No Image

USN-5611-1: WebKitGTK vulnerability

2022-09-14 KENNETH 0

USN-5611-1: WebKitGTK vulnerability Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Source: USN-5611-1: WebKitGTK vulnerability

No Image

USN-5610-1: rust-regex vulnerability

2022-09-14 KENNETH 0

USN-5610-1: rust-regex vulnerability Addison Crump discovered that rust-regex did not properly limit the complexity of the regular expressions (regex) it parses. An attacker could possibly use this issue to cause a denial of service. Source: USN-5610-1: rust-regex vulnerability

No Image

USN-5583-2: systemd regression

2022-09-14 KENNETH 0

USN-5583-2: systemd regression USN-5583-1 fixed vulnerabilities in systemd. Unfortunately this caused a regression by introducing netowrking problems for some users. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that systemd incorrectly handled certain DNS requests, which leads to user-after-free vulnerability. An attacker could possibly use this issue to cause a crash or execute arbitrary code. (CVE-2022-2526) Source: USN-5583-2: systemd regression

No Image

USN-5609-1: .NET 6 vulnerability

2022-09-14 KENNETH 0

USN-5609-1: .NET 6 vulnerability Graham Esau discovered that .NET 6 incorrectly parsed certain payloads during model binding. An attacker could possibly use this issue to cause a denial of service. Source: USN-5609-1: .NET 6 vulnerability

No Image

USN-5608-1: DPDK vulnerability

2022-09-14 KENNETH 0

USN-5608-1: DPDK vulnerability It was discovered that DPDK incorrectly handled certain Vhost headers. A remote attacker could possibly use this issue to cause a denial of service. Source: USN-5608-1: DPDK vulnerability