In the Linux kernel, vulnerabilities in netfilter, tls, and tty have been resolved.
26f9dfe489d13089790305d8f67825c601335c35926cd154fac7a9ac2ed36d53Ubuntu Security Notice 6969-1 - It was discovered that Cacti did not properly apply checks to the "Package Import" feature. An attacker could possibly use this issue to perform arbitrary code execution. This issue only affected Ubuntu 24.04 LTS, Ubuntu 22.04 LTS, Ubuntu 20.04 LTS and Ubuntu 18.04 LTS. It was discovered that Cacti did not properly sanitize values when using javascript based API. A remote attacker could possibly use this issue to inject arbitrary javascript code resulting into cross-site scripting vulnerability. This issue only affected Ubuntu 24.04 LTS.
569974f66e44cbbc04571591151988d6a9b0642234fd900881b7bd97af4003b0Ubuntu Security Notice 6967-1 - It was discovered that some Intel® Core™ Ultra Processors did not properly isolate the stream cache. A local authenticated user could potentially use this to escalate their privileges. It was discovered that some Intel® Processors did not properly isolate the stream cache. A local authenticated user could potentially use this to escalate their privileges. It was discovered that some Intel® Processors did not correctly transition between the executive monitor and SMI transfer monitor. A privileged local attacker could use this to escalate their privileges.
08be1e8b8325d1c956aae2f3a5bf9466a45a45ffbf20319795691bd264cd5dbcAkuvox Smart Intercom/Doorphone suffers from an unauthenticated live stream disclosure when requesting video.cgi endpoint on port 8080. Many versions are affected.
b9109fbd6b81561f43a64e422162fa5e99ed650e66b857057e94fc3b868986d0Linux has an issue where landlock can be disabled thanks to a missing cred_transfer hook.
a12bdeb84032ca0a10a49441e34ac1148d44ca6ae128dfe4fd56120c8dbf3c24Ubuntu Security Notice 6968-1 - Noah Misch discovered that PostgreSQL incorrectly handled certain SQL objects. An attacker could possibly use this issue to execute arbitrary SQL functions as the superuser.
311886c2fbf6a4a1c06df54d4d85ee9c723a1275f7a583e53fd4df8178907c4aLost and Found Information System version 1.0 suffers from a cross site request forgery vulnerability.
4ff737e4c7ddd6c4daea85392f2433bdcd4507e42cfaa25ab1c7f2177389e147Loan Management System version 1.0 suffers from a cross site request forgery vulnerability.
2cbcf070340e09d82fbc406eee3c17984ad7824d1d4cd7b056fece3303852f3bUbuntu Security Notice 6951-3 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
8c1f01b0663bf22998e19385fae707029ea2e6973bc55394b2ca20ee8e51eff8Debian Linux Security Advisory 5751-1 - Joshua Rogers that incorrect parsing of ESI variables in the Squid proxy caching server could result in memory corruption.
407bd2f0ff957e24d9e8207f5806e4527bb7b24790f81239971ff520dfd9ff5eSimple Machines Forum version 2.1.4 suffers from an authenticated code injection vulnerability.
5b1fd0910e2bd48c0826ea39984cc8e3a3f91f47ca1adbd1800aace768d2f620Red Hat Security Advisory 2024-5608-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
fdbf468ca42dcaa196f768d8dd323737b517c6b949eda7eb41810360a7b16f4eBiobook Social Networking Site version 1.0 suffers from an arbitrary file upload vulnerability.
eea7a63452086fbc6b26395926afd32c8db7ed26cb64e63041d07be948f52e93Red Hat Security Advisory 2024-5607-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
5eedbd38072467aa8a603689a72f67dd794acf5c3a5e9301045666b674f7489eAccounting Journal Management System version 1.0 suffers from a code injection vulnerability.
e95c713c71261595bdc41ccef717e58286fcbcb024af44e76b0bd356c56540d9Red Hat Security Advisory 2024-5599-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.
b22753a393d7dc822fc27269f507111f086f78ea8676a7ed67451d0d3519d5ebRed Hat Security Advisory 2024-5598-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.
e40ceb00f6957b738c836fcd4a179a86eb2f0743834042af92f3680ad902f5caABIC Cardiology Management System version 1.0 suffers from a cross site request forgery vulnerability.
732a8abb9600ae3051bdca23c8d93b67641762e3c7389fdee82bd67abfac06f5Red Hat Security Advisory 2024-5584-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.
0c8fa8701ea6cfcab177048010f4372565c9422c2f2527054491c7917cbab53cHospital Management System version 1.0 suffers from a code injection vulnerability.
bbd559fdc6e600ff7aa72c632b19323a65a734a09539c1191e74e14173b2d1aeEvent Registration and Attendance System version 1.0 suffers from a code injection vulnerability.
b8ca1cd257cfd43a66e98a3fe76abf9431fd6be08b48fdf4183dac0134f6bea6Red Hat Security Advisory 2024-5583-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.
2ceacf9d3bddea9d016046fb8164ac589dfc67d9c2325909724a22c4bc9082a0Red Hat Security Advisory 2024-5582-03 - An update for kpatch-patch-4_18_0-372_87_1 and kpatch-patch-4_18_0-372_91_1 is now available for Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
a619bfbc272019d031f3b79a78b7d9ab82e4ffcd07dac1a49b44c5dad9b7cf8cRed Hat Security Advisory 2024-5522-03 - An update for kpatch-patch-4_18_0-553 is now available for Red Hat Enterprise Linux 8. Issues addressed include code execution and use-after-free vulnerabilities.
fb6e130eed7b5470eb310f3676f417fc4e754b5131b900c3a4bbebce9702726bRed Hat Security Advisory 2024-5082-03 - Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 17.1 for Red Hat Enterprise Linux 8.4.
12334edc2cb9c9796a9a3b58a12a17f06d88b0e651e462f46327b1e15111721b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed