Red Hat Security Advisory 2023-5147-01 - A security update for Camel for Spring Boot 3.18.3.2 is now available. Issues addressed include bypass and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: Red Hat Integration Camel for Spring Boot 3.18.3.2 release and security update  
Advisory ID:       RHSA-2023:5147-01  
Product:           Red Hat Integration  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5147  
Issue date:        2023-09-13  
CVE Names:         CVE-2021-46877 CVE-2023-20873 CVE-2023-33201   
                   CVE-2023-34455   
=====================================================================

1. Summary:

Red Hat Integration Camel for Spring Boot 3.18.3.2 release and security  
update is now available. The purpose of this text-only errata is to inform  
you about the security issues fixed in this release.

Red Hat Product Security has rated this update as having an impact of  
Important. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

A security update for Camel for Spring Boot 3.18.3.2 is now available. The  
purpose of this text-only errata is to inform you about the security issues  
fixed in this release.

* spring-boot: Security Bypass With Wildcard Pattern Matching on Cloud  
Foundry (CVE-2023-20873)

* jackson-databind: Possible DoS if using JDK serialization to serialize  
JsonNode (CVE-2021-46877)

* bouncycastle: potential blind LDAP injection attack using a self-signed  
certificate (CVE-2023-33201)

* snappy-java: Unchecked chunk length leads to DoS (CVE-2023-34455)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

3. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:  
https://access.redhat.com/articles/11258

4. Bugs fixed (https://bugzilla.redhat.com/):

2185707 - CVE-2021-46877 jackson-databind: Possible DoS if using JDK serialization to serialize JsonNode  
2215445 - CVE-2023-34455 snappy-java: Unchecked chunk length leads to DoS  
2215465 - CVE-2023-33201 bouncycastle: potential  blind LDAP injection attack using a self-signed certificate  
2231491 - CVE-2023-20873 spring-boot: Security Bypass With Wildcard Pattern Matching on Cloud Foundry

5. References:

https://access.redhat.com/security/cve/CVE-2021-46877  
https://access.redhat.com/security/cve/CVE-2023-20873  
https://access.redhat.com/security/cve/CVE-2023-33201  
https://access.redhat.com/security/cve/CVE-2023-34455  
https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2023-Q3  
https://access.redhat.com/security/updates/classification/#important

6. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlAikdAAoJENzjgjWX9erEY04P/iSm4Sumuu8ke2lI2WqpIdvO  
GDOr9DgtoWEhuJTTGaIYTO5qO2DBfuP8VwqL4Px12zmcQrq1j0txFOEVSWGGSgT1  
KddBmIG9ERwkbKH+t5styPYwWtu5T5jQImVLjHOVNWIsQ0PL2dgZuOaGjLMGY4DL  
jvTViXGGLnjomR9jf9EIj59KRGklKp9hFwE4SGarH3RSQchu+94uPeYXVK7ifbx+  
SWWHthI6+XsO3MKaXiX60OpgPODS7gtvVnlk/9ZqeYOa4TLLBjxNGskw2H8m+fGD  
wVThEvVFOL0Co5tPlXH785wguzcDI/77wp9FKNKdudfkNyE4rt0uIns8HZ5F71yv  
YzhD/Z4bi/oHlwCN9WuDYCMEuI2YDf5oB1m4hL10nr9j48izi316ru4HvU7pSd/3  
JtNzIdWyMtKFMrNas8P6GrlJueXhpv1QFc9S4t42bGoZvdfYfvPeOttsjbnoN93H  
fN+O1guY+9ngVc6/UP2z1S2p4YZNUVganHLR/P9rmWMhamX7qAMpqJmBiu8xtb5u  
pssgpr0PPrYI9LZsVofeXK2H/l7OvhaoL8WdA3YFZe2uNknDPrINNKsHBaqI/d5W  
YAI5cnNzwQSUGyK+oeDl4O04Frj3ntrlhfGRA971kfTkweZnjOB8ComPOpHKiCsf  
FVJiEkqhQ7jUG3NbQ5TP  
=HZ7/  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5147-01

Debian Linux Security Advisory 5496-1 - A buffer overflow in parsing WebP images may result in the execution of arbitrary code.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5496-1                   security@debian.org  
https://www.debian.org/security/                       Moritz Muehlenhoff  
September 13, 2023                    https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : firefox-esr  
CVE ID         : CVE-2023-4863

A buffer overflow in parsing WebP images may result in the execution of  
arbitrary code.

For the oldstable distribution (bullseye), this problem has been fixed  
in version 102.15.1esr-1~deb11u1.

For the stable distribution (bookworm), this problem has been fixed in  
version 102.15.1esr-1~deb12u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmUCH1EACgkQEMKTtsN8  
TjZB7A//YpbXG3OOwqz3b83KzC0B2y53g1qcriYZ+PiUs+S0FNXX0ePnRJG2Txl1  
c82NjGrzTO+D+qTtj3Uj/KB2k/v9UleRE7yeqoZcZXqMgdXqWPl/2C/xNaKLdwRd  
YjtNl/KgdDPRIxozwov/fRuS6bUWOtsOpYLGtWsFCfK7Wik20TN36dJNPH+4qvgR  
/YwRV5cqpxAKnguVZoFuKyKLxAXm2KxZCOaH3Ft3f5Sk6MWWt4ayWgmrUOiRzdEB  
vu/h4itb/q/dnLB/O4u7EzFGK5TtHHpP+4YoeibI/JQD/geiAFCyBdbBSmVlLv2c  
8aUJLziUvawpE+5ig8b+7m5bwSsfCL5JNMYesVfM1joqY0ysKkwZj+WkYtfkVZQH  
SepJON7YTm9Hsbkx/WZ/RpF6VbW4/7YWcy9YN8Cevd2wQ4CSSicBpZ77MaPUgqWf  
cHCRYVKsTNLmUbDSAjKazUPbHPFNaiMEl2pG54xNfj6y4avyLnqOWmF00/kRoCG4  
EsA8LGZgrhImqzgZMPQNkEmwstjiADQ8b8himl5CCjwiy70YVm3PmYynH/SiSkow  
4/GpZsoDZZ1iWDnSQgw/8/WQ8PQFOkmMVV7wfAJ5RK6iVP3MJ7pNJEi0oY6a2SLk  
2IXg48oJF9tWiY/xq+JezTuU0zmC0P90YHz3rywvlVlXlJ/AR7M=  
=H7ya  
-----END PGP SIGNATURE-----

Debian Security Advisory 5496-1

iSmile Soft CMS version 0.3.0 suffers from an add administrator vulnerability.

    ====================================================================================================================================| # Title     : iSmile Soft CMS v0.3.0 Add Admin Vulnerability                                                                     || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 63.0.3 (32-bit)                                            || # Vendor    : https://www.helpernt.com/                                                                                          || # Dork      : JamalCom هذا السكربت مبرمج بواسطة                                                                                  |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] The installation file allows you to re-install the script and add a new manager, and the reason is due to the designer.     It is not recommended to delete the installation folder, and the user does not pay attention to deleting the installation file.[+] use payload : /install.php?etape=3[+] http://127.0.0.1/iSmile/install.php?etape=3Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

iSmile Soft CMS 0.3.0 Add Administrator

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Suricata IDPE 7.0.1

Ubuntu Security Notice 6364-1 - It was discovered that Ghostscript incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a denial of service. It was discovered that Ghostscript incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6364-1  
September 13, 2023

ghostscript vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 16.04 LTS (Available with Ubuntu Pro)

Summary:

Several security issues were fixed in Ghostscript.

Software Description:  
- ghostscript: PostScript and PDF interpreter

Details:

It was discovered that Ghostscript incorrectly handled certain PDF files.  
An attacker could possibly use this issue to cause a denial of service.  
(CVE-2020-21710)

It was discovered that Ghostscript incorrectly handled certain PDF files.  
An attacker could possibly use this issue to cause a denial of service,  
or possibly execute arbitrary code. (CVE-2020-21890)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 20.04 LTS:  
   ghostscript                     9.50~dfsg-5ubuntu4.10  
   libgs9                          9.50~dfsg-5ubuntu4.10

Ubuntu 18.04 LTS (Available with Ubuntu Pro):  
   ghostscript                     9.26~dfsg+0-0ubuntu0.18.04.18+esm2  
   libgs9                          9.26~dfsg+0-0ubuntu0.18.04.18+esm2

Ubuntu 16.04 LTS (Available with Ubuntu Pro):  
   ghostscript                     9.26~dfsg+0-0ubuntu0.16.04.14+esm7  
   libgs9                          9.26~dfsg+0-0ubuntu0.16.04.14+esm7

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6364-1  
   CVE-2020-21710, CVE-2020-21890

Package Information:  
   https://launchpad.net/ubuntu/+source/ghostscript/9.50~dfsg-5ubuntu4.10

Ubuntu Security Notice USN-6364-1

Ubuntu Security Notice 6366-1 - It was discovered that PostgreSQL incorrectly handled certain extension script substitutions. An attacker having database-level CREATE privileges can use this issue to execute arbitrary code as the bootstrap superuser.

==========================================================================  
Ubuntu Security Notice USN-6366-1  
September 13, 2023

postgresql-9.5 vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS (Available with Ubuntu Pro)

Summary:

PostgreSQL could be made to execute commands as the bootstrap superuser.

Software Description:  
- postgresql-9.5: Object-relational SQL database

Details:

It was discovered that PostgreSQL incorrectly handled certain extension  
script substitutions. An attacker having database-level CREATE privileges  
can use this issue to execute arbitrary code as the bootstrap superuser.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 16.04 LTS (Available with Ubuntu Pro):  
   postgresql-9.5                     9.5.25-0ubuntu0.16.04.1+esm5  
   postgresql-client-9.5           9.5.25-0ubuntu0.16.04.1+esm5

After a standard system update you need to restart PostgreSQL to make  
all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6366-1  
   CVE-2023-39417

Ubuntu Security Notice USN-6366-1

Red Hat Security Advisory 2023-5143-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.122 and .NET Runtime 6.0.22. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: .NET 6.0 security update  
Advisory ID:       RHSA-2023:5143-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5143  
Issue date:        2023-09-13  
CVE Names:         CVE-2023-36799   
=====================================================================

1. Summary:

An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, s390x, x86_64  
Red Hat Enterprise Linux CRB (v. 9) - aarch64, s390x, x86_64

3. Description:

.NET is a managed-software framework. It implements a subset of the .NET  
framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now  
available. The updated versions are .NET SDK 6.0.122 and .NET Runtime  
6.0.22.

Security Fix(es):

* dotnet:  Denial of Service with Client Certificates using .NET Kestrel  
(CVE-2023-36799)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2237317 - CVE-2023-36799 dotnet:  Denial of Service with Client Certificates using .NET Kestrel

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
dotnet6.0-6.0.122-1.el9_2.src.rpm

aarch64:  
aspnetcore-runtime-6.0-6.0.22-1.el9_2.aarch64.rpm  
aspnetcore-targeting-pack-6.0-6.0.22-1.el9_2.aarch64.rpm  
dotnet-apphost-pack-6.0-6.0.22-1.el9_2.aarch64.rpm  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-hostfxr-6.0-6.0.22-1.el9_2.aarch64.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-runtime-6.0-6.0.22-1.el9_2.aarch64.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-sdk-6.0-6.0.122-1.el9_2.aarch64.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.aarch64.rpm  
dotnet-targeting-pack-6.0-6.0.22-1.el9_2.aarch64.rpm  
dotnet-templates-6.0-6.0.122-1.el9_2.aarch64.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.aarch64.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.aarch64.rpm

s390x:  
aspnetcore-runtime-6.0-6.0.22-1.el9_2.s390x.rpm  
aspnetcore-targeting-pack-6.0-6.0.22-1.el9_2.s390x.rpm  
dotnet-apphost-pack-6.0-6.0.22-1.el9_2.s390x.rpm  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-hostfxr-6.0-6.0.22-1.el9_2.s390x.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-runtime-6.0-6.0.22-1.el9_2.s390x.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-sdk-6.0-6.0.122-1.el9_2.s390x.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.s390x.rpm  
dotnet-targeting-pack-6.0-6.0.22-1.el9_2.s390x.rpm  
dotnet-templates-6.0-6.0.122-1.el9_2.s390x.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.s390x.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.s390x.rpm

x86_64:  
aspnetcore-runtime-6.0-6.0.22-1.el9_2.x86_64.rpm  
aspnetcore-targeting-pack-6.0-6.0.22-1.el9_2.x86_64.rpm  
dotnet-apphost-pack-6.0-6.0.22-1.el9_2.x86_64.rpm  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-hostfxr-6.0-6.0.22-1.el9_2.x86_64.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-runtime-6.0-6.0.22-1.el9_2.x86_64.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-sdk-6.0-6.0.122-1.el9_2.x86_64.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.x86_64.rpm  
dotnet-targeting-pack-6.0-6.0.22-1.el9_2.x86_64.rpm  
dotnet-templates-6.0-6.0.122-1.el9_2.x86_64.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.x86_64.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.x86_64.rpm

Red Hat Enterprise Linux CRB (v. 9):

aarch64:  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.aarch64.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.aarch64.rpm  
dotnet-sdk-6.0-source-built-artifacts-6.0.122-1.el9_2.aarch64.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.aarch64.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.aarch64.rpm

s390x:  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.s390x.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.s390x.rpm  
dotnet-sdk-6.0-source-built-artifacts-6.0.122-1.el9_2.s390x.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.s390x.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.s390x.rpm

x86_64:  
dotnet-apphost-pack-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-hostfxr-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-runtime-6.0-debuginfo-6.0.22-1.el9_2.x86_64.rpm  
dotnet-sdk-6.0-debuginfo-6.0.122-1.el9_2.x86_64.rpm  
dotnet-sdk-6.0-source-built-artifacts-6.0.122-1.el9_2.x86_64.rpm  
dotnet6.0-debuginfo-6.0.122-1.el9_2.x86_64.rpm  
dotnet6.0-debugsource-6.0.122-1.el9_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-36799  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlAdT1AAoJENzjgjWX9erETt8P/2Xod5iq5ICgC4YSd5zuVU2H  
/btP0Qsyzfm05ubv/hLIlJk7OKR12kHUhc2ilancGGDwsxXLayDyfykKxOMxcIEZ  
AR/NgXxZ+kQW+JQBEVDFEijAgUU0sv3O6VMwv9Gznvh4n4yQfoPq1brIigWLo53r  
E2UTHwGJc2old60X6tPmfBYDcNx/Rsnhw8tkYOxcPKABl/yxxpGd7yXXEvLKDfoG  
M2jcpIbhyMN5/GNuVbd80WK6BbUOKXFXt44Nrmi1dc9G7mp0Yf23kkOETbyXzIw7  
lSh4bUsrFi29EBca1m3IANVPOvtKgLEXPNRkCNsPoVOzlVH18H9QIaqJydsokwpn  
JSh2M5dWjt151gLMTP+2LCHDfKjM3FWJmk5SjqtUBrLEipmCBAduFMBiZl5X/lF+  
Q97i+jq9Ywi8P6yhd6q2SUvWlG3PeTTiKuT+OZzYPvzywN/01+xiOOhwUWg8MBwo  
gcVRZB0R9fwVMwBbM8GLW7KWhYD60IK08Opkzjs3FMz6LgdPoLJOFvweLMOcYJSE  
6lXWqwxkNK2lK3dxt7S1MUqH6NVUaeKMMqji7Evz1sP3NBAE9ErPSQkjp8rr4NXy  
IRIDw9EkJD6DU6EE079RJR8BwVKrt4KbE/Bl78tbbKidkfLW9q8ovxrxTdP4FgM6  
tbvS8Y+Gmlz+g4dBshHF  
=ckpi  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5143-01

Red Hat Security Advisory 2023-5146-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.111 and .NET Runtime 7.0.11. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: .NET 7.0 security update  
Advisory ID:       RHSA-2023:5146-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5146  
Issue date:        2023-09-13  
CVE Names:         CVE-2023-36799   
=====================================================================

1. Summary:

An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux CRB (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

.NET is a managed-software framework. It implements a subset of the .NET  
framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now  
available. The updated versions are .NET SDK 7.0.111 and .NET Runtime  
7.0.11.

Security Fix(es):

* dotnet:  Denial of Service with Client Certificates using .NET Kestrel  
(CVE-2023-36799)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2237317 - CVE-2023-36799 dotnet:  Denial of Service with Client Certificates using .NET Kestrel

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
dotnet7.0-7.0.111-1.el9_2.src.rpm

aarch64:  
aspnetcore-runtime-7.0-7.0.11-1.el9_2.aarch64.rpm  
aspnetcore-targeting-pack-7.0-7.0.11-1.el9_2.aarch64.rpm  
dotnet-apphost-pack-7.0-7.0.11-1.el9_2.aarch64.rpm  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-host-7.0.11-1.el9_2.aarch64.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-hostfxr-7.0-7.0.11-1.el9_2.aarch64.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-runtime-7.0-7.0.11-1.el9_2.aarch64.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-sdk-7.0-7.0.111-1.el9_2.aarch64.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.aarch64.rpm  
dotnet-targeting-pack-7.0-7.0.11-1.el9_2.aarch64.rpm  
dotnet-templates-7.0-7.0.111-1.el9_2.aarch64.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.aarch64.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.aarch64.rpm  
netstandard-targeting-pack-2.1-7.0.111-1.el9_2.aarch64.rpm

ppc64le:  
aspnetcore-runtime-7.0-7.0.11-1.el9_2.ppc64le.rpm  
aspnetcore-targeting-pack-7.0-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-apphost-pack-7.0-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-host-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-hostfxr-7.0-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-runtime-7.0-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-sdk-7.0-7.0.111-1.el9_2.ppc64le.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.ppc64le.rpm  
dotnet-targeting-pack-7.0-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-templates-7.0-7.0.111-1.el9_2.ppc64le.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.ppc64le.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.ppc64le.rpm  
netstandard-targeting-pack-2.1-7.0.111-1.el9_2.ppc64le.rpm

s390x:  
aspnetcore-runtime-7.0-7.0.11-1.el9_2.s390x.rpm  
aspnetcore-targeting-pack-7.0-7.0.11-1.el9_2.s390x.rpm  
dotnet-apphost-pack-7.0-7.0.11-1.el9_2.s390x.rpm  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-host-7.0.11-1.el9_2.s390x.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-hostfxr-7.0-7.0.11-1.el9_2.s390x.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-runtime-7.0-7.0.11-1.el9_2.s390x.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-sdk-7.0-7.0.111-1.el9_2.s390x.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.s390x.rpm  
dotnet-targeting-pack-7.0-7.0.11-1.el9_2.s390x.rpm  
dotnet-templates-7.0-7.0.111-1.el9_2.s390x.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.s390x.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.s390x.rpm  
netstandard-targeting-pack-2.1-7.0.111-1.el9_2.s390x.rpm

x86_64:  
aspnetcore-runtime-7.0-7.0.11-1.el9_2.x86_64.rpm  
aspnetcore-targeting-pack-7.0-7.0.11-1.el9_2.x86_64.rpm  
dotnet-apphost-pack-7.0-7.0.11-1.el9_2.x86_64.rpm  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-host-7.0.11-1.el9_2.x86_64.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-hostfxr-7.0-7.0.11-1.el9_2.x86_64.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-runtime-7.0-7.0.11-1.el9_2.x86_64.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-sdk-7.0-7.0.111-1.el9_2.x86_64.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.x86_64.rpm  
dotnet-targeting-pack-7.0-7.0.11-1.el9_2.x86_64.rpm  
dotnet-templates-7.0-7.0.111-1.el9_2.x86_64.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.x86_64.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.x86_64.rpm  
netstandard-targeting-pack-2.1-7.0.111-1.el9_2.x86_64.rpm

Red Hat Enterprise Linux CRB (v. 9):

aarch64:  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.aarch64.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.aarch64.rpm  
dotnet-sdk-7.0-source-built-artifacts-7.0.111-1.el9_2.aarch64.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.aarch64.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.aarch64.rpm

ppc64le:  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.ppc64le.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.ppc64le.rpm  
dotnet-sdk-7.0-source-built-artifacts-7.0.111-1.el9_2.ppc64le.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.ppc64le.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.ppc64le.rpm

s390x:  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.s390x.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.s390x.rpm  
dotnet-sdk-7.0-source-built-artifacts-7.0.111-1.el9_2.s390x.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.s390x.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.s390x.rpm

x86_64:  
dotnet-apphost-pack-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-host-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-hostfxr-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-runtime-7.0-debuginfo-7.0.11-1.el9_2.x86_64.rpm  
dotnet-sdk-7.0-debuginfo-7.0.111-1.el9_2.x86_64.rpm  
dotnet-sdk-7.0-source-built-artifacts-7.0.111-1.el9_2.x86_64.rpm  
dotnet7.0-debuginfo-7.0.111-1.el9_2.x86_64.rpm  
dotnet7.0-debugsource-7.0.111-1.el9_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-36799  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlAdTcAAoJENzjgjWX9erE/2wQAICpW9nr+qtR1ZW5ycabviZC  
/lhTVmRDmy+GdP4PaqIThrfhg/gUk9eXINCmbutdLT6GoS+DDxkFCVOh1VH3CQmu  
HYrlvqhb67Kaa5G6eR2dVGqbMlFTB1BsOzxZ2kOSKhhJ+9px8je7KIr4X3XKvgbN  
u8VQgubyMqh51JG5XvbJ5lgr8vK/wP28dyknb6G2Bm1AoKchk+cFQUuPeoNROl29  
vUSQBsnD/t3MA/Pj2xqKnmG2HXmbrhJUh6vU8CXMbzO44/tVIBVkDWO0oNP8xnTT  
z6uTr5GJFabAkbPTVX8eFXkJH0GRUuyUPBenRi2MvG1433pojUcvSrVpOy7Bn+ga  
cHiU7fVnC+3Ikkap/ynZpMd5iynyUMrc7E3GneZ6L2CfYwHM0wW7Z3b3lH1tJe9i  
nDRC8cDcmQ7xTUUpgwhfR7Cy2e2P0UK6En86lI7xyohrNmK3DykS8HPwEBq0VK1F  
JN+rBXT+qGdoEHwhIqPBaE7keWfdp7GB6bsi3QVNIZUqlZEEQMl2cyaWRdeZRzmt  
0U6IHUwQLKIZmu8E6sJ4Mp28e4ycqZyJ+YsfWRxhDQjRXTkv0u/4c9f9Mlr+36p7  
OpDh/oqbcw89LlVULWKiyPiWa54MCaw9InCo8blGhTfAE0yQUSnTq4q6mhuiYWch  
CuOy11LY//6y/wN+u3Db  
=eloI  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5146-01

islamnt CMS version 2.1.0 suffers from an add administrator vulnerability.

    ====================================================================================================================================| # Title     : islamnt CMS v2.1.0 Add ADmin Vulnerability Vulnerability                                                           || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit)                                             || # Vendor    : https://sourceforge.net/projects/islam-cms/                                                                        |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] The installation file allows you to re-install the script and add a new manager, and the reason is due to the designer.     It is not recommended to delete the installation folder, and the user does not pay attention to deleting the installation file.[+] Use payload : /install/?action=setup7[+] http://127.0.0.1/Islam/install/?action=setup7Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

islamnt CMS 2.1.0 Add Administrator

islamnt CMS version 2.1.0 suffers from a cross site scripting vulnerability.

    ====================================================================================================================================| # Title     : islamnt CMS v2.1.0 XSS Vulnerability Vulnerability                                                                 || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit)                                             || # Vendor    : https://sourceforge.net/projects/islam-cms/                                                                        || # Dork      : Powered By Islamnt 2.1.0                                                                                           |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : /onlines.php/%27onmouseover=%27prompt%28984627%29%27bad=%27%3E[+] http://127.0.0.1/Islam/onlines.php/%27onmouseover=%27prompt%28984627%29%27bad=%27%3EGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

Source

Packet Storm