Month: octubre 2021

Ask the Howlers is a monthly cybersecurity expert roundtable on LinkedIn Live where James Alliband speaks with security thought leaders about emerging attack trends, the latest threat research, and how to maintain resilience as a security professional. Follow VMware Carbon Black on LinkedIn to be alerted of the next Ask the Howlers roundtable and to watch past episodes. Job title: Senior Security Strategist and Manager of Product Marketing Years The post Ask the Howlers: Meet the Host, James More info: https://blogs.vmware.com/security/2021/09/ask-the-howlers-meet-the-host-james-alliband.html?utm_source=rss&utm_medium=rss&utm_campaign=ask-the-howlers-meet-the-host-james-alliband

OpenSSL vulnerability CVE-2021-3712 Security Advisory Security Advisory Description ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer ... More info: https://support.f5.com/csp/article/K19559038?utm_source=f5support&utm_medium=RSS

Netty vulnerability CVE-2021-21295 Security Advisory Security Advisory Description Netty is an open-source, asynchronous event-driven network application framework for rapid development of ... More info: https://support.f5.com/csp/article/K55834441?utm_source=f5support&utm_medium=RSS

Apache Pulsar vulnerability CVE-2021-22160 Security Advisory Security Advisory Description If Apache Pulsar is configured to authenticate clients using tokens based on JSON Web Tokens (JWT), the ... More info: https://support.f5.com/csp/article/K68146245?utm_source=f5support&utm_medium=RSS

Apache vulnerability CVE-2021-30641 Security Advisory Security Advisory Description Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with MergeSlashes OFF (CVE-2021-30641) More info: https://support.f5.com/csp/article/K13815051?utm_source=f5support&utm_medium=RSS

mod_auth_openidc vulnerability CVE-2021-20718 Security Advisory Security Advisory Description mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service (DoS) condition ... More info: https://support.f5.com/csp/article/K89941125?utm_source=f5support&utm_medium=RSS

runc vulnerability CVE-2021-30465 Security Advisory Security Advisory Description runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the ... More info: https://support.f5.com/csp/article/K33820305?utm_source=f5support&utm_medium=RSS

glibc vulnerability CVE-2020-27618 Security Advisory Security Advisory Description The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte ... More info: https://support.f5.com/csp/article/K08641512?utm_source=f5support&utm_medium=RSS

MariaDB vulnerability CVE-2020-15180 Security Advisory Security Advisory Description A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` ... More info: https://support.f5.com/csp/article/K75885190?utm_source=f5support&utm_medium=RSS

polkit vulnerability CVE-2021-3560 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing ... More info: https://support.f5.com/csp/article/K41410307?utm_source=f5support&utm_medium=RSS