[SECURITY] Fedora 41 Update: python3.12-3.12.8-2.fc41

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable:...

CVE-2024-50626

creationtimestamp| type| source ---|---|--- 2024-12-09 21:28:10+00:00| seen| https://infosec.exchange/users/cve/statuses/113624985735998812 2024-12-09 23:54:39+00:00| seen| https://t.me/cvedetector/12454...

MAL-2024-11424 Malicious code in product-documentation (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in product-documentation (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in docs-ux (npm)

--- -= Per source details. Do not edit below this line.=-...

PT-2024-12246 · WordPress · Fahad Mahmood Wp Docs

Name of the Vulnerable Software and Affected Versions: Fahad Mahmood WP Docs versions 1.9.8 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows the exploitation of incorrectly configured access control security levels. Recommendations: For versions...

CVE-2024-11436

creationtimestamp| type| source ---|---|--- 2024-12-07 01:59:48+00:00| seen| https://infosec.exchange/users/cve/statuses/113609066944566850 2024-12-07 04:10:52+00:00| seen| https://t.me/cvedetector/12310...

CVE-2024-10771

creationtimestamp| type| source ---|---|--- 2024-12-06 12:28:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113605876542214022 2024-12-06 15:37:13+00:00| seen| https://t.me/cvedetector/12211...

redis:7 security update

7.2.6-1 - rebase to 7.2.6 RHEL-26628 7.0.12-1 - rebase to 7.0.12 2221899 7.0.11-1 - rebase to 7.0.11 for new redis:7 stream 2129826 7.0.11-1 - Upstream 7.0.11 release. 7.0.10-2 - fix modules directory ownership and permissions 2176173 - drop redis-shutdown helper and rely on systemd 2181181...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.70 security update

Red Hat OpenShift Container Platform release 4.12.70 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

Malicious code in pantheon-documentation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4da7ba157a9ffb95066f9d905650ba20227c83563a445aa30218a7eb1efa4e4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11211 Malicious code in pantheon-documentation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4da7ba157a9ffb95066f9d905650ba20227c83563a445aa30218a7eb1efa4e4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Audio Multimodality: Expanding AI Interaction with Spring AI and OpenAI

This blog post is co-authored by our great contributor Thomas Vitale. OpenAI provides specialized models for speech-to-text and text-to-speech conversion, recognized for their performance and cost-efficiency. Spring AI integrates these capabilities via Voice-to-Text and Text-to-Speech TTS. The ne...

CVE-2024-54154

creationtimestamp| type| source ---|---|--- 2024-12-04 11:20:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113594283210113502 2024-12-04 15:04:38+00:00| seen| https://t.me/cvedetector/11976 2024-12-09 17:44:20+00:00| seen|...

CVE-2024-10664 Knowledge Base documentation & wiki plugin – BasePress Docs <= 2.16.3.3 - Missing Authorization to Authenticated (Subscriber+) Database Update

The Knowledge Base documentation & wiki plugin – BasePress Docs plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the basepressdbpostsupdate function in all versions up to, and including, 2.16.3.3. This makes it possible for authenticated...

Moderate: Red Hat Security Advisory: ACS 4.6 enhancement and security update

Updated images are now available for Red Hat Advanced Cluster Security RHACS. The updated image includes new features and bug fixes. This release of RHACS 4.6 provides these new features: Support for ARM architecture in secured clusters Technology Preview Certifications for Red Hat Advanced Clust...

GHSA-VP6V-WHFM-RV3G Synapse can be forced to thumbnail unexpected file formats, invoking external, potentially untrustworthy decoders

Impact In Synapse versions before 1.120.1, enabling the dynamicthumbnails option or processing a specially crafted request could trigger the decoding and thumbnail generation of uncommon image formats, potentially invoking external tools like Ghostscript for processing. This significantly expands...

CVE-2024-53118

creationtimestamp| type| source ---|---|--- 2024-12-02 16:51:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113584261425434086...

OPENSUSE-SU-2024:0382-1 Security update for cobbler

This update for cobbler fixes the following issues: Update to 3.3.7: Security: Fix issue that allowed anyone to connect to the API as admin CVE-2024-47533, boo1231332 bind - Fix bug that prevents cname entries from being generated successfully Fix build on RHEL9 based distributions fence-agents-a...

CVE-2024-22037

creationtimestamp| type| source ---|---|--- 2024-11-28 10:04:33+00:00| seen| https://infosec.exchange/users/cve/statuses/113560012285968016...