Red Hat Security Advisory 2021-1031-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.
dab7e6c11b7dd7a505d13e73518f4db6d05575174b70d8c4afff935f08732d27
Red Hat Security Advisory 2021-1027-01 - The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Issues addressed include a buffer overflow vulnerability.
98af25d58acaf2600e6fb54eaad7ce34b80b43de27550296a006b1505c477d51
Red Hat Security Advisory 2021-1026-01 - The nss-softokn package provides the Network Security Services Softoken Cryptographic Module. Issues addressed include out of bounds read and use-after-free vulnerabilities.
26f63d2cdbc84bb2bfe397e8ffa86a3e4300fe8fc748347e54fb023646b44451
Red Hat Security Advisory 2021-1030-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. Issues addressed include a HTTP request smuggling vulnerability.
3935e58afd07295cc71f6782e4167ea723d16977fcfd5afa0c078dd6a4e02853
Ubuntu Security Notice 4895-1 - Alex Rousskov and Amit Klein discovered that Squid incorrectly handled certain Content-Length headers. A remote attacker could possibly use this issue to perform an HTTP request smuggling attack, resulting in cache poisoning. This issue only affected Ubuntu 20.04 LTS. Jianjun Chen discovered that Squid incorrectly validated certain input. A remote attacker could use this issue to perform HTTP Request Smuggling and possibly access services forbidden by the security controls. Various other issues were also addressed.
44db1a9ed9280b583d1163a180317b1797d2efdfdfd15af23ab456423194a4c9
Ubuntu Security Notice 4894-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
aff2ff5ab5451fe055fe920a4bd0c78240db0ed7227cd51f0f6158d8dea134de
Red Hat Security Advisory 2021-1032-01 - Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Issues addressed include buffer overflow, denial of service, and integer overflow vulnerabilities.
16b5c6df043eca22d0b125ac172a593a4f39356ff95205b02307b6e336359f69
Red Hat Security Advisory 2021-1028-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.
383ae58f9c981bbab2e88b60b1e82c17339625833137f8b6f7aeda3b33dab637
This is a whitepaper that discusses attacking GraphQL.
aa2a135e3c79bce67c8da5438837eb4be4d82d6384d4352b498bfce711c37beb
Openlitespeed version 1.7.9 suffers from a persistent cross site scripting vulnerability.
3133e3365c00ccc6612cb63e305f868ea946b516bf1f313e30609f885d05906a
IRC-Worm.Win32.Jane.a malware suffers from bypass and man-in-the-middle vulnerabilities.
191ac29081f2ca8619931764c586208a2350de206e6cdbfdd1ced905a42dd25c
Red Hat Security Advisory 2021-0957-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.7.4.
b61c3df6b3778cb54a2a88c44b50c442274e80f3ed5220e7742d1d6fe42b2da2
GetSimple CMS version 3.3.16 cross site scripting to remote shell upload exploit.
ff447b6110d359109791159d602b028e64b080305d8c9119c22a55bb1534f865
Red Hat Security Advisory 2021-0958-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.7.4.
36702967ad1b36218c1d99ad891d93c23a264f8de09b4087bfa2db47eb939436
IRC-Worm.Win32.Jane.a malware suffers from bypass and code execution vulnerabilities.
84bdcfead9c0f21862044afa650faa1aa76ad0e117acd2120ea049e9f5326271
Red Hat Security Advisory 2021-1024-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Issues addressed include bypass and null pointer vulnerabilities.
11eaa72dbe14fca762a9e8fcf912cb6c453f84d6e535792afb711bcb61362647