Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily ...
More info:
https://my.f5.com/manage/s/article/K000134724?utm_source=f5support&utm_medium=RSS
Security Advisory Description CVE-2022-21517 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Easily ...
More info:
https://my.f5.com/manage/s/article/K64348180?utm_source=f5support&utm_medium=RSS
Security Advisory Description vm2 is a sandbox that can run untrusted code with whitelisted Nodes built-in modules. Prior to version 3.9.15, vm2 was not properly handling host objects passed to ` ...
More info:
https://my.f5.com/manage/s/article/K000134725?utm_source=f5support&utm_medium=RSS
Security Advisory Description An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, ...
More info:
https://my.f5.com/manage/s/article/K000134706?utm_source=f5support&utm_medium=RSS
Security Advisory Description In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELEASE - 5.2.22.RELEASE, and older unsupported versions, it is possible for a user to provide a ...
More info:
https://my.f5.com/manage/s/article/K000134681?utm_source=f5support&utm_medium=RSS
Security Advisory Description A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service (DOS) via a crafted ...
More info:
https://my.f5.com/manage/s/article/K000134680?utm_source=f5support&utm_medium=RSS
Security Advisory Description A flaw was found in the Linux kernels driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds ...
More info:
https://my.f5.com/manage/s/article/K000134670?utm_source=f5support&utm_medium=RSS
Security Advisory Description Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack ...
More info:
https://my.f5.com/manage/s/article/K000134671?utm_source=f5support&utm_medium=RSS
Security Advisory Description In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the ...
More info:
https://my.f5.com/manage/s/article/K000134672?utm_source=f5support&utm_medium=RSS
Initial Publication Date: 05/18/2023 10:00AM EST A security researcher recently reported an issue in Amazon GuardDuty in which a change to the policy of an S3 bucket not protected by Block Public Access (BPA) could be carried out to grant public access to the bucket without triggering a GuardDuty alert. This specific issue would occur if the S3 bucket policy was updated within a single new policy that included both an "Allow" for "Principal::"*" or
More info:
https://aws.amazon.com/security/security-bulletins/AWS-2023-002/
