SUSE: Security Advisory (SUSE-SU-2024:3295-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15: gstreamer-plugins-bad / gstreamer-plugins-bad-chromaprint / etc (SUSE-SU-2024:3295-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3295-1 advisory. - Dropped support for libmfx to fix the following CVEs: libmfx: improper input validation CVE-2023-48368, bsc1226897 libmfx: improp...

SUSE-SU-2024:3295-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issues: - Dropped support for libmfx to fix the following CVEs: libmfx: improper input validation CVE-2023-48368, bsc1226897 libmfx: improper buffer restrictions CVE-2023-45221, bsc1226898 libmfx: out-of-bounds read CVE-2023-22656,...

Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce"

Overview WordPress plugin "Welcart e-Commerce" provided by Welcart Inc. contains multiple vulnerabilities listed below. SQL injection CWE-89 - CVE-2024-42404 Cross-site scripting CWE-79 - CVE-2024-45366 Shogo Kumamaru of LAC CyberLink Co., Ltd. reported this vulnerability to IPA. JPCERT/CC...

SUSE SLED15: gstreamer-plugins-bad / gstreamer-plugins-bad-chromaprint / etc (SUSE-SU-2024:3289-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3289-1 advisory. - Dropped support for libmfx to fix the following CVEs: libmfx: improper input validation...

openSUSE 15 Security Update : gstreamer-plugins-bad (openSUSE-SU-2024:0305-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0305-1 advisory. Adding references for already fixed vulnerability: - CVE-2023-50186: Fixed heap-based buffer overflow in the AV1 codec parser ZDI-CAN-22300,...

com.charlyghislain.keycloak:keycloak-importexport (=21.0.0), com.github.vzakharchenko:chillispot-radius-plugin (>=1.4.10 <=1.4.11) +79 more potentially affected by CVE-2024-4629 via org.keycloak:keycloak-services (>=1.0-alpha-1 <=22.0.1)

org.keycloak:keycloak-services MAVEN version =1.0-alpha-1, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =0.3.0-20.0.1, =0.4.5-20.0.2, =1.0.1, =1.3.2, =1.3.6 - io.github.jeff-tian:keycloak-phone-provider =2.3.10 and more Source cves: CVE-2024-4629 Source advisor...

SUSE-SU-2024:3289-1 Security update for gstreamer-plugins-bad, libvpl

This update for gstreamer-plugins-bad, libvpl fixes the following issues: - Dropped support for libmfx to fix the following CVEs: libmfx: improper input validation CVE-2023-48368, bsc1226897 libmfx: improper buffer restrictions CVE-2023-45221, bsc1226898 libmfx: out-of-bounds read CVE-2023-22656,...

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

OPENSUSE-SU-2024:0305-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issues: Adding references for already fixed vulnerability: - CVE-2023-50186: Fixed heap-based buffer overflow in the AV1 codec parser ZDI-CAN-22300, bsc1218534, bsc1223263 - CVE-2023-40475: Fixed GStreamer MXF File Parsing Integer Overflow...

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

Security update for gstreamer-plugins-bad (important)

openSUSE Security Update: Security update for gstreamer-plugins-bad Announcement ID: openSUSE-SU-2024:0305-1 Rating: important References: 1215792 1217211 1217213 1218534 1223263 Cross-References: CVE-2023-40475 CVE-2023-44429 CVE-2023-44446 CVE-2023-50186 CVSS scores: CVE-2023-40475 SUSE: 8.8...

RHSA-2024:3089 Red Hat Security Advisory: gstreamer1-plugins-good security update

Bulletin has no description...

RHSA-2024:2303 Red Hat Security Advisory: gstreamer1-plugins-good security update

Bulletin has no description...

RHSA-2024:3088 Red Hat Security Advisory: gstreamer1-plugins-base security update

Bulletin has no description...

RHSA-2024:2302 Red Hat Security Advisory: gstreamer1-plugins-base security update

Bulletin has no description...

RHSA-2024:3060 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHSA-2024:2287 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHSA-2024:0279 Red Hat Security Advisory: gstreamer-plugins-bad-free security update

Bulletin has no description...