1065 matches found
DSA-4840-1 firefox-esr - security update
Bulletin has no description...
DSA-4839-1 sudo - security update
Bulletin has no description...
GROWI vulnerable to cross-site scripting
Overview GROWI provided by WESEEK, Inc. contains a cross-site scripting vulnerability CWE-79. Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary...
DSA-4832-1 chromium - security update
Bulletin has no description...
Multiple vulnerabilities in acmailer
Overview acmailer provided by Seeds Co.,Ltd. contains multiple vulnerabilities listed below. Improper Access Control CWE-284 - CVE-2021-20617 Privilege Chaining CWE-268 - CVE-2021-20618 ma.la reported these vulnerabilities to the developer, and also to IPA in order to notify users of its solution...
DSA-4830-1 flatpak - security update
Bulletin has no description...
DLA-2520-1 golang-websocket - security update
Bulletin has no description...
SUSE-SU-2021:0028-1 Security update for dovecot23
This update for dovecot23 fixes the following issues: Security issues fixed: - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-12673: Fixed an improper implementation of NTLM that did not check the message buffer size bsc1174922. -...
DSA-4797-2 webkit2gtk - regression update
Bulletin has no description...
Management software for NEC Storage disk array system vulnerable to improper server certificate verification
Overview Management software for NEC Storage disk array system provided by NEC Corporation is vulnerable to improper server certificate verification CWE-295. Masaaki KOBAYASHI reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...
ALBA-2020:5496 container-tools:rhel8 bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: update description and summary for container-tools module for 8.3.0 BZ1898204...
DLA-2490-1 x11vnc - security update
Bulletin has no description...
DLA-2487-1 apt - security update
Bulletin has no description...
DSA-4806-1 minidlna - security update
Bulletin has no description...
DSA-4805-1 trafficserver - security update
Bulletin has no description...
DLA-2480-1 salt - security update
Bulletin has no description...
DLA-2476-1 brotli - security update
Bulletin has no description...
DLA-2471-1 libxstream-java - security update
Bulletin has no description...
DLA-2473-1 vips - security update
Bulletin has no description...
OPENSUSE-SU-2020:2111-1 Security update for fontforge
This update for fontforge fixes the following issues: - fix for Use-after-free heap in the SFDGetFontMetaData function and the crash bsc1178308 CVE-2020-25690. This update was imported from the SUSE:SLE-15:Update update project...