xorg-x11-server-Xwayland security, bug fix, and enhancement update

22.1.9-2 - Rebuild 2158761 22.1.9-1 - xwayland 22.1.9 2158761 21.1.3-8 - Fix CVE-2023-1393 2180299...

OSV-2023-1129 UNKNOWN READ in HeifPixelImage::overlay

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63990 Crash type: UNKNOWN READ Crash state: HeifPixelImage::overlay HeifContext::decodeoverlayimage HeifContext::decodeimageplanar...

Moderate: containernetworking-plugins security and bug fix update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

CVE-2023-44398

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds write was found in Exiv2 version v0.28.0. The vulnerable function, BmffImage::brotliUncompress, is new in v0.28.0, so earlier versions of Exiv2 are not...

SUSE-SU-2023:4343-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-31085: Fixed a divide-by-zero error in dodivsz,mtd-erasesize that could cause a local DoS. bsc1210778 - CVE-2023-45862: Fixed an issue in the ENE...

CVE-2023-46724

Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using --with-openssl are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to...

Information disclosure

Rejected reason: The SRCU code was added in upstream kernel v6.4-rc1 and removed before v6.4. This bug only existed in development kernels. Please see https://lore.kernel.org/all/email protected and https://bugzilla.suse.com/showbug.cgi?id=1215932 for more information...

Xorg-x11-server: use-after-free bug in destroywindow

...

CVE-2023-46287

CVE-2023-46287 describes a Cross-Site Scripting (XSS) vulnerability in NagVis, occurring in versions before 1.9.38 due to the select function in share/server/core/functions/html.php. The issue affects NagVis installations where user-supplied input reaches that function, enabling XSS. Documented i...

CVE-2023-45821 Incorrect Docker Hub registry check in Artifact Hub

Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. During a security audit of Artifact Hub's code base a security researcher identified a bug in which the registryIsDockerHub function was only checking that the...

CVE-2023-5586 NULL Pointer Dereference in gpac/gpac

NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3.0-DEV...

privilege escalation bug to edit survey

BUG ======== normal user can edit any survey AFFTED VERSION ============ 6.2.10 SUMMRUY ========== normal user has view permiision in survey . But still that user can edit the survey by adding that survey to his own group . STEP TO REPRODUCE ================= 1. There is already a superadminuser-...

CVE-2023-43615

Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow...

Low: containerd

Issue Overview: No CVE associated with this advisory Affected Packages: containerd Issue Correction: Run dnf update containerd --releasever 2023.2.20231002 or dnf update --advisory ALAS2023-2023-374 --releasever 2023.2.20231002 to update your system. More information on how to update your system...

Withdrawal requests do not check if the amount of unlockable CVX is sufficient for withdrawals

Lines of code Vulnerability details Bug Description In AfEth.sol, whenever a user calls requestWithdraw to queue a withdrawal, the time that they can withdraw is determined by withdrawTime: AfEth.solL175-L176 function requestWithdrawuint256 amount external virtual uint256 withdrawTimeBefore =...

CVE-2023-43216

SeaCMS v12.9 contains an arbitrary file write vulnerability in the admin_ip.php component. Affected: SeaCMS 12.9; vulnerability type: arbitrary file write (root cause not further clarified in the provided documents). Impact indicators from CVSS 3.1: Critical (9.8), Network attack vector, no privi...

SUSE-SU-2023:3700-1 Security update for go1.20

This update for go1.20 fixes the following issues: Update to go1.20.8 bsc1206346. - CVE-2023-39318: Fixed improper handling of HTML-like comments within script contexts in html/template bsc1215084. - CVE-2023-39319: Fixed improper handling of special tags within script contexts in html/template...

SUSE: Security Advisory (SUSE-SU-2023:3609-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla: Security bug https://bugzilla.mozilla.org/oauth/authorize - CRLF Header injection via "redirect_uri" parameter

A cross-site scripting vulnerability was found in the "redirecturi" parameter of the OAuth authorization endpoint at https://bugzilla.mozilla.org/oauth/authorize that allowed arbitrary HTTP response headers to be injected through carriage return and line feed encoding in the parameter value,...

Node.js: fs.lstat bypasses permission model

A vulnerability has been identified in Node.js affecting users of the experimental permission model. The flaw arises from an inadequate permission model that fails to restrict file stats through the fs.lstat API. As a result, malicious actors could retrieve stats from files they do not have...