Month: octubre 2022

OpenJDK vulnerability CVE-2019-18197 Security Advisory Security Advisory Description In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isnt reset under certain circumstances. More info: https://support.f5.com/csp/article/K10812540?utm_source=f5support&utm_medium=RSS

Multiple Java vulnerabilities Security Advisory Security Advisory Description CVE-2020-2754 Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). More info: https://support.f5.com/csp/article/K16496491?utm_source=f5support&utm_medium=RSS

Vim/Neovim vulnerability CVE-2019-12735 Security Advisory Security Advisory Description getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS ... More info: https://support.f5.com/csp/article/K93144355?utm_source=f5support&utm_medium=RSS

In celebration of this year’s Cybersecurity Awareness Month theme – See Yourself in Cyber – we are spotlighting five VMware security pros to ask them five questions about their career path. Alex Tosheff is VMware’s Chief Security Officer, Senior Vice President and Global Crisis Management Chair. Based in Palo Alto, California, he leads all aspects … ContinuedThe post See Yourself in Cyber: 5 Questions with Alex Tosheff appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/see-yourself-in-cyber-5-questions-with-alex-tosheff.html?utm_source=rss&utm_medium=rss&utm_campaign=see-yourself-in-cyber-5-questions-with-alex-tosheff

BIND vulnerability CVE-2022-2881 Security Advisory Security Advisory Description The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the ... More info: https://support.f5.com/csp/article/K40427215?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2022-2906 Security Advisory Security Advisory Description An attacker can leverage this flaw to gradually erode available memory to the point where named crashes for lack of ... More info: https://support.f5.com/csp/article/K44501040?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2022-3080 Security Advisory Security Advisory Description By sending specific queries to the resolver, an attacker can cause named to crash. (CVE-2022-3080) Impact There is ... More info: https://support.f5.com/csp/article/K07010600?utm_source=f5support&utm_medium=RSS

Ruby-MySQL vulnerability CVE-2021-3779 Security Advisory Security Advisory Description A malicious MySQL server can request local file content from a client using ruby-mysql prior to version 2.10. ... More info: https://support.f5.com/csp/article/K01934914?utm_source=f5support&utm_medium=RSS

Over the past few years, threat actors have adapted their tactics to focus more on specific operating systems and operating environments that carry the most sensitive data, or where an attack can have the greatest effect. By increasing the development and use of specialized techniques, cyber criminals increase their opportunities to steal intellectual property, ransom … ContinuedThe post Protecting vSphere From Specialized Malware appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/09/protecting-vsphere-from-specialized-malware.html?utm_source=rss&utm_medium=rss&utm_campaign=protecting-vsphere-from-specialized-malware

Cluttered is a state no one wants to be in, from your home to your cloud environments. Many applications do not use native Kubernetes workloads, and instead deploy individual pods. Each line for each pod can add up, leading DevSecOps teams to see replicas of the same instances the way that it shows up in Kubernetes – … ContinuedThe post Reduce Noise Within Your Containerized Workloads appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/09/reduce-noise-within-your-containerized-workloads.html?utm_source=rss&utm_medium=rss&utm_campaign=reduce-noise-within-your-containerized-workloads