Blog

Multiple Java vulnerabilities CVE-2020-14562, CVE-2020-14573, CVE-2020-14577, CVE-2020-14578, CVE-2020-14579, CVE-2020-14581, CVE-2020-14593 Security Advisory Security Advisory Description CVE- ... More info: https://support.f5.com/csp/article/K51591999?utm_source=f5support&utm_medium=RSS

IP forwarding vulnerability CVE-1999-0511 Security Advisory Security Advisory Description IP forwarding is enabled on a machine which is not a router or firewall. (CVE-1999-0511) Impact F5 ... More info: https://support.f5.com/csp/article/K16430721?utm_source=f5support&utm_medium=RSS

Multiple Samba vulnerabilities Security Advisory Security Advisory Description CVE-2022-2031 A flaw was found in Samba. The security vulnerability occurs when KDC and the kpasswd service share a ... More info: https://support.f5.com/csp/article/K21571420?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2022-0812 Security Advisory Security Advisory Description An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. More info: https://support.f5.com/csp/article/K12132951?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-4155 Security Advisory Security Advisory Description A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase ... More info: https://support.f5.com/csp/article/K71080411?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-4028 Security Advisory Security Advisory Description A flaw in the Linux kernels implementation of RDMA communications manager listener code allowed an ... More info: https://support.f5.com/csp/article/K37256400?utm_source=f5support&utm_medium=RSS

GNU C Library (glibc) vulnerability CVE-2021-3999 Security Advisory Security Advisory Description A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to ... More info: https://support.f5.com/csp/article/K24207649?utm_source=f5support&utm_medium=RSS

NGINX ModSecurity WAF vulnerability CVE-2021-42717 Security Advisory Security Advisory Description ModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. Crafted JSON objects ... More info: https://support.f5.com/csp/article/K50839343?utm_source=f5support&utm_medium=RSS

GSON vulnerability CVE-2022-25647 Security Advisory Security Advisory Description The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the ... More info: https://support.f5.com/csp/article/K00994461?utm_source=f5support&utm_medium=RSS

by Michael Hawkins. The Mustache template library included with Moodle has been upgraded to the latest version, which includes a fix for a serious security issue.Severity/Risk:SeriousVersions affected:4.0 to 4.0.2, 3.11 to 3.11.8, 3.9 to 3.9.15 and earlier unsupported versionsVersions fixed:4.0.3, 3.11.9 and 3.9.16Reported by:Lars BonczekCVE identifier:CVE-2022-0323Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-75388Tracker issue:MDL-75388 More info: https://moodle.org/mod/forum/discuss.php?d=437684&parent=1761481