Red Hat Security Advisory 2022-6696-01 - Red Hat Advanced Cluster Management for Kubernetes 2.4.6 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Critical. Issues addressed include crlf injection and denial of service vulnerabilities.
93b0f967c0fc17f3ba55a522337de68e746328883ab6a3bcc0a9d9569b072751
Ubuntu Security Notice 5643-1 - It was discovered that GhostScript incorrectly handled certain PDF files. If a user or automated system were tricked into opening a specially crafted PDF file, a remote attacker could use this issue to cause GhostScript to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. It was discovered that GhostScript incorrectly handled certain PDF files. If a user or automated system were tricked into opening a specially crafted PDF file, a remote attacker could use this issue to cause GhostScript to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS.
9ddb6beb5a0c7f182f8769c40dd4c0e7d3469c4fb93b3442d282bbf5574f3e0f
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
d172289358e22d57e85b3f28f4a49f9f7844d99e1b4b4680510fe81fb9b16446
Ubuntu Security Notice 5642-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
a741c88fdbcebba263f141b68dade06af9876160b8164996177be9bce2fc3196
COVESA versions 2.18.8 and below suffer from heap buffer over-read and null pointer dereference vulnerabilities.
548515ca72e9a559204cae299150309e86e1f034ccca3a9cd876a5da99d81eb2
Ubuntu Security Notice 5641-1 - Mikhail Evdokimov discovered that Squid incorrectly handled cache manager ACLs. A remote attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. It was discovered that Squid incorrectly handled SSPI and SMB authentication. A remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or possibly obtain sensitive information.
e3be1c2d3e1c33766fc12005e97a52783721d5bebbcafa1253447b986f555895
Online Birth Certificate Management System version 1.0 suffers from a cross site scripting vulnerability.
943388058f90bc4b22c687ef0d6cbdb5a64f64c8d68d43bb23f0b86408b86d92
Red Hat Security Advisory 2022-6700-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
dafd72b7bf734bd717bfdaaa1708062cbc777b989ed3ead8a2faae336c84214b
Red Hat Security Advisory 2022-6701-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
8a3f8b8dd7b904179e1e01a7b08baf64d701dca8e3ee20438188b8c5c63fc174
Ubuntu Security Notice 5640-1 - It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Duoming Zhou discovered that race conditions existed in the timer handling implementation of the Linux kernel's Rose X.25 protocol layer, resulting in use-after-free vulnerabilities. A local attacker could use this to cause a denial of service.
3625e3b2da9a0410378ac816823ba61932971c1be9dd47ea657d3040d94702f5
Online Birth Certificate Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
7e9852e1ba3b10ed9809857eace8d6e330d1f9d7306d8b2d80c0851d85229f86
Red Hat Security Advisory 2022-6702-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
73a0682f3f98723c147cfcc89e3db902a5b3cf9182352ac9259f96d35799e22b
Red Hat Security Advisory 2022-6703-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
ff4a5e3549c4462110159ecbcce0fd4073eb03774df527b5fe04d7ac754c1608
Red Hat Security Advisory 2022-6707-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
0eb702c98a55fad0b0385f6e44077d9d9e6cf389b638f971717a1c6cda58d996
Red Hat Security Advisory 2022-6708-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a bypass vulnerability.
acd223f8e4f14c62dbd86abb00e51601cfb1aa254b2447d8d648cfd1a0e1bf3a
Online Birth Certificate Management System version 1.0 suffers from an insecure direct object reference vulnerability.
d518fb678e05f322e7641da9649d676bbd4181439b71880505b5b152205524bb
Ubuntu Security Notice 5639-1 - It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Moshe Kol, Amit Klein and Yossi Gilad discovered that the IP implementation in the Linux kernel did not provide sufficient randomization when calculating port offsets. An attacker could possibly use this to expose sensitive information.
096894dc371668fb2eeabb28308ddc62fdaa1c1a1d4f97b060b48eefdd5f6586
Online Birth Certificate Management System version 1.0 suffers from a cross site request forgery vulnerability.
f90076f01c3d533b4fccbc2387bf165114d9246cfe28d87c6be0ae171a022afe
Ubuntu Security Notice 5638-1 - Rhodri James discovered that Expat incorrectly handled memory when processing certain malformed XML files. An attacker could possibly use this issue to cause a crash or execute arbitrary code.
7ab50dcfc9987ec0d5502972e268395e216cb85e8e855376001ca88c567050ce
Red Hat Security Advisory 2022-6710-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a bypass vulnerability.
1c516b8eac2c91e78e6a4b80114ecfd309373c3730392a77f732fb4c9b597597
Red Hat Security Advisory 2022-6711-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a bypass vulnerability.
e44fb9e20b1093c6e6940033d2ccfdb7d433b1ded504ff393ec662153f9a979d
Red Hat Security Advisory 2022-6713-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a bypass vulnerability.
beeaeded544813ae28cb476a73a749e59a6b255e19d5a32dead8bbc9750eba1a
Food Ordering Management System version 1.0 suffers from a remote SQL injection vulnerability.
1be2c696b62c411f0a88c3819a1d4653e0f042e7aa59018ccd5596555ca02a4b
Red Hat Security Advisory 2022-6714-01 - Updated images are now available for Red Hat Advanced Cluster Security for Kubernetes (RHACS). The updated image includes new features and bug fixes.
69050ff141090bf4e5efd74a234911043d10d39b379930b9257258af6d9efab7
Red Hat Security Advisory 2022-6715-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a bypass vulnerability.
bf08c8ee0380be4d600a8ec74e812325bf2094f35c1d48a269c9122a38034215