This archive contains all of the 140 exploits added to Packet Storm in January, 2024.
0e14cf0fdd25357c9137c6b5c8c80825739331f606188ff46569d1155f2fac8dUbuntu Security Notice 6620-1 - It was discovered that the GNU C Library incorrectly handled the syslog function call. A local attacker could use this issue to execute arbitrary code and possibly escalate privileges.
885d7737c8896c4979eff3130aedfac27d41d771214fabcaa738e3479072e0e6Ubuntu Security Notice 6619-1 - Rory McNamara discovered that runC did not properly manage internal file descriptor while managing containers. An attacker could possibly use this issue to obtain sensitive information or bypass container restrictions.
9c458430c39645313c622ac79bca7894770ec71a3fc955a22570296e7f62650aUbuntu Security Notice 6587-4 - USN-6587-1 fixed vulnerabilities in X.Org X Server. The fix was incomplete resulting in a possible regression. This update fixes the problem. Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled memory when processing the DeviceFocusEvent and ProcXIQueryPointer APIs. An attacker could possibly use this issue to cause the X Server to crash, obtain sensitive information, or execute arbitrary code.
6280234da702462a9a8a5cb22d88ea81607160120dbeb11971118a38e1bb841fApache Tomcat suffers from a client-side de-sync vulnerability via HTTP request smuggling. Apache Tomcat versions 8.5.7 through 8.5.63 and 9.0.0-M11 through 9.0.43 are vulnerable.
9daa4b224c94ad0336e94e92c1982742af04bc736d61fa10874a83b9c581e7c5GlobalScape Secure FTP Server version 3.0 remote denial of service exploit.
733a02c760b22da5599eb73d06fe845b8c9f2a954d19d7d0065a7b0bb519d482Red Hat Security Advisory 2024-0629-03 - An update for tigervnc is now available for Red Hat Enterprise Linux 7. Issues addressed include a buffer overflow vulnerability.
0be26d707c8347b067acc72363593d063c3ac3f09a77cc38900425f97fdd4052Red Hat Security Advisory 2024-0628-03 - An update for libssh is now available for Red Hat Enterprise Linux 8.
de5da48873b00d46c511d533b4f5ac800ab7c91ac818c4e2584b7899e8b81213Red Hat Security Advisory 2024-0627-03 - An update for gnutls is now available for Red Hat Enterprise Linux 8.
43b8c6f0c996104a580582549a6221ba164d17c2dda7aad6759bdc801e19bedbRed Hat Security Advisory 2024-0626-03 - An update for tigervnc is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
4474995e9c62e738acb59b23d6c2dd6de802500c616331932285c94d89d08dd0Red Hat Security Advisory 2024-0625-03 - An update for libssh is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
018cd548988820355474e81032b83f08e31c531ea5f9991fcba5c157634915d3Red Hat Security Advisory 2024-0619-03 - An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include bypass, out of bounds write, and privilege escalation vulnerabilities.
9b1f8eacb6b17ac2aa0060b2039c27d81b605b73549c736f31015f622c71fb50Red Hat Security Advisory 2024-0618-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include bypass, out of bounds write, and privilege escalation vulnerabilities.
e7cb812400989a6aaae5046e277cd4809285a7297f4eafc69978f6d329fd9b28Red Hat Security Advisory 2024-0617-03 - An update for tigervnc is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include a buffer overflow vulnerability.
884d8b31358a8286375da98846d99c9a28959a0bb674099082a4ba50ea5ae3f8Red Hat Security Advisory 2024-0489-03 - Red Hat OpenShift Container Platform release 4.12.48 is now available with updates to packages and images that fix several bugs and add enhancements. Issues addressed include a denial of service vulnerability.
be45958f4abbd53e2fbd31e7a564191f5d9c11de0feffee38c3c777463fa1c2eRed Hat Security Advisory 2024-0485-03 - Red Hat OpenShift Container Platform release 4.12.48 is now available with updates to packages and images that fix several bugs and add enhancements. Issues addressed include a cross site scripting vulnerability.
0deb6bdda4870623dcb74de02a9972bc221c57721c7586c37779abe972798ff3
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed