4399 matches found
redis:7 security update
7.2.6-1 - rebase to 7.2.6 RHEL-26628 7.0.12-1 - rebase to 7.0.12 2221899 7.0.11-1 - rebase to 7.0.11 for new redis:7 stream 2129826 7.0.11-1 - Upstream 7.0.11 release. 7.0.10-2 - fix modules directory ownership and permissions 2176173 - drop redis-shutdown helper and rely on systemd 2181181...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.70 security update
Red Hat OpenShift Container Platform release 4.12.70 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...
Malicious code in pantheon-documentation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4da7ba157a9ffb95066f9d905650ba20227c83563a445aa30218a7eb1efa4e4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11211 Malicious code in pantheon-documentation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4da7ba157a9ffb95066f9d905650ba20227c83563a445aa30218a7eb1efa4e4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Audio Multimodality: Expanding AI Interaction with Spring AI and OpenAI
This blog post is co-authored by our great contributor Thomas Vitale. OpenAI provides specialized models for speech-to-text and text-to-speech conversion, recognized for their performance and cost-efficiency. Spring AI integrates these capabilities via Voice-to-Text and Text-to-Speech TTS. The ne...
CVE-2024-54154
creationtimestamp| type| source ---|---|--- 2024-12-04 11:20:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113594283210113502 2024-12-04 15:04:38+00:00| seen| https://t.me/cvedetector/11976 2024-12-09 17:44:20+00:00| seen|...
CVE-2024-10664 Knowledge Base documentation & wiki plugin – BasePress Docs <= 2.16.3.3 - Missing Authorization to Authenticated (Subscriber+) Database Update
The Knowledge Base documentation & wiki plugin – BasePress Docs plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the basepressdbpostsupdate function in all versions up to, and including, 2.16.3.3. This makes it possible for authenticated...
Moderate: Red Hat Security Advisory: ACS 4.6 enhancement and security update
Updated images are now available for Red Hat Advanced Cluster Security RHACS. The updated image includes new features and bug fixes. This release of RHACS 4.6 provides these new features: Support for ARM architecture in secured clusters Technology Preview Certifications for Red Hat Advanced Clust...
GHSA-VP6V-WHFM-RV3G Synapse can be forced to thumbnail unexpected file formats, invoking external, potentially untrustworthy decoders
Impact In Synapse versions before 1.120.1, enabling the dynamicthumbnails option or processing a specially crafted request could trigger the decoding and thumbnail generation of uncommon image formats, potentially invoking external tools like Ghostscript for processing. This significantly expands...
CVE-2024-53118
creationtimestamp| type| source ---|---|--- 2024-12-02 16:51:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113584261425434086...
OPENSUSE-SU-2024:0382-1 Security update for cobbler
This update for cobbler fixes the following issues: Update to 3.3.7: Security: Fix issue that allowed anyone to connect to the API as admin CVE-2024-47533, boo1231332 bind - Fix bug that prevents cname entries from being generated successfully Fix build on RHEL9 based distributions fence-agents-a...
CVE-2024-22037
creationtimestamp| type| source ---|---|--- 2024-11-28 10:04:33+00:00| seen| https://infosec.exchange/users/cve/statuses/113560012285968016...
CVE-2024-53365
creationtimestamp| type| source ---|---|--- 2024-11-26 16:51:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113550287775474366...
CVE-2020-12492
creationtimestamp| type| source ---|---|--- 2024-11-25 10:13:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113543060336017853...
CVE-2023-52333
creationtimestamp| type| source ---|---|--- 2024-11-22 20:57:54+00:00| seen| https://infosec.exchange/users/cve/statuses/113528607479224384...
SurrealDB has an Uncaught Exception in Function Generating Random Time
The rand::time function in SurrealQL generates a random time from an optional range of two Unix timestamps. Due to the underlying use of timestampopt from the chrono crate, this function could potentially return None in some instances, leading to a panic when unwrap was called on its result in...
CVE-2024-52804
Tornado is a Python web framework and asynchronous networking library. The algorithm used for parsing HTTP cookies in Tornado versions prior to 6.4.2 sometimes has quadratic complexity, leading to excessive CPU consumption when parsing maliciously-crafted cookie headers. This parsing occurs in th...
OESA-2024-2434 python-requests security update
Requests is an HTTP library, written in Python, as an alternative to Python's builtin urllib2 which requires work even method overrides to perform basic tasks. Features of Requests: - GET, HEAD, POST, PUT, DELETE Requests: + HTTP Header Request Attachment. + Data/Params Request Attachment. +...
OESA-2024-2433 python-requests security update
Requests is an HTTP library, written in Python, as an alternative to Python's builtin urllib2 which requires work even method overrides to perform basic tasks. Features of Requests: - GET, HEAD, POST, PUT, DELETE Requests: + HTTP Header Request Attachment. + Data/Params Request Attachment. +...
OESA-2024-2432 python-requests security update
Requests is an HTTP library, written in Python, as an alternative to Python's builtin urllib2 which requires work even method overrides to perform basic tasks. Features of Requests: - GET, HEAD, POST, PUT, DELETE Requests: + HTTP Header Request Attachment. + Data/Params Request Attachment. +...