Linux Advisory Watch: Firefox, OpenJDK, Kernel Updates November 2022
Nov 18, 2022
•
Brittany Day
1 - 2 min read
Happy Friday fellow Linux geeks! This week, important updates have been issued for Firefox, OpenJDK and the Linux Kernel. Read on to learn about these vulnerabilities and how to secure your system against them.
Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!
Check out the new Remote Access Plus solution from ManageEngine to help admins secure their servers against vulnerabilities like these by automating security patches.
Yours in Open Source,
FirefoxThe DiscoveryMultiple security vulnerabilities were discovered in Mozilla Firefox (CVE-2022-42927, CVE-2022-42928, CVE-2022-42929 and CVE-2022-42932). |
OpenJDKThe DiscoverySeveral security bugs have been found in OpenJDK (CVE-2022-21626, CVE-2022-21628, CVE-2022-21619 and CVE-2022-21624).
The ImpactThese flaws could result in excessive memory allocation in X.509 certificate parsing, no connection count limit in HttpServer, improper handling of long NTLM client hostnames and insufficient randomization of JNDI DNS port numbers. The FixA java-1.8.0-openjdk security and bug fix update that remedies these issues is now available. We recommend that you update as soon as possible to protect against potential attacks and compromise due to the exploitation of these vulnerabilities. Your Related Advisories:[distro_list_2] |
Linux KernelThe DiscoverySeveral security issues were identified in the Linux kernel (CVE-2022-0812, CVE-2022-1012, CVE-2022-2318, CVE-2022-26365, CVE-2022-32296, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742 and CVE-2022-33744). The ImpactThese bugs could result in the exposure of sensitive information or denial of service (DoS) attacks. |
PREVIOUS
NEXT
