dfcaRed Hat Security Advisory 2024-1078-03 - An update is now available for Service Telemetry Framework 1.5.4. Issues addressed include a denial of service vulnerability.
46a2f1ade39a03aa17fa1eb2a48a20eba9042aebab089af3d297d873de262cc4Red Hat Security Advisory 2024-1077-03 - An update for edk2 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
58a9189baaa5d34b0c15488417e2c0a75c251a746b8859f1b6596388f8c2b847Red Hat Security Advisory 2024-1076-03 - An update for edk2 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
65a297b6beec18afe0767619db7a660d36238b59ddca5f4eda6573348d921ddbRed Hat Security Advisory 2024-1075-03 - An update for edk2 is now available for Red Hat Enterprise Linux 9. Issues addressed include a buffer overflow vulnerability.
dd9fd05f0f962068f8f7414fd2124851760359bfac39eb90562672641e504ca8Red Hat Security Advisory 2024-1074-03 - An update for the 389-ds:1.4 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a heap overflow vulnerability.
5c3443a4681bb732fe3756e0371d521d062fef845649049ab05ddf1b8da2edf2Red Hat Security Advisory 2024-1072-03 - An update is now available for Red Hat Ansible Automation Platform 2.4. Issues addressed include a denial of service vulnerability.
38f18d3f823e807d1df67b9f287b8cf72dec2fd2f85af718b7ea6bf6c6900fa9Red Hat Security Advisory 2024-1071-03 - An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.
79a9d44b067e4c67a5f18aae0374153639c89df087d301677ddd2404688b0f5c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed