Ubuntu Security Notice 6054-1 - Moataz Al-Sharida and nawaik discovered that Django incorrectly handled uploading multiple files using one form field. A remote attacker could possibly use this issue to bypass certain validations.
ae0ba53f9519ac67a1f2ae260d466182a277d6949327391761be0dc5190ca27e
Debian Linux Security Advisory 5397-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. An anonymous researcher discovered that a website may be able to track sensitive user information. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
906c82aa33e2a5d3a615396adfc2c3297efa50d485469f517e5f3d4abec2f097
Gentoo Linux Security Advisory 202305-23 - Multiple vulnerabilities have been discovered in Lua, the worst of which could result in arbitrary code execution.
00aefb3377c44926da8759cd1d9a0caff52ef4beac1d0f7f4a215d7820e9e283
The Databricks Platform as of 2023-01-26 suffered from a cluster isolation bypass vulnerability through insecure defaults and shared storage.
c51c70d84e2fff1a493535fad3d25c413be249acfe7890db0198ee13ac5eac27
Gentoo Linux Security Advisory 202305-22 - Multiple vulnerabilities have been discovered in ISC DHCP, the worst of which could result in denial of service. Versions less than 4.4.3_p1 are affected.
01af9fd733feb9ee59313a46fa6a69ef223463ef95f3edd2c49015f148a0aadf
Red Hat Security Advisory 2023-2085-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include a double free vulnerability.
53c2da02a652387fed667edf0e66f0a8268b4d564d0c049363c85ee6d8a43383
Gentoo Linux Security Advisory 202305-20 - A buffer overflow vulnerability has been discovered in libapreq2 which could result in denial of service. Versions less than 2.17 are affected.
792071c590c9fa5e3f086497c3f88e44a5eaf5c99ed93c05a0036daabaa97e82
SoftExpert Suite version 2.1.3 suffers from a local file inclusion vulnerability.
86eebbef8604baf8b39e89589799d9208b3fecb0a1fc3656910e519da4c4c213
Gentoo Linux Security Advisory 202305-19 - A vulnerability has been discovered in Firejail which could result in local root privilege escalation.
a1cc5fd4c53d65e90316083ec113adeb3139a95bfa06da605b2b15ba54807504
Gentoo Linux Security Advisory 202305-18 - Multiple vulnerabilities have been found in libsdl2, the worst of which could result in arbitrary code execution. Versions less than 2.26.0 are affected.
329099e77e1155de31ad66371529080c5715465d8e090924f3aba8938512f75b
FS-S3900-24T4S suffers from a privilege escalation vulnerability.
a07739b2f427e832148609c9cae7dd8cdd1d3bc9ccbb95a9c8ed4aae13777962
Gentoo Linux Security Advisory 202305-17 - Multiple vulnerabilities have been found in libsdl, the worst of which could result in arbitrary code execution. Versions less than 1.2.15_p20221201>= are affected.
f88cbbf99497c62f630186c9fc9b3387da4a2cc7bd86fcd3e2435a35d63ff6ff
Gentoo Linux Security Advisory 202305-16 - Multiple vulnerabilities have been found in Vim, the worst of which could result in denial of service. Versions less than 9.0.1157 are affected.
81b5395f5780b813c10198f29c690100f378f19946bb1a709a861b0663668b4e
OpenEMR versions 7.0.1 and below remote authentication bruteforcing tool that bypasses mitigations.
9a7f03b28b3643f8abd93cf26310302d0213e7ee85a19d7eab9f3556ffd3cb08
Debian Linux Security Advisory 5396-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
caa6ba8a7c6d999f37d1121df65a4754aa4c306b9a151b6edb8be86f9d9c9467
Red Hat Security Advisory 2023-2083-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.5 General Availability release images, which fix bugs and security updates container images. Issues addressed include denial of service and server-side request forgery vulnerabilities.
73a3a6d4835d6deabe73aac1424fead885072ae86393a0569e27f07803acfe01
Gentoo Linux Security Advisory 202305-15 - Multiple vulnerabilities have been discovered in systemd, the worst of which could result in denial of service.
5385d40a5dc26e14d825f0e98938e718780d2697e083d342fb1504267a87ed38
Gentoo Linux Security Advisory 202305-14 - A vulnerability has been discovered in uptimed which could result in root privilege escalation. Versions less than 0.4.6-r1 are affected.
bc372404c988cf4e4c037c3f15aa29c339776307d0b656e7b70be7cfcfb1b929
PHPJabbers Simple CMS version 5.0 suffers from a remote SQL injection vulnerability.
83f621397845c84a9917b61152f97ae5a466d86a9cd4d0fb41285c7f7ed1d29c
PHPJabbers Simple CMS version 5.0 suffers from a persistent cross site scripting vulnerability.
ac5a25fb5aa54ef7a5f3072c88ec55766e7b60fbe64da0e271c8b427aae69c1d
Gentoo Linux Security Advisory 202305-12 - A vulnerability has been discovered in sudo which could result in root privilege escalation. Versions less than 1.9.12_p2 are affected.
b8f9643203a24f27c9e405bdb0297e4ad8adff7235b76a4220ae9bf87e546de1
Gentoo Linux Security Advisory 202305-11 - Multiple vulnerabilities have been found in Tor, the worst of which could result in denial of service. Versions less than 0.4.7.13 are affected.
b35755744fdd1d6e1ae8281fa91b0190eca10c429f7f73044c5532c64ddd96be
Gentoo Linux Security Advisory 202305-10 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 109.0.5414.74-r1>= are affected.
fa3546a29e07efaa3af4ab0c41e75094c5aa943da3174dfaf8d8a7fd33602ded
PHPFusion version 9.10.30 suffers from a persistent cross site scripting vulnerability.
aa251886281d962736d5731f2bc3b96ee2197a77f04ca5b9d031c9023887dfbc
Gentoo Linux Security Advisory 202305-9 - A denial of service vulnerability was discovered in rsyslog related to syslog input over the network. Versions less than 3.38.1 are affected.
84eddc583f78055c45f24457505402cbf8f5b1c37d2b55f6ff25ed8c0a2c0825