Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 58 articles for you...
198

Fedora: 203105-8 moderate: ruby-on-rails sql injection vulnerability

The package python-django before version 5.1.11-1 is vulnerable to content spoofing. . Arch Linux Security Advisory ASA-202506-6 ========================================= Severity: Low Date : 2025-06-12 CVE-ID : CVE-2025-48432 Package : python-django Type : content spoofing Remote : Yes Link : https://security.archlinux.org/AVG-2894 Summary ======= The package python-django before version 5.1.11-1 is vulnerable to content spoofing. Resolution ========== Upgrade to 5.1.11-1. # pacman -Syu "python-django> =5.1.11-1" The problem has been fixed upstream in version 5.1.11. Workaround ========== None. Description =========== Internal HTTP response logging used request.path directly, allowing control characters (e.g. newlines or ANSI escape sequences) to be written unescaped into logs. This could enable log injection or forgery, letting attackers manipulate log appearance or structure, especially in logs processed by external systems or viewed in terminals. Impact ====== A remote attacker can manipulate log entries by sending crafted HTTP requests with control characters in the path, potentially spoofing or injecting content into server logs. References ========== https://www.djangoproject.com/weblog/2025/jun/04/security-releases/ https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases/ https://docs.djangoproject.com/en/dev/releases/5.1.10/#cve-2025-48432-potential-log-injection-via-unescaped-request-path https://docs.djangoproject.com/en/dev/releases/5.1.11/ https://security.archlinux.org/CVE-2025-48432 . Ubuntu Security Notice for python-flask flaw: minor impact linked to data manipulation. Prompt update recommended.. content manipulation, python-django security, archlinux advisory. . Severity: Low. LinuxSecurity.com Team

Calendar%202 Jun 13, 2025 Low ArchLinux
198

Arch Linux: 202505-13 critical: varnish content spoofing threat

The package varnish before version 7.7.1-1 is vulnerable to content spoofing. . Arch Linux Security Advisory ASA-202505-13 ========================================== Severity: High Date : 2025-05-20 CVE-ID : CVE-2025-47905 Package : varnish Type : content spoofing Remote : Yes Link : https://security.archlinux.org/AVG-2879 Summary ======= The package varnish before version 7.7.1-1 is vulnerable to content spoofing. Resolution ========== Upgrade to 7.7.1-1. # pacman -Syu "varnish> =7.7.1-1" The problem has been fixed upstream in version 7.7.1. Workaround ========== None. Description =========== A client-side desync vulnerability can be triggered in Varnish Cache. This vulnerability can be triggered under specific circumstances involving malformed HTTP/1 chunked requests. An attacker can abuse a flaw in Varnish’s handling of chunked transfer encoding which allows certain malformed HTTP/1 requests to exploit improper framing of the message body to smuggle additional requests. Specifically, Varnish incorrectly permits CRLF to be skipped to delimit chunk boundaries. Impact ====== A remote attacker able to send specially crafted HTTP/1 chunked requests can exploit Varnish to smuggle additional requests, potentially leading to information disclosure and allowing incorrect or malicious content to be cached and served to other users. References ========== https://vinyl-cache.org/releases/rel7.7.1.html https://vinyl-cache.org/security/VSV00016.html https://vinyl-cache.org/lists/pipermail/varnish-announce/2025-May/000767.html https://security.archlinux.org/CVE-2025-47905 . Critical alert for Arch Linux users concerning varnish vulnerabilities linked to content manipulation. Immediate upgrade is advised.. Arch Linux, content spoofing, varnish security, software update, security advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 May 27, 2025 Critical ArchLinux
198

Arch Linux Advisory ASA-202204-5 High: Bind Multiple Issues for DoS

The package bind before version 9.18.1-1 is vulnerable to multiple issues including denial of service and content spoofing. . Arch Linux Security Advisory ASA-202204-5 ======================================== Severity: High Date : 2022-04-04 CVE-ID : CVE-2021-25220 CVE-2022-0396 CVE-2022-0635 CVE-2022-0667 Package : bind Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2661 Summary ====== The package bind before version 9.18.1-1 is vulnerable to multiple issues including denial of service and content spoofing. Resolution ========= Upgrade to 9.18.1-1. # pacman -Syu "bind> =9.18.1-1" The problems have been fixed upstream in version 9.18.1. Workaround ========= - CVE-2021-25220 If applicable, modify your configuration to either remove all forwarding or all possibility of recursion. Depending on your use-case, it may be possible to use other zone types to replace forward zones. - CVE-2022-0396 use the default setting of keep-response-order { none; }. - CVE-2022-0635 The failure can be avoided by adding this option to named.conf: synth-from-dnssec no; However we do not recommend disabling this feature other than as a temporary workaround because it provides protection from pseudo-random-subdomain attacks against DNSSEC-signed zones. Description ========== - CVE-2021-25220 (content spoofing) When using forwarders in BIND, bogus NS records supplied by, or via, those forwarders may be cached and used by named if it needs to recurse for any reason, causing it to obtain and pass on potentially incorrect answers. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients. Authoritative-only BIND 9 servers are not vulnerable to this flaw. - CVE-2022-0396 (denial of service) ISC recently discovered an issue in BIND that allows TCP connection slots to be consumed for an indefinite timeframe via a specifically crafted TCP stream sent from a client. This issue is present in BIND 9.16.11 to 9.16.26 (including S editions), and 9.18.0. This issue can only be triggered on BIND servers which have keep-response-order enabled, which is not the default configuration. The keep-response-order option is an ACL block; any hosts which are specified within it will be able to trigger this issue on affected versions. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection. - CVE-2022-0635 (denial of service) BIND 9.18.0 stable release refactored the RFC 8198 Aggressive Use of DNSSEC-Validated Cache feature (synth-from-dnssec) and changed the default so that is now automatically enabled for dnssec-validating resolvers. Subsequently it was found that repeated patterns of specific queries to servers with this feature enabled could cause an INSIST failure in query.c:query_dname which causes named to terminate unexpectedly. The vulnerability affects BIND resolvers running 9.18.0 that have both dnssec-validation and synth-from-dnssec enabled. (Note that dnssec-validation auto; is the default setting unless configured otherwise in named.conf and that enabling dnssec-validation automatically enables synth-from-dnssec unless explicitly disabled) When a vulnerable version of named receives a series of specific queries, the named process will eventually terminate due to a failed assertion check. - CVE-2022-0667 (denial of service) In BIND 9.18.0 the recursive client code was refactored that introduced a "backstop lifetime timer". While BIND is processing a request for a DS record that needs to be forwarded, it waits until this processing is complete or until the backstop lifetime timer has timed out. When the resume_dslookup() function is called as a result of such a timeout, the function does not test whether the fetch has previously been shut down. Thisintroduces the possibility of triggering an assertion failure, which could cause the BIND process to terminate. Impact ===== A remote attacker is able to crash the application or force TCP connections to BIND to remain in CLOSE_WAIT status leading to denial of service on the affected host. Furthermore the cache could become poisoned leading to queries being made to the wrong servers, which might also result in false information being returned to clients. References ========= https://kb.isc.org/docs/cve-2021-25220 https://kb.isc.org/docs/cve-2022-0396 https://kb.isc.org/docs/cve-2022-0635 https://kb.isc.org/docs/cve-2022-0667 https://security.archlinux.org/CVE-2021-25220 https://security.archlinux.org/CVE-2022-0396 https://security.archlinux.org/CVE-2022-0635 https://security.archlinux.org/CVE-2022-0667 . Important security patch released for Arch Linux bind package resolving high-severity vulnerabilities linked to denial of service attacks and potential spoofing threats.. Bind Security Advisory, Arch Linux Security, Denial of Service, Content Spoofing. . LinuxSecurity.com Team

Calendar%202 Apr 06, 2022 ArchLinux
198

Arch Linux: 2021-12-11 High: Thunderbird Multiple Issues

The package thunderbird before version 91.4.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, information disclosure, incorrect calculation, sandbox escape and denial of service. . Arch Linux Security Advisory ASA-202112-9 ======================================== Severity: High Date : 2021-12-11 CVE-ID : CVE-2021-43528 CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 Package : thunderbird Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2608 Summary ====== The package thunderbird before version 91.4.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, information disclosure, incorrect calculation, sandbox escape and denial of service. Resolution ========= Upgrade to 91.4.0-1. # pacman -Syu "thunderbird> =91.4.0-1" The problems have been fixed upstream in version 91.4.0. Workaround ========= None. Description ========== - CVE-2021-43528 (arbitrary code execution) Thunderbird before version 91.4.0 unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities. - CVE-2021-43536 (information disclosure) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. - CVE-2021-43537 (arbitrary code execution) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. - CVE-2021-43538 (content spoofing) A security issue has been found in Firefox before version 95and Thunderbird before version 91.4.0. By misusing a race in the notification code, an attacker could have forcefully hidden the notification for pages that had received full screen and pointer lock access, which could have been used for spoofing attacks. - CVE-2021-43539 (arbitrary code execution) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Failure to correctly record the location of live pointers across wasm instance calls resulted in a garbage collection occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitable crash. - CVE-2021-43541 (incorrect calculation) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. - CVE-2021-43542 (information disclosure) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. - CVE-2021-43543 (sandbox escape) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. - CVE-2021-43545 (denial of service) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Using the Location API in a loop could have caused severe application hangs and crashes. - CVE-2021-43546 (content spoofing) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. It was possible to recreate previous cursor spoofing attacks against users with a zoomed native cursor. Impact ===== A remote attacker could execute arbitrary code, disclose sensitive information, spoofcontent or crash the application through crafted web content. In general, these flaws cannot be exploited through email because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. References ========= https://www.mozilla.org/en-US/security/advisories/mfsa2021-54/ https://bugzilla.mozilla.org/show_bug.cgi?id=1742579 https://www.mozilla.org/en-US/security/advisories/mfsa2021-52/ https://bugzilla.mozilla.org/show_bug.cgi?id=1730120 https://bugzilla.mozilla.org/show_bug.cgi?id=1738237 https://bugzilla.mozilla.org/show_bug.cgi?id=1739091 https://bugzilla.mozilla.org/show_bug.cgi?id=1739683 https://bugzilla.mozilla.org/show_bug.cgi?id=1696685 https://bugzilla.mozilla.org/show_bug.cgi?id=1723281 https://bugzilla.mozilla.org/show_bug.cgi?id=1738418 https://bugzilla.mozilla.org/show_bug.cgi?id=1720926 https://bugzilla.mozilla.org/show_bug.cgi?id=1737751 https://security.archlinux.org/CVE-2021-43528 https://security.archlinux.org/CVE-2021-43536 https://security.archlinux.org/CVE-2021-43537 https://security.archlinux.org/CVE-2021-43538 https://security.archlinux.org/CVE-2021-43539 https://security.archlinux.org/CVE-2021-43541 https://security.archlinux.org/CVE-2021-43542 https://security.archlinux.org/CVE-2021-43543 https://security.archlinux.org/CVE-2021-43545 https://security.archlinux.org/CVE-2021-43546 . The Thunderbird email client on Arch Linux is experiencing critical security vulnerabilities that need urgent updates to address risks of remote code execution and data leaks. Arch Linux, Thunderbird, Remote Code Execution, Security Advisory, Information Disclosure. . LinuxSecurity.com Team

Calendar%202 Dec 12, 2021 ArchLinux
198

Arch Linux: ASA-202112-8 High: Firefox Multiple Issues Impacting Security

The package firefox before version 95.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, information disclosure, access restriction bypass, incorrect calculation, sandbox escape and denial of service. . Arch Linux Security Advisory ASA-202112-8 ======================================== Severity: High Date : 2021-12-11 CVE-ID : CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43540 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 Package : firefox Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2606 Summary ====== The package firefox before version 95.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, information disclosure, access restriction bypass, incorrect calculation, sandbox escape and denial of service. Resolution ========= Upgrade to 95.0-1. # pacman -Syu "firefox> =95.0-1" The problems have been fixed upstream in version 95.0. Workaround ========= None. Description ========== - CVE-2021-43536 (information disclosure) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. - CVE-2021-43537 (arbitrary code execution) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. - CVE-2021-43538 (content spoofing) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. By misusing a race in the notification code, an attacker could have forcefully hidden the notification for pages that had received full screen and pointer lock access, which could have been used for spoofing attacks. - CVE-2021-43539 (arbitrary codeexecution) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Failure to correctly record the location of live pointers across wasm instance calls resulted in a garbage collection occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitable crash. - CVE-2021-43540 (access restriction bypass) A security issue has been found in Firefox before version 95. WebExtensions with the correct permissions were able to create and install ServiceWorkers for third-party websites that would not have been uninstalled with the extension. - CVE-2021-43541 (incorrect calculation) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. - CVE-2021-43542 (information disclosure) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. - CVE-2021-43543 (sandbox escape) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. - CVE-2021-43545 (denial of service) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. Using the Location API in a loop could have caused severe application hangs and crashes. - CVE-2021-43546 (content spoofing) A security issue has been found in Firefox before version 95 and Thunderbird before version 91.4.0. It was possible to recreate previous cursor spoofing attacks against users with a zoomed native cursor. Impact ===== A remote attacker could execute arbitrary code, disclose sensitive information, spoof contentor crash the application through crafted web content. References ========= https://www.mozilla.org/en-US/security/advisories/mfsa2021-52/ https://www.mozilla.org/en-US/security/advisories/mfsa2021-54/ https://bugzilla.mozilla.org/show_bug.cgi?id=1730120 https://bugzilla.mozilla.org/show_bug.cgi?id=1738237 https://bugzilla.mozilla.org/show_bug.cgi?id=1739091 https://bugzilla.mozilla.org/show_bug.cgi?id=1739683 https://bugzilla.mozilla.org/show_bug.cgi?id=1636629 https://bugzilla.mozilla.org/show_bug.cgi?id=1696685 https://bugzilla.mozilla.org/show_bug.cgi?id=1723281 https://bugzilla.mozilla.org/show_bug.cgi?id=1738418 https://bugzilla.mozilla.org/show_bug.cgi?id=1720926 https://bugzilla.mozilla.org/show_bug.cgi?id=1737751 https://security.archlinux.org/CVE-2021-43536 https://security.archlinux.org/CVE-2021-43537 https://security.archlinux.org/CVE-2021-43538 https://security.archlinux.org/CVE-2021-43539 https://security.archlinux.org/CVE-2021-43540 https://security.archlinux.org/CVE-2021-43541 https://security.archlinux.org/CVE-2021-43542 https://security.archlinux.org/CVE-2021-43543 https://security.archlinux.org/CVE-2021-43545 https://security.archlinux.org/CVE-2021-43546 . Severe security flaws impact Firefox prior to version 95.0-1 on Arch Linux, posing risks of unauthorized code execution and potential data leakage.. Firefox Security Issues, Arch Linux Advisory, High Severity Threats. . LinuxSecurity.com Team

Calendar%202 Dec 12, 2021 ArchLinux
198

Arch Linux: 202112-7 High Severity Advisory for Vivaldi Security Risks

The package vivaldi before version 5.0.2497.28-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing and insufficient validation. . Arch Linux Security Advisory ASA-202112-7 ======================================== Severity: High Date : 2021-12-11 CVE-ID : CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062 CVE-2021-4063 CVE-2021-4064 CVE-2021-4065 CVE-2021-4066 CVE-2021-4067 CVE-2021-4068 Package : vivaldi Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2601 Summary ====== The package vivaldi before version 5.0.2497.28-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing and insufficient validation. Resolution ========= Upgrade to 5.0.2497.28-1. # pacman -Syu "vivaldi> =5.0.2497.28-1" The problems have been fixed upstream in version 5.0.2497.28. Workaround ========= None. Description ========== - CVE-2021-4052 (arbitrary code execution) A use after free security issue has been found in the web apps component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4053 (arbitrary code execution) A use after free security issue has been found in the UI component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4054 (content spoofing) An incorrect security UI security issue has been found in the autofill component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4055 (arbitrary code execution) A heap buffer overflow security issue has been found in the extensions component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4056 (arbitrary code execution) A type confusion security issue has been found in the loader component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4057 (arbitrary code execution) A use after free security issue has been found in the fileAPI component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4058 (arbitrary code execution) A heap buffer overflow security issue has been found in the ANGLE component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4059 (insufficient validation) An insufficient data validation security issue has been found in the loader component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4061 (arbitrary code execution) A type confusion security issue has been found in the V8 component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4062 (arbitrary code execution) A heap buffer overflow security issue has been found in the BFCache component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4063 (arbitrary code execution) A use after free security issue has been found in the developer tools component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4064 (arbitrary code execution) A use after free security issue has been found in the screen capture component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4065 (arbitrary code execution) A use after free security issue has been found in the autofill component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4066 (arbitrary code execution) An integer underflow security issue has been found in the ANGLE component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4067 (arbitrary code execution) A use after free security issue has been found in the window manager component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4068 (insufficient validation) An insufficient validation of untrusted input security issue has been found in the new tab page component of the Chromium browser engine before version 96.0.4664.93. Impact ===== A remote attacker could execute arbitrary code or spoof content through crafted webcontent. References ========= https://vivaldi.com/blog/desktop/further-updates-to-theme-sharing-vivaldi-browser-snapshot-2488-3/ https://vivaldi.com/blog/desktop/minor-update-5-0/ https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html https://security.archlinux.org/CVE-2021-4052 https://security.archlinux.org/CVE-2021-4053 https://security.archlinux.org/CVE-2021-4054 https://security.archlinux.org/CVE-2021-4055 https://security.archlinux.org/CVE-2021-4056 https://security.archlinux.org/CVE-2021-4057 https://security.archlinux.org/CVE-2021-4058 https://security.archlinux.org/CVE-2021-4059 https://security.archlinux.org/CVE-2021-4061 https://security.archlinux.org/CVE-2021-4062 https://security.archlinux.org/CVE-2021-4063 https://security.archlinux.org/CVE-2021-4064 https://security.archlinux.org/CVE-2021-4065 https://security.archlinux.org/CVE-2021-4066 https://security.archlinux.org/CVE-2021-4067 https://security.archlinux.org/CVE-2021-4068 . Preceding Vivaldi version 5.0.2497.28-1 encounters numerous critical vulnerabilities, posing risks of unauthorized code execution and identity deception.. Arch Linux Advisory,Vivaldi Security Issues,High Severity Risk. . LinuxSecurity.com Team

Calendar%202 Dec 12, 2021 ArchLinux
198

ArchLinux: 202112-6 High Severity: Multiple Chromium Threats

The package chromium before version 96.0.4664.93-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing and insufficient validation. . Arch Linux Security Advisory ASA-202112-6 ======================================== Severity: High Date : 2021-12-11 CVE-ID : CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062 CVE-2021-4063 CVE-2021-4064 CVE-2021-4065 CVE-2021-4066 CVE-2021-4067 CVE-2021-4068 Package : chromium Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2600 Summary ====== The package chromium before version 96.0.4664.93-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing and insufficient validation. Resolution ========= Upgrade to 96.0.4664.93-1. # pacman -Syu "chromium> =96.0.4664.93-1" The problems have been fixed upstream in version 96.0.4664.93. Workaround ========= None. Description ========== - CVE-2021-4052 (arbitrary code execution) A use after free security issue has been found in the web apps component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4053 (arbitrary code execution) A use after free security issue has been found in the UI component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4054 (content spoofing) An incorrect security UI security issue has been found in the autofill component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4055 (arbitrary code execution) A heap buffer overflow security issue has been found in the extensions component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4056 (arbitrary code execution) A type confusion security issue has been found in the loader component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4057 (arbitrary code execution) A use after free security issue has been found in the fileAPI component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4058 (arbitrary code execution) A heap buffer overflow security issue has been found in the ANGLE component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4059 (insufficient validation) An insufficient data validation security issue has been found in the loader component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4061 (arbitrary code execution) A type confusion security issue has been found in the V8 component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4062 (arbitrary code execution) A heap buffer overflow security issue has been found in the BFCache component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4063 (arbitrary code execution) A use after free security issue has been found in the developer tools component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4064 (arbitrary code execution) A use after free security issue has been found in the screen capture component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4065 (arbitrary code execution) A use after free security issue has been found in the autofill component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4066 (arbitrary code execution) An integer underflow security issue has been found in the ANGLE component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4067 (arbitrary code execution) A use after free security issue has been found in the window manager component of the Chromium browser engine before version 96.0.4664.93. - CVE-2021-4068 (insufficient validation) An insufficient validation of untrusted input security issue has been found in the new tab page component of the Chromium browser engine before version 96.0.4664.93. Impact ===== A remote attacker could execute arbitrary code or spoof content through crafted webcontent. References ========= https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html https://security.archlinux.org/CVE-2021-4052 https://security.archlinux.org/CVE-2021-4053 https://security.archlinux.org/CVE-2021-4054 https://security.archlinux.org/CVE-2021-4055 https://security.archlinux.org/CVE-2021-4056 https://security.archlinux.org/CVE-2021-4057 https://security.archlinux.org/CVE-2021-4058 https://security.archlinux.org/CVE-2021-4059 https://security.archlinux.org/CVE-2021-4061 https://security.archlinux.org/CVE-2021-4062 https://security.archlinux.org/CVE-2021-4063 https://security.archlinux.org/CVE-2021-4064 https://security.archlinux.org/CVE-2021-4065 https://security.archlinux.org/CVE-2021-4066 https://security.archlinux.org/CVE-2021-4067 https://security.archlinux.org/CVE-2021-4068 . Several critical vulnerabilities detected in the Chromium package prior to version 96.0.4664.93-2. It's advised to upgrade for enhanced security.. Chromium Security Advisory, Arch Linux Update, High Severity Issues. . LinuxSecurity.com Team

Calendar%202 Dec 12, 2021 ArchLinux
198

Arch Linux Firefox Update 94.0-1 High: Code Execution and Spoofing Issues

The package firefox before version 94.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, same- origin policy bypass and sandbox escape. . Arch Linux Security Advisory ASA-202111-2 ======================================== Severity: High Date : 2021-11-05 CVE-ID : CVE-2021-38503 CVE-2021-38504 CVE-2021-38506 CVE-2021-38507 CVE-2021-38508 CVE-2021-38509 Package : firefox Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2511 Summary ====== The package firefox before version 94.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, same- origin policy bypass and sandbox escape. Resolution ========= Upgrade to 94.0-1. # pacman -Syu "firefox> =94.0-1" The problems have been fixed upstream in version 94.0. Workaround ========= None. Description ========== - CVE-2021-38503 (sandbox escape) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. - CVE-2021-38504 (arbitrary code execution) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. When interacting with an HTML input element's file picker dialog with "webkitdirectory" set, a use-after- free could have resulted, leading to memory corruption and a potentially exploitable crash. - CVE-2021-38506 (content spoofing) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. Through a series of navigations, Firefox and Thunderbird could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing. - CVE-2021-38507 (same-origin policy bypass) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. TheOpportunistic Encryption feature of HTTP2 (RFC 8164) allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP address (e.g. port 8443) did not opt-in to opportunistic encryption; a network attacker could forward a connection from the browser to port 443 to port 8443, causing the browser to treat the content of port 8443 as same-origin with HTTP. This was resolved by disabling the Opportunistic Encryption feature, which had low usage. - CVE-2021-38508 (content spoofing) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. By displaying a form validity message in the correct location at the same time as a permission prompt (such as for geolocation), the validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission. - CVE-2021-38509 (content spoofing) A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with arbitrary (although unstyled) contents could be displayed over top an uncontrolled webpage of the attacker's choosing. Impact ===== A remote attacker could execute arbitrary code, spoof content or bypass same-origin policy through crafted webcontent. References ========= https://www.mozilla.org/en-US/security/advisories/mfsa2021-48/ https://www.mozilla.org/en-US/security/advisories/mfsa2021-48/ https://www.mozilla.org/en-US/security/advisories/mfsa2021-50/ https://bugzilla.mozilla.org/show_bug.cgi?id=1729517 https://bugzilla.mozilla.org/show_bug.cgi?id=1730156 https://bugzilla.mozilla.org/show_bug.cgi?id=1730750 https://bugzilla.mozilla.org/show_bug.cgi?id=1730935 https://bugzilla.mozilla.org/show_bug.cgi?id=1366818 https://bugzilla.mozilla.org/show_bug.cgi?id=1718571 https://security.archlinux.org/CVE-2021-38503 https://security.archlinux.org/CVE-2021-38504 https://security.archlinux.org/CVE-2021-38506 https://security.archlinux.org/CVE-2021-38507 https://security.archlinux.org/CVE-2021-38508 https://security.archlinux.org/CVE-2021-38509 . Update your Arch Linux Firefox package to version 94.0-1 to address critical vulnerabilities such as remote code execution risks.. Arch Linux Security, Firefox Update, Code Execution Issues. . LinuxSecurity.com Team

Calendar%202 Nov 09, 2021 ArchLinux
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200