Month: marzo 2022

Linux kernel vulnerability CVE-2021-3656 Security Advisory Security Advisory Description A flaw was found in the KVMs AMD code for supporting SVM nested virtualization. The flaw occurs when ... More info: https://support.f5.com/csp/article/K80212034?utm_source=f5support&utm_medium=RSS

Project: Drupal coreDate: 2022-March-16Security risk: Moderately critical 13∕25 AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:DefaultVulnerability: Third-party librariesCVE IDs: CVE-2022-24728CVE-2022-24729Description: The Drupal project uses the CKEditor library for WYSIWYG editing. CKEditor has released a security update that impacts Drupal.Vulnerabilities are possible if Drupal is configured to allow use of the CKEditor library for WYSIWYG editing. An attacker that can create or More info: https://www.drupal.org/sa-core-2022-005

Multiple Qt vulnerabilities Security Advisory Security Advisory Description CVE-2018-15518 QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted ... More info: https://support.f5.com/csp/article/K42941419?utm_source=f5support&utm_medium=RSS

E2fsprogs vulnerabilities CVE-2019-5094 and CVE-2019-5188 Security Advisory Security Advisory Description CVE-2019-5094 An exploitable code execution vulnerability exists in the quota file ... More info: https://support.f5.com/csp/article/K06014092?utm_source=f5support&utm_medium=RSS

Polkit vulnerabilities CVE-2018-1116 and CVE-2018-19788 Security Advisory Security Advisory Description CVE-2018-1116 A flaw was found in polkit before version 0.116. The implementation of the ... More info: https://support.f5.com/csp/article/K91040959?utm_source=f5support&utm_medium=RSS

E2fsprogs vulnerabilities CVE-2019-5094 CVE-2019-5188 Security Advisory Security Advisory Description CVE-2019-5094 An exploitable code execution vulnerability exists in the quota file ... More info: https://support.f5.com/csp/article/K06014092?utm_source=f5support&utm_medium=RSS

Qt vulnerabilities CVE-2018-15518 CVE-2018-19869 CVE-2018-19870 CVE-2018-1987 CVE-2018-19872 CVE-2018-19873 Security Advisory Security Advisory Description CVE-2018-15518 QXmlStream in Qt 5.x ... More info: https://support.f5.com/csp/article/K42941419?utm_source=f5support&utm_medium=RSS

Net-SNMP vulnerability CVE-2018-18066 Security Advisory Security Advisory Description snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be ... More info: https://support.f5.com/csp/article/K35600134?utm_source=f5support&utm_medium=RSS

Ransomware-as-a-service has become an increasingly more visible threat to organizations, and we continue to see sophisticated ransomware attacks across multi-cloud environments. A new VMware Threat Analysis Unit report exposes just how agile attackers have become by weaponizing ransomware, cryptojacking, and Remote Access Tools (RATs) in Linux-based environments. The report clearly outlines the steps attackers take The post Threat Landscape Report – Malware in Linux-Based Multi-Cloud More info: https://blogs.vmware.com/security/2022/02/2021-threat-landscape-report-malware-in-linux-based-multi-cloud-environments.html?utm_source=rss&utm_medium=rss&utm_campaign=2021-threat-landscape-report-malware-in-linux-based-multi-cloud-environments

Linux kernel vulnerability CVE-2022-0847 Security Advisory Security Advisory Description A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper ... More info: https://support.f5.com/csp/article/K63603485?utm_source=f5support&utm_medium=RSS