💾 Archived View for data.konfusator.de › feeds › dsa.gmi captured on 2023-09-08 at 16:02:59. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
Zuletzt aktualisiert: 2023-09-08T03:39:44+00:00
2023-09-07
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
2023-09-06
Multiple security vulnerabilities have been discovered in aom, the AV1 Video
Codec Library. Buffer overflows, use-after-free and NULL pointer dereferences
may cause a denial of service or other unspecified impact if a malformed
multimedia file is processed.
2023-09-04
A buffer overflow was found in file, a file type classification tool,
which may result in denial of service if a specially crafted file is
processed.
2023-09-03
Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.
2023-08-31
A security issue was discovered in Chromium, which could result in the
execution of arbitrary code.
2023-08-30
An invalid memory access was discovered in json-c, a JSON library
which could result in denial of service.
2023-08-30
Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code.
2023-08-27
Zac Sims discovered a directory traversal in the URL decoder of librsvg,
a SAX-based renderer library for SVG files, which could result in read
of arbitrary files when processing a specially crafted SVG file with an
XInclude element.
2023-08-25
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
2023-08-24
"Edbo" and Cedric Krier discovered that the Tryton application server
does enforce record rules when only reading fields without an SQL type
(like Function fields).
2023-08-20
Multipe security issues were discovered in Fast DDS, a C++ implementation
of the DDS (Data Distribution Service), which might result in denial of
service or potentially the execution of arbitrary code when processing
malformed RTPS packets.
2023-08-18
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.
2023-08-17
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
2023-08-16
Several vulnerabilities have been discovered in the OpenJDK Java runtime,
which may result in bypass of sandbox restrictions, information
disclosure, reduced cryptographic strength of the AES implementation,
directory traversal or denial of service.
For the oldstable distribution (bullseye), these problems have been fixed
in version 11.0.20+8-1~deb11u1.
2023-08-14
Several vulnerabilities have been discovered in Samba, which could result
in information disclosure, denial of service or insufficient enforcement
of security-relevant config directives.
2023-08-12
Multiple vulnerabilities were discovered in the RealMedia demuxers for
the GStreamer media framework, which may result in denial of service or
potentially the execution of arbitrary code if a malformed media file
is opened.
2023-08-11
CVE-2022-40982
Daniel Moghimi discovered Gather Data Sampling (GDS), a hardware
vulnerability for Intel CPUs which allows unprivileged speculative
access to data which was previously stored in vector registers.
2023-08-11
This update ships updated CPU microcode for some types of Intel CPUs and
provides mitigations for security vulnerabilities.
════════════════════════
Skriptlauf: 2023-09-08T22:02:02