k8sGPT has Prompt Injection through its k8sGPT-Operator

Summary In the auto-remediation pipeline, objecttoexecution.go was deserializing the AI-generated YAML directly into a Deployment object, but there was lack of validation from the original Deployment object. Details This issue was fixed after coordination with Alex Jones. PoC To minimize the...

Pybatfish - Python Client For Batfish (Network Configuration Analysis Tool)

Pybatfish is a Python client for Batfish. What is Batfish? Batfish is a network validation tool that provides correctness guarantees for security, reliability, and compliance by analyzing the configuration of network devices. It builds complete models of network behavior from device configuration...

Moderate: Red Hat Security Advisory: Red Hat Enterprise Linux OpenStack Platform 7 director update

Updated packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 7.0 director for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System...

Ubuntu Update for tomcat6 vulnerabilities USN-899-1

Ubuntu Update for Linux kernel vulnerabilities USN-899-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8991.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for tomcat6 vulnerabilities USN-899-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...