gnutls and nettle security, bug fix, and enhancement update

An update is available for nettle, gnutls. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnutls packages provide the GNU Transport Layer Security GnuTLS...

GNU oSIP 输入验证错误漏洞

GNU oSIP is the GNU Foundation's free software library for VoIP applications that implement lower-level session-initiation protocols. The library contains the minimum code base required for any SIP application and provides enough flexibility to implement any SIP extension or behavior. A security...

CVE-2022-41550

GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osipbodyparseheader...

PT-2022-25931 · Gnu +2 · Gnu Osip +2

Name of the Vulnerable Software and Affected Versions: GNU oSIP version 5.3.0 Description: The issue is related to an integer overflow in the osip body parse header component. Recommendations: For GNU oSIP version 5.3.0, update to a version that fixes the integer overflow issue in the osip body...

CVE-2022-41550

GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osipbodyparseheader...

CVE-2022-41550

CVE-2022-41550 concerns GNU oSIP v5.3.0, where an integer overflow occurs in the osip_body_parse_header component. The vulnerability affects multiple distributions that bundle libosip2/osip, with CVSS 3.1 base score 6.5 (Network attack, User interaction required; HIGH impact on availability). Con...

CVE-2022-41550

GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osipbodyparseheader...

CVE-2022-41550

GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osipbodyparseheader...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2022-2494)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2022-2501)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.6.0 : xz (EulerOS-SA-2022-2597)

According to the versions of the xz packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name...

Fedora: Security Advisory for poppler (FEDORA-2022-fcb3b063a6)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

EulerOS Virtualization 3.0.6.6 : binutils (EulerOS-SA-2022-2487)

According to the versions of the binutils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTED An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visua...

EulerOS Virtualization 3.0.6.6 : emacs (EulerOS-SA-2022-2494)

According to the versions of the emacs packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the...

Security Bulletin: Multiple Vulnerabilities in base image packages

Summary Security Vulnerabilities in base image packages affect IBM Voice Gateway. Vulnerability Details CVEID:CVE-2022-2526 DESCRIPTION: systemd could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free flaw due to the onstreamio function and...

FlatPress < 1.3 RCE Vulnerability

FlatPress is prone to a remote code execution RCE vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Fedora: Security Advisory for bash (FEDORA-2022-5b644a935b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for chromium (FEDORA-2022-3ca063941b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the `sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S` component of the GNU C Library allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S component of the GNU C Library is related to the execution of operations outside of the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

Fedora: Security Advisory for chromium (FEDORA-2022-3f28aa88cf)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...