New Go-based Botnet Exploiting Exploiting Dozens of IoT Vulnerabilities to Expand its Network

NOTE: In this blog, Zerobot refers to a botnet that spreads primarily through IoT and web application vulnerabilities. It is not associated with the chatbot ZeroBot.ai. A novel Go-based botnet called Zerobot has been observed in the wild proliferating by taking advantage of nearly two dozen...

[SECURITY] Fedora 35 Update: galera-26.4.13-1.fc35

Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership/wsrep-API repository. For a description of Galera replication engine see...

[SECURITY] Fedora 37 Update: galera-26.4.13-1.fc37

Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership/wsrep-API repository. For a description of Galera replication engine see...

[SECURITY] Fedora 36 Update: heimdal-7.7.1-3.fc36

Kerberos 5 is a network authentication and single sign-on system. Heimdal is a free Kerberos 5 implementation without export restrictions written from the spec rfc1510 and successors including advanced features like thread safety, IPv6, master-slave replication of Kerberos Key Distribution Center...

[SECURITY] Fedora 36 Update: galera-26.4.13-1.fc36

Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership/wsrep-API repository. For a description of Galera replication engine see...

PT-2022-6758 · Hitachi · Hitachi Replication Manager

Name of the Vulnerable Software and Affected Versions: Hitachi Replication Manager versions prior to 8.8.5-02 Description: The issue affects Hitachi Replication Manager and is related to an Expression Language Injection vulnerability, allowing code injection. This vulnerability can be exploited b...

MariaDB 5.5.0 < 5.5.33 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.33. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.33 advisory. - Unspecified vulnerability in Oracle MySQL Server 5.5.x through 5.5.32 and 5.6.x through 5.6.12 allows remote authenticated users t...

MariaDB 10.1.0 < 10.1.33 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.1.33. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.1.33 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.3...

MariaDB 10.0.0 < 10.0.33 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.0.33. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.0.33 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are...

MariaDB 5.5.0 < 5.5.41 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.41. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.41 advisory. - Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote attackers to affect...

MariaDB 10.0.0 < 10.0.16 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.0.16. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.0.16 advisory. - Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote attackers to affect...

MariaDB 5.5.0 < 5.5.58 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.58 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affecte...

Veeam Backup & Replication 11a P20220302/P20230227 Compatibility With vSphere 8.0

Full support for vSphere 8.0 is available starting with Veeam Backup & Replication 12. See KB2443: Veeam Backup & Replication support for VMware vSphere Support Statement Veeam's RnD team has performed extensive testing with Veeam Backup & Replication 11a P20220302/P20230227 and has determined th...

Denial Of Service (DoS)

rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists in the Server: Group Replication Plugin component, allowing an attacker to cause an application crash through the multiple protocols...

Apache Pulsar Trust Management Issue Vulnerability (CNVD-2022-83591)

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high...

mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

mysql: Server: Replication unspecified vulnerability (CPU Jul 2023)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

mysql: Server: Replication unspecified vulnerability (CPU Apr 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

mysql: Server: Replication unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...