CVE-2022-29938

creationtimestamp| type| source ---|---|--- 2022-05-05 16:54:54+00:00| seen| https://t.me/cibsecurity/41981...

CVE-2022-29938

The connected sources confirm a SQL injection vulnerability in LibreHealth EHR 2.0.0 caused by lack of sanitization of the GET parameter payment_id in interface\billing\new_payment.php through interface\billing\payment_master.inc.php. Affected component: LibreHealth EHR web interface billing modu...

aiowrap (=0.1.0), ambisonic (>=0.1.0 <=0.3.1) +157 more potentially affected by CVE-2021-29938 via slice-deque (>=0.1.16 <=0.3.0)

slice-deque CARGO version =0.1.16, =0.1.0, =0.8.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.8.0, =0.3.0, =0.3.0, =0.4.0, =0.8.0, =0.15.3 and more Source cves: CVE-2021-29938 Source advisory: OSV:GHSA-P9GF-GMFV-398M...

CVE-2021-29938

CVE-2021-29938 concerns the Rust slice-deque crate. The connected advisories indicate that SliceDeque::drain_filter can drop the last element twice if the predicate panics, due to the implementation mutating the drain-filter iterator index before invoking the predicate. Affected scope is the slic...

aiowrap (=0.1.0), ambisonic (>=0.1.0 <=0.3.1) +157 more potentially affected by CVE-2021-29938 via slice-deque (>=0.1.16 <=0.3.0)

slice-deque CARGO version =0.1.16, =0.1.0, =0.8.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.8.0, =0.3.0, =0.3.0, =0.4.0, =0.8.0, =0.15.3 and more Source cves: CVE-2021-29938 Source advisory: OSV:RUSTSEC-2021-0047...

Product release: Virtuozzo Infrastructure Platform 3.5 Update 1 (3.5.1-43)

This update provides a new feature as well as fixes and improvements. Vulnerability id: VSTOR-30003 Unable to release node from cluster: 'Unable to send message to any node in ABGW cluster'. Vulnerability id: VSTOR-30135 No read/write data on dashboards if multipath is configured. Vulnerability i...