[slackware-security] wavpack

New wavpack packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/wavpack-5.5.0-i586-1slack15.0.txz: Upgraded. WavPack 5.5.0 contains a fix for CVE-2021-44269 wherein encoding a...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current wavpack Multiple Vulnerabilities (SSA:2022-191-01)

The version of wavpack installed on the remote host is prior to 5.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-191-01 advisory. - An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function...

Shortcode For Current Date < 2.1.7 - Contributor+ Stored Cross-Site Scripting

The plugin does not escape the some of its shortcode's attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks PoC currentdate format='d/m/Y' size="10px;position:absolute;top:0;left:0;max-width:9999px;width:9999px;height:9999px'...

SAP 3D Visual Enterprise Viewer HDR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

WordPress Shortcode For Current Date plugin <= 2.1.6 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Ryan Dewhurst in WordPress Shortcode For Current Date plugin versions = 2.1.6. Solution Update the WordPress Shortcode for Current Date plugin to the latest available version at least 2.1.7...

rubygem-puma: rubygem-rails: information leak between requests

A flaw was found in Puma and Rails rubygems when response bodies were not closed under certain situations. This flaw allows an attacker, by iterating certain requests, to take advantage of this issue and affect CurrentAttributes, leading to leaked data...

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-91.11.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...

Cross site scripting

In general, Ember.js escapes or strips any user-supplied content before inserting it in strings that will be sent to innerHTML. However, the tagName property of an Ember.View was inserted into such a string without being sanitized. This means that if an application assigns a view's tagName to...

Adobe Bridge out-of-bounds write vulnerability (CNVD-2022-50226)

Adobe Bridge is a file viewer from Adobe. Adobe Bridge is vulnerable to an out-of-bounds write vulnerability that could be exploited to execute arbitrary code in the context of the current user...

Adobe Bridge out-of-bounds write vulnerability (CNVD-2022-50227)

Adobe Bridge is a file viewer from Adobe. Adobe Bridge is vulnerable to an out-of-bounds write vulnerability that could be exploited to execute arbitrary code in the context of the current user...

Adobe InDesign Heap Buffer Overflow Vulnerability (CNVD-2022-50228)

Adobe InDesign is a set of typesetting and editing applications from Adobe. Adobe InDesign is vulnerable to a heap buffer overflow vulnerability that could be exploited by an attacker to execute arbitrary code in the context of the current user...

Adobe Illustrator Resource Management Error Vulnerability (CNVD-2022-50220)

Adobe Illustrator, a vector-based image creation software from Adobe, is vulnerable to a resource management error. An attacker could use this vulnerability to execute arbitrary code in the context of the current user...

Tencent WeChat WXAM Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM decoder. T...

Adobe Illustrator out-of-bounds write vulnerability (CNVD-2022-50221)

An out-of-bounds write vulnerability exists in Adobe Illustrator, a vector-based image creation software from Adobe. An attacker could use this vulnerability to execute arbitrary code in the context of the current user...

Autodesk AutoCAD CATPart File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

Adobe Bridge out-of-bounds write vulnerability (CNVD-2022-50224)

Adobe Bridge, a file viewer from Adobe, is vulnerable to an out-of-bounds write vulnerability. An attacker could use this vulnerability to execute arbitrary code in the context of the current user...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-91.11.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

GSD-2022-1002898 sysrq: do not omit current cpu when showing backtrace of all active CPUs

sysrq: do not omit current cpu when showing backtrace of all active CPUs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

Issue with TWAV calculation.

Lines of code Vulnerability details Impact To calculate time weighted average value, current valuation is used. This is not appropriate way to decide the TWAV while other locations considers only time. This might not be the stable one. Proof of Concept uint256 currentValuation =...

Adobe InDesign out-of-bounds write vulnerability (CNVD-2022-48770)

An out-of-bounds write vulnerability exists in Adobe InDesign, a set of typesetting and editing applications from Adobe. An attacker could use this vulnerability to execute arbitrary code in the context of the current user...