Firefox could be made to crash or run programs as your login if it opened a malicious website.
Comment
Archive for May, 2022
221 results.
Several security issues were fixed in curl.
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
USN-5259-1 and USN-5259-2 introduced a regression in Cron.
RedHat: RHSA-2022-2143:01 Important: container-tools:3.0 security update
May10
on May 10, 2022
at 6:17 pm
Posted In: Uncategorized
An update for the container-tools:3.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
WordPress 6.0 Release Candidate 2 (RC2) Now Available for Testing
May10
on May 10, 2022
at 6:06 pm
Posted In: Uncategorized
WordPress 6.0 Release Candidate 2 is now available for testing! You can download and help test RC2 in three ways. You can also help translate WordPress to 100+ languages.
libsndfile could be made to crash or expose sensitive information if it received specially crafted input.
Podcast | The Importance of Site and Server Monitoring with Vincent Van Megen
May10
on May 10, 2022
at 12:55 pm
Posted In: Uncategorized
Imagine the following situation: As a website owner you receive a message from a visitor that your website is down. It gives a bad impression and costs you sales in the short term, and can diminish trust with consumers. In other words, when your site is unavailable or underperforming, you want to be the first one to know – you don’t want to hear it from a potential customer. In order for that to happen, you need monitoring tools. Luckily, Vincent Van Megen is here to tell us the most important facts about monitoring – what it is and how…
The post Podcast | The Importance of Site and Server Monitoring with Vincent Van Megen appeared first on Plesk.
RedHat: RHSA-2022-1891:01 Low: libpq security update
May10
on May 10, 2022
at 12:26 pm
Posted In: Uncategorized
An update for libpq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
RedHat: RHSA-2022-1747:01 Low: Release of OpenShift Serverless Version
May10
on May 10, 2022
at 12:17 am
Posted In: Uncategorized
OpenShift Serverless version 1.22.0 contains a moderate security impact. The References section contains CVE links providing detailed severity ratings for each vulnerability. Ratings are based on a Common Vulnerability Scoring System (CVSS) base score.
Multiple security issues were discovered in QEMU, a fast processor emulator, which could result in denial of service or the execution of arbitrary code.
Update to 91.9.0
What is Full Site Check and How Can I Use It?
May09
on May 9, 2022
at 9:44 am
Posted In: Uncategorized
As any site owner will know, keeping track of the functionality and performance of your site is paramount to success. With complex processes being carried out regularly, it’s not possible to personally oversee everything. This is why sysadmins and developers use monitoring tools. At Plesk, we offer and highly recommend the 360 Monitoring tool and dedicated platform, taking care of both site and server monitoring comprehensively. Existing users will know that monitoring data is available across several configurable, easy-access dashboards. And now, a brand new feature, Full Site Check, offers another panel that crawls sites for errors and bugs. What…
The post What is Full Site Check and How Can I Use It? appeared first on Plesk.
RedHat: RHSA-2022-1745:01 Low: Release of OpenShift Serverless Client kn
May09
on May 9, 2022
at 6:17 am
Posted In: Uncategorized
Release of OpenShift Serverless Client kn 1.22.0 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
DBus could be made to crash if it received specially crafted input.
Update to 2.53.12 For compatibility with modern sites the default version of Firefox for the User-Agent string has now been set to 78.0 . The value can be changed in Preferences–>Advanced–>HTTP Networking . Note that besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro-independed build available at https://buc.fedorapeople.org/seamonkey . So
This is a security release to address the following bugs: – CVE-2022-27239: mount.cifs: fix length check for ip option parsing – CVE-2022-29869: mount.cifs: fix verbose messages on option parsing Description CVE-2022-27239: In cifs- utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
This is a security release to address the following bugs: – CVE-2022-27239: mount.cifs: fix length check for ip option parsing – CVE-2022-29869: mount.cifs: fix verbose messages on option parsing Description CVE-2022-27239: In cifs- utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
Debian: DSA-5132-1: ecdsautils security update
May08
on May 8, 2022
at 3:14 pm
Posted In: Uncategorized
It was discovered that ecdsautils, a collection of ECDSA elliptic curve cryptography CLI tools verified some cryptographic signatures incorrectly: A signature consisting only of zeroes was always considered valid, making it trivial to forge signatures.
– Fixed h.264 video playback over va-api (https://bugzilla.mozilla.org/show_bug.cgi?id=1762725) —- – New upstream version (100.0)
Fedora 34: java-latest-openjdk 2022-9cc421562b
May07
on May 7, 2022
at 10:41 pm
Posted In: Uncategorized
Oracle 04/2022 critical path update * https://www.oracle.com/security- alerts/cpuapr2022.html#AppendixJAVA * Cross fingers I had not messed up system JDK. * java-maint tests passed * **Still karma is highly appreciated**
Rebuild for CVE-2022-27191 —- Fix FTBFS Close: rhbz#2045471
Rebuild for CVE-2022-27191 —- Fix FTBFS Close: rhbz#2045471
Rsyslog could be made to crash if it received a specially crafted request.
Several security issues were fixed in Cron.
Several security issues were fixed in jbig2dec.
RedHat: RHSA-2022-1739:01 Moderate: Red Hat OpenShift Service Mesh 2.1.2.1
May05
on May 5, 2022
at 6:17 pm
Posted In: Uncategorized
An update for is now available for OpenShift Service Mesh 2.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
Twisted could be made to crash if it received specially crafted network traffic.
This past month saw a lot of preparation work for WordPress 6.0, due to release on 24 May 2022. This major release brings exciting improvements – read on to find out more about the latest happenings in the WordPress project. WordPress 6.0 Release Candidate 1 The first release candidate (RC1) for WordPress 6.0 is now […]