PT-2025-1708 · WordPress · Geo Content

Name of the Vulnerable Software and Affected Versions: Geo Content plugin for WordPress versions up to and including 6.0 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the geotargetlygeocontent shortcode. This allows...

[SECURITY] Fedora 40 Update: ofono-2.14-1.fc40

oFono.org is a place to bring developers together around designing an infrastructure for building mobile telephony GSM/UMTS applications. oFono includes a high-level D-Bus API for use by telephony applications. oFono also includes a low-level plug-in API for integrating with telephony stacks,...

PT-2025-52660

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Comedi low-level driver "c6xdigio" has a flaw related to parallel port Plug and Play PNP resource management. The driver incorrectly handles PNP driver registration and unregistratio...

PT-2025-34385

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and requiring a reboot to detect new...

PT-2025-25422

Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A flaw was found in GIMP, specifically an integer overflow vulnerability in the "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height,...

DEBIAN-CVE-2024-56608

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21linkencodercreate' An issue was identified in the dcn21linkencodercreate function where an out-of-bounds access could occur when the hpdsource index was used to reference the...

PT-2024-10862 · Huawei · Huawei Products

Name of the Vulnerable Software and Affected Versions: Huawei products affected versions not specified Description: A buffer error vulnerability exists in some Huawei products, allowing an unauthenticated attacker to send a special UPNP message to the affected products. Due to insufficient input...

[SECURITY] Fedora 40 Update: mingw-gstreamer1-plugins-bad-free-1.24.10-1.fc40

GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...

[SECURITY] Fedora 41 Update: mingw-gstreamer1-1.24.10-1.fc41

GStreamer is a streaming-media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plug-in-based architecture means that new data types...

[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-base-1.24.10-1.fc41

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-bad-free-1.24.10-1.fc41

GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...

[SECURITY] Fedora 41 Update: ofono-2.14-1.fc41

oFono.org is a place to bring developers together around designing an infrastructure for building mobile telephony GSM/UMTS applications. oFono includes a high-level D-Bus API for use by telephony applications. oFono also includes a low-level plug-in API for integrating with telephony stacks,...

Veeam Product Upgrade Guides

Upgrade Guides This article provides a list with links to the upgrade guides available within each product's user guide. Veeam Data Platform Veeam Backup & Replication Veeam ONE Veeam Recovery Orchestrator Veeam Plug-ins for Enterprise Applications Veeam Plug-in for SAP HANA Veeam Plug-in for...

CVE-2024-55086

In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery SSRF can be achieved in the plug-in download address in the backend management system...

Granular sudo Permissions for Installing Veeam Plug-ins for Enterprise Applications using Protection Groups

Challenge This article provides an example granular 'sudoer' configuration for the Linux account that will be used by Veeam Backup & Replication when installing Veeam Plug-Ins for Enterprise Applications using a Protection Group, specifically for Veeam Plug-in for Oracle RMAN and Veeam Plug-in fo...

Important: gstreamer1-plugins-good security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-good packages contain a collection of well-supported plug-ins of good quality and under the LGPL license. Security Fixes: gstreamer1-plugins-good: uninitialized stack memory in...

The vulnerability of the pciehp component in Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the pciehp component in Linux operating systems is related to an infinite loop. Exploiting this vulnerability can allow a perpetrator to cause a service failure...

WordPress plugin PayPal Brasil para WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

Unable to Interact with Some Hypervisors and Cloud Platforms

Veeam Backup & Replication 13.0.1 Upgrade Warning During the upgrade to Veeam Backup & Replication 13.0.1 or higher, the following warning may be displayed: Incompatible backup server certificate The certificate does not support child certificates creation and must be replaced for virtualization...

Intel QAT Engine for OpenSSL software Control Flow Management Insufficiency Vulnerability

The Intel QAT Engine for OpenSSL software is an open source software plug-in designed to accelerate OpenSSL cryptographic operations with Intel Quick Assist Technology QAT hardware. A control flow management deficiency vulnerability exists in Intel QAT Engine for OpenSSL software, which can be...