CVE-2022-23218

Summary: CVE-2022-23218 (glibc) is a stack-based buffer overflow in the sunrpc path handling function svcunix_create, allowing potential denial of service or arbitrary code execution if a stack protector is not present. The issue affects glibc up to version 2.34 per the description. Multiple conn...

SSON not working with Microsoft Edge, Google Chrome and Firefox . Message "No logon methods are available on this platform" is seen.

After logging on to Chrome,Edge or Firefox this message is seen. No logon methods are available on this platform" After browsing to the Storefront URL a screen appears asking to detect if Citrix Workspace App ininstalled . Then this screen is seen...

Vulnerabilities fixed in Ghostscript

Vulnerabilities have been fixed in Ghostscript. A malicious person could potentially exploit the vulnerability to cause a denial-of-service cause. To do this, a specially prepared PostScript file to be processed by the Ghostscript instance. Because Ghostscript is commonly used on print servers in...

Jenkins 安全漏洞

Jenkins Plugin is an open source application for Jenkins. A security vulnerability exists in Jenkins Plugin HashiCorp Vault Plugin 3.7.0 that stems from the fact that Jenkins HashiCorp Vault Plugin 3.7.0 or earlier does not block the pipeline when Pipeline: Groovy Plugin 2.85 or later is installe...

Execution Control List (ECL) Is Insecure in Singularity

Impact The Singularity Execution Control List ECL allows system administrators to set up a policy that defines rules about what signatures must be or must not be present on a SIF container image for it to be permitted to run. In Singularity 3.x versions below 3.6.0, the following issues allow the...

GHSA-PMFR-63C2-JR5C Execution Control List (ECL) Is Insecure in Singularity

Impact The Singularity Execution Control List ECL allows system administrators to set up a policy that defines rules about what signatures must be or must not be present on a SIF container image for it to be permitted to run. In Singularity 3.x versions below 3.6.0, the following issues allow the...

Security update for seamonkey (important)

openSUSE Security Update: Security update for seamonkey Announcement ID: openSUSE-SU-2021:1588-1 Rating: important References: Affected Products: openSUSE Backports SLE-15-SP3 An update that contains security fixes can now be installed. Description: This update for seamonkey fixes the following...

CVE-2021-0958

In update of kmcompat.cpp, there is a possible loss of potentially sensitive data due to a logic error in the code. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...

CVE-2021-44549

Apache Sling Commons Messaging Mail provides a simple layer on top of JavaMail/Jakarta Mail for OSGi to send mails via SMTPS. To reduce the risk of "man in the middle" attacks additional server identity checks must be performed when accessing mail servers. For compatibility reasons these addition...

December 14, 2021—KB5008255 (Security-only update)

December 14, 2021—KB5008255 Security-only update Summary Learn more about this security update, including improvements and fixes, any known issues, and how to get the update. IMPORTANT Windows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July...

Security fix for the ALT Linux 10 package samba version 4.14.10-alt3

Dec. 13, 2021 Evgeny Sinelnikov 4.14.10-alt3 - Update for the latest fixes release of Samba 4.14 + CVE-2020-25727 idmapnss, krb5 and s3-auth regressions + CVE-2021-3670 ldapserver, dsdb/anr and ldb libldb-2.3.2-alt2 regressions + smbd: s3-dsgetdcname: handle numips == 0 + dsdb: Use...

Kali Linux 2021.4 released with Samba compatibility, Apple M1 support, 9 new tools

By Waqas The release of the new Kali Linux 2021.4 has been grabbing headlines for the array of new capabilities and tools embedded with it. This is a post from HackRead.com Read the original post: Kali Linux 2021.4 released with Samba compatibility, Apple M1 support, 9 new tools...

How to check for Windows updates and install them

Keeping Windows up to date is an important part of warding off malware, exploits, and other attacks. If you’re not running the latest version of your OS, it can give cybercriminals the leverage they need to compromise your system. Unfortunately not all machines are running automatic updates by...

"Detect Receiver" is shown when launching Storefront URL from Edge or Chrome.

When launching Storefront URL from Edge or Chrome, "Detect Receiver" is shown. This issue doesn't happen within IE Browser...

The vulnerability in the implementation of the check_map_func_compatibility() function in Linux operating systems allows a malicious actor to exploit their privileges.

The vulnerability of the checkmapfunccompatibility function in Linux operating systems is related to type conversion errors. Exploiting this vulnerability can allow an attacker to gain increased privileges...

Microsoft Teams optimization not working for self-hosted Citrix Workspace app for Chrome OS users

Users who meet all below conditions use self-hosted/repackaged versions of Citrix Workspace app for Chrome OS from their own enterprise admin consoles AND have updated to Chrome OS Version 96 and above, AND have enabled Microsoft Teams optimization AND are onversion 2111 of Citrix Workspace app f...

SUSE: Security Advisory (SUSE-SU-2021:3643-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2021:3643-1 Security update for binutils

This update for binutils fixes the following issues: - For compatibility on old code stream that expect 'brcl 0,label' to not be disassembled as 'jgnop label' on s390x. bsc1192267 This reverts IBM zSeries HLASM support for now. - Fixed that ppc64 optflags did not enable LTO bsc1188941. - Fix empt...

OPENSUSE-SU-2021:3643-1 Security update for binutils

This update for binutils fixes the following issues: - For compatibility on old code stream that expect 'brcl 0,label' to not be disassembled as 'jgnop label' on s390x. bsc1192267 This reverts IBM zSeries HLASM support for now. - Fixed that ppc64 optflags did not enable LTO bsc1188941. - Fix empt...

SUSE-SU-2021:3637-1 Security update for binutils

This update for binutils fixes the following issues: - For compatibility on old code stream that expect 'brcl 0,label' to not be disassembled as 'jgnop label' on s390x. bsc1192267 This reverts IBM zSeries HLASM support for now. - Fixed that ppc64 optflags did not enable LTO bsc1188941. - Fix empt...