kubernetes security update

kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...

Information disclosure

Trend Micro Security 2021 and 2022 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine. This vulnerability is similar to, but not the sa...

CVE-2022-37348

Trend Micro Security 2021–2022 (Consumer) is affected by an Out-Of-Bounds Read Information Disclosure vulnerability (CVE-2022-37348) that can read sensitive data from memory and may crash the system. Related entries (CVE-2022-37347) describe similar behavior. Affected product/component: Trend Mic...

CVE-2022-37347

Trend Micro Security 2021 and 2022 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine. This vulnerability is similar to, but not the sa...

CVE-2022-35234

Trend Micro Security 2021 and 2022 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine...

CVE-2022-30702

Trend Micro Security 2022 and 2021 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine...

CVE-2022-30703

CVE-2022-30703 affects Trend Micro Security (Consumer) 2021 and 2022. The issue is an exposed dangerous method in the NCIE Scanner/module that can allow a local attacker to disclose sensitive information, including leaked kernel addresses, and could potentially be chained to achieve privilege esc...

CVE-2022-30702

CVE-2022-30702 affects Trend Micro Security (Consumer) 2021/2022. The confirmed issue is an Out-of-Bounds Read Information Disclosure in the NCIE Scanner module, caused by improper validation that can enable a local attacker to disclose sensitive data on an affected machine. Exploitation context ...

Design/Logic Flaw

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-32460

CVE-2021-32460 affects Trend Micro Maximum Security 2021 (v17). The vulnerability is an improper access control flaw in the installer/console that grants local attackers with existing user access the ability to escalate privileges (up to SYSTEM). The issue arises from incorrect permissions on sen...

OESA-2021-1130 uboot-tools security update

This package includes the mkimage program, which allows generation of U-Boot images in various formats, and the fwprintenv and fwsetenv programs to read and modify U-Boot's environment. Security Fixes: The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.CVE-2021-27097 The...

Newest Intel Side-Channel Attack Sniffs Out Sensitive Data

Intel processors are vulnerable to a new side-channel attack, which researchers said can allow attackers to steal sensitive information such as encryption keys or passwords. Unlike previous side-channel attacks, this attack does not rely on sharing memory, cache sets and other former tactics...

CVE-2021-23089

...