Debian Linux Security Advisory 5433-1 - Gregory James Duck reported that missing input validation in various functions provided by libx11, the X11 client-side library, may result in denial of service.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5433-1                   security@debian.orghttps://www.debian.org/security/                     Salvatore BonaccorsoJune 21, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : libx11CVE ID         : CVE-2023-3138Debian Bug     : 1038133Gregory James Duck reported that missing input validation in variousfunctions provided by libx11, the X11 client-side library, may result indenial of service.For the oldstable distribution (bullseye), this problem has been fixedin version 2:1.7.2-1+deb11u1.For the stable distribution (bookworm), this problem has been fixed inversion 2:1.8.4-2+deb12u1.We recommend that you upgrade your libx11 packages.For the detailed security status of libx11 please refer to its securitytracker page at:https://security-tracker.debian.org/tracker/libx11Further information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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XLRD-----END PGP SIGNATURE-----

Debian Security Advisory 5433-1

CloudPanel 2 before 2.3.1 has insecure file-manager cookie authentication.

**v2.3.1 - \[2023-06-20\]#**

**Bug Fixes**

*   #287 Colon in remote cloud backup breaks most filesystems
*   #290 File Manager Extract not working since v2.3.0
*   #293 Strange \\n\\n inside the certificate file used for custom domain.
*   Translation Fixes

**Security**

*   Critical (CVE-2023-35885): Insecure file manager cookie authentication (Muhammad Aizat, datack.my)
*   Insecure File Upload leads to Privilege Escalation and Authentication Bypass (Muhammad Zulfiqar)

**v2.3.0 - \[2023-06-06\]#**

**New**

*   Translation: Bulgarian
*   New CloudPanel CLI Root Commands:
    *   User:
        *   user:add
        *   user:delete
        *   user:list
    *   Site:
        *   site:install:certificate

**Enhancements**

*   The site user name and password can be entered manually for new WordPress sites.

**Bug Fixes**

*   #278 CLI need normalize domain name field
*   #284 CLPCTL - Problem with special characters in password result false error
*   Translation Fixes

**Security**

*   Critical (CVE-2023-33747): Privilege Escalation to root from user. Big thanks to Muhammad (datack.my, host.sabily.info) for reporting and testing
*   OS Command Injection. Big thanks to Laurence from crowdsec.net for reporting and testing

**v2.2.2 - \[2023-04-03\]#**

**New**

*   MariaDB 10.11 LTS Support
*   Hebrew
*   Japanese

**Bug Fixes**

*   #245 New Reverse Proxy | root folder permission in htdocs www.site.com folders
*   #254 Site path / copy and paste issues
*   Translation Fixes

**v2.2.1 - \[2023-02-27\]#**

**New**

*   Reverse Proxy
*   Chinese (Simplified)
*   Chinese (Taiwan)

**Bug Fixes**

*   #210 Dark mode: Separating table borders missing
*   #220 Hetzner Snapshot cleanup throws an exception when delete protection is enabled on a snapshot
*   Translation Fixes

**v2.2.0 - \[2022-12-08\]#**

**New**

*   Add PHP 8.2 Support
*   Dark Mode
*   Node.js 18 LTS Support

**Improvements**

*   File Manager order Directories before Files

**Bug Fixes**

*   #208 Unable to create a WordPress site with a database server that doesn't use the default port 3306
*   Translation Fixes

**v2.1.0 - \[2022-11-03\]#**

**New**

*   Varnish Cache Support

**Improvements**

*   Generate Password Link for Site User Password Update

**Bug Fixes**

*   #138 WordPress Admin login doesn't work with passwords which contains special characters like
*   #150 Cron Job PHP version issue
*   #153 Backup Custom Rclone Config Time
*   Translation Fixes

**v2.0.4 - \[2022-09-08\]#**

**New**

*   Added Languages: Arabic, Ukrainian

**Bug Fixes**

*   #137 Remote backups don't get deleted after configured retention period, it affects only the SFTP storage provider
*   Translation Fixes
*   MariaDB 10.9 Support

**v2.0.3 - \[2022-08-24\]#**

**New**

*   Remote Backup (Amazon S3, Wasabi, Digital Ocean Spaces, Dropbox, Google Drive, SFTP and Custom Rclone Config)
*   Added Languages: Italian, Indonesian, Spanish, Romanian, Russian, Polish, Vietnamese

**Bug Fixes**

*   #115 Using " in the additional directives configuration breaks CloudPanel
*   #122 Numeral in Domain Name Can't Install Wordpress
*   #132 413 Request Entity Too Large, File Manager file upload over 512MB with custom domain

**v2.0.2 - \[2022-07-04\]#**

**Bug Fixes**

*   Remove FS\_CHMOD\_FILE and FS\_CHMOD\_DIR from default WP settings

**v2.0.1 - \[2022-07-04\]#**

**New**

*   Added Portuguese (Brasil) translation
*   Added Turkish translation
*   MariaDB 10.8 support for Ubuntu and Debian
*   Added Default WP settings:
    *   WP\_MEMORY\_LIMIT: 256M
    *   WP\_MAX\_MEMORY\_LIMIT: 512M
    *   FS\_CHMOD\_FILE: 0644
    *   FS\_CHMOD\_DIR: 0755

**Bug Fixes**

*   Site User Name generation didn't work with a two-level subdomain like wp.blog.eu.org
*   Translations fixes

**v2.0.0 - \[2022-06-20\]#**

*   Initial Release

*   v2.3.1 - 2023-06-20
*   v2.3.0 - 2023-06-06
*   v2.2.2 - 2023-04-03
*   v2.2.1 - 2023-02-27
*   v2.2.0 - 2022-12-08
*   v2.1.0 - 2022-11-03
*   v2.0.4 - 2022-09-08
*   v2.0.3 - 2022-08-24
*   v2.0.2 - 2022-07-04
*   v2.0.1 - 2022-07-04
*   v2.0.0 - 2022-06-20

CVE-2023-35885: Changelog | CloudPanel | Documentation

Debian Linux Security Advisory 5432-1 - Jurien de Jong discovered that the parsing of KeyInfo elements within the XMLTooling library may result in server-side request forgery.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5432-1                   security@debian.org  
https://www.debian.org/security/                       Moritz Muehlenhoff  
June 18, 2023                         https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : xmltooling  
CVE ID         : not yet available

Jurien de Jong discovered that the parsing of KeyInfo elements within the  
XMLTooling library may result in server-side request forgery.

For the oldstable distribution (bullseye), this problem has been fixed  
in version 3.2.0-3+deb11u1.

For the stable distribution (bookworm), this problem has been fixed in  
version 3.2.3-1+deb12u1.

We recommend that you upgrade your xmltooling packages.

For the detailed security status of xmltooling please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/xmltooling

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmSPGPcACgkQEMKTtsN8  
TjanjBAAhqxtCzyFtq+6RTqDKjIU5jNsKlfpT6PDn9mp5JPmS3+oGidBewSo9/+V  
LA3vu3FN7lMAIS+krVTz5ZcK7Yeq4bbLYEA9uy1GXpGx1UZey1yYiH97IopDIdDh  
x1LEd/FzZvp7kNUf8r8skJC4fUm4h84OHdITSfdJskm32qGyThwaV3PtLdZTfwTO  
5UZhfW9lVrRAvtjQmj15rcZbvRLGqn/WESGvbRNS4YutXQo85v6JHGIV8xD54uGA  
VSEJap4YbeZHN1afsJHwK+D/19daU9wXphV8VmgR6J0w6O8YOiFbAcQbzWDoKorl  
mMbZ6C5z4nCBakp9cE4Z5FWIkcMq8oW5yVpSmCl9aVBz756IVH0bLNRS6lyBPQjX  
nUeegqgc2nVW1dqG2gPpULz83yHqMBQbso7cQZMk42iH3+9rsimjYIg0vvh48JQj  
kQopct6LEl/PlEcYgW5H3cHxrGXAeCE61OiZdsdIkeuuWrUh4N2q8bevk3Qzo0bt  
VEUrELoXhjHc3QpobbrNFp8VpoH0mzd1tIaT5fVLwqmLFr22zBLpuXnV3SsZEDnS  
TvYcahuRmn9IedLcYXanNTPxHU+r0KyhlvyvRA3qRQd/bmhQZQK+NuUWZBhfV2ft  
hgvG3k1R0Sc4HzYuHEuPJu3CsCSkdXJm/Gjf0vMf+dButYxczdI=  
=7FBV  
-----END PGP SIGNATURE-----

Debian Security Advisory 5432-1

Cybersecurity researchers have uncovered a set of malicious artifacts that they say is part of a sophisticated toolkit targeting Apple macOS systems.
"As of now, these samples are still largely undetected and very little information is available about any of them," Bitdefender researchers Andrei Lapusneanu and Bogdan Botezatu said in a preliminary report published on Friday.
The Romanian firm's

Endpoint Security / Hacking

Cybersecurity researchers have uncovered a set of malicious artifacts that they say is part of a sophisticated toolkit targeting Apple macOS systems.

"As of now, these samples are still largely undetected and very little information is available about any of them," Bitdefender researchers Andrei Lapusneanu and Bogdan Botezatu said in a preliminary report published on Friday.

The Romanian firm's analysis is based on an examination of four samples that were uploaded to VirusTotal by an unnamed victim. The earliest sample dates back to April 18, 2023.

Two of the three malicious programs are said to be generic Python-based backdoors that are designed to target Windows, Linux, and macOS systems. The payloads have been collectively dubbed **JokerSpy**.

The first constituent is shared.dat, which, once launched, runs an operating system check (0 for Windows, 1 for macOS, and 2 for Linux) and establishes contact with a remote server to fetch additional instructions for execution.

This includes gathering system information, running commands, downloading and executing files on the victim machine, and terminating itself.

On devices running macOS, Base64-encoded content retrieved from the server is written to a file named "/Users/Shared/AppleAccount.tgz" that's subsequently unpacked and launched as the "/Users/Shared/TempUser/AppleAccountAssistant.app" application.

The same routine, on Linux hosts, validates the operating system distribution by checking the "/etc/os-release" file. It then proceeds to write C code to a temporary file "tmp.c," which is compiled to a file called "/tmp/.ICE-unix/git" using the cc command on Fedora and gcc on Debian.

Bitdefender said it also found a "more potent backdoor" among the samples, a file labeled "sh.py" that comes with an extensive set of capabilities to gather system metadata, enumerate files, delete files, execute commands and files, and exfiltrate encoded data in batches.

The third component is a FAT binary known as xcc that's written in Swift and targets macOS Monterey (version 12) and newer. The file houses two Mach-O files for the twin CPU architectures, x86 Intel and ARM M1.

"Its primary purpose is apparently to check permissions before using a potential spyware component (probably to capture the screen) but does not include the spyware component itself," the researchers said.

UPCOMING WEBINAR

🔐 Mastering API Security: Understanding Your True Attack Surface

Discover the untapped vulnerabilities in your API ecosystem and take proactive steps towards ironclad security. Join our insightful webinar!

Join the Session

"This leads us to believe that these files are part of a more complex attack and that several files are missing from the system we investigated."

xcc's spyware connections stem from a path identified within the file content, "/Users/joker/Downloads/Spy/XProtectCheck/" and the fact that it checks for permissions such as Disk Access, Screen Recording, and Accessibility.

The identity of the threat actors behind the activity is unknown as yet. It's currently also not clear how initial access is obtained, and if it involves an element of social engineering or spear-phishing.

The disclosure comes a little over two weeks after Russian cybersecurity company Kaspersky disclosed that iOS devices have been targeted as part of a sophisticated and long-running mobile campaign dubbed Operation Triangulation that began in 2019.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

Researchers Discover New Sophisticated Toolkit Targeting Apple macOS Systems

A broken authentication vulnerability in 4D SAS 4D Server software v17, v18, v19 R7, and earlier allows attackers to send crafted TCP packets containing requests to perform arbitrary actions.

TP-Link Archer AX10(EU)\_V1.2\_230220 Buffer Overflow

Posted Jun 16, 2023

Authored by Giuseppe Compare

TP-Link Archer version AX10(EU)\_V1.2\_230220 suffers from a buffer overflow vulnerability.

tags | advisory, overflow

Download | Favorite | View

QuickJob Portal 6.1 Cross Site Scripting

Posted Jun 16, 2023

Authored by CraCkEr

QuickJob Portal version 6.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss

Download | Favorite | View

Quicklancer Freelance Marketplace 2.4 Cross Site Scripting

Posted Jun 16, 2023

Authored by CraCkEr

Quicklancer Freelance Marketplace version 2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss

Download | Favorite | View

QuickHomes Real Estate CMS 1.3 Cross Site Scripting

Posted Jun 16, 2023

Authored by CraCkEr

QuickHomes Real Estate CMS version 1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss

Download | Favorite | View

Debian Security Advisory 5431-1

Posted Jun 16, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5431-1 - Xu Biang discovered that missing input sanitizing in Sofia-SIP, a SIP User-Agent library could result in denial of service.

tags | advisory, denial of service

systems | linux, debian

Download | Favorite | View

Ubuntu Security Notice USN-6156-2

Posted Jun 16, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6156-2 - USN-6156-1 fixed a vulnerability in SSSD. In certain environments, not all packages ended up being upgraded at the same time, resulting in authentication failures when the PAM module was being used. This update fixes the problem. It was discovered that SSSD incorrectly sanitized certificate data used in LDAP filters. When using this issue in combination with FreeIPA, a remote attacker could possibly use this issue to escalate privileges.

tags | advisory, remote

systems | linux, ubuntu

Download | Favorite | View

Debian Security Advisory 5430-1

Posted Jun 16, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5430-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, information disclosure or bypass of sandbox restrictions.

tags | advisory, java, denial of service, vulnerability, info disclosure

systems | linux, debian

Download | Favorite | View

Red Hat Security Advisory 2023-3644-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3644-01 - Red Hat OpenShift Service Mesh is the Red Hat distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. This advisory covers container images for the release.

tags | advisory

systems | linux, redhat

Download | Favorite | View

Red Hat Security Advisory 2023-3645-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3645-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation. This advisory covers the RPM packages for the release. Issues addressed include a denial of service vulnerability.

tags | advisory, denial of service

systems | linux, redhat

Download | Favorite | View

Ubuntu Security Notice USN-6169-1

Posted Jun 16, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6169-1 - It was discovered that GNU SASL's GSSAPI server could make an out-of-bounds reads if given specially crafted GSS-API authentication data. A remote attacker could possibly use this issue to cause a denial of service or to expose sensitive information.

tags | advisory, remote, denial of service

systems | linux, ubuntu

Download | Favorite | View

Red Hat Security Advisory 2023-3641-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3641-01 - This release of Camel for Spring Boot 3.18.3.P2 serves as a replacement for Camel for Spring Boot 3.18.3.P1 and includes bug fixes and enhancements, which are documented in the Release Notes linked in the References. Issues addressed include denial of service, deserialization, resource exhaustion, and server-side request forgery vulnerabilities.

tags | advisory, denial of service, vulnerability

systems | linux, redhat

Download | Favorite | View

Red Hat Security Advisory 2023-3642-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3642-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. This new container image is based on Red Hat Ceph Storage 6.1 and Red Hat Enterprise Linux 9. Issues addressed include bypass, cross site scripting, denial of service, information leakage, spoofing, and traversal vulnerabilities.

tags | advisory, denial of service, spoof, vulnerability, xss

systems | linux, redhat

Download | Favorite | View

Debian Security Advisory 5429-1

Posted Jun 16, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5429-1 - Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, vulnerability, protocol

systems | linux, debian

Download | Favorite | View

Ubuntu Security Notice USN-6168-1

Posted Jun 16, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6168-1 - Gregory James Duck discovered that libx11 incorrectly handled certain Request, Event, or Error IDs. If a user were tricked into connecting to a malicious X Server, a remote attacker could possibly use this issue to cause libx11 to crash, resulting in a denial of service.

tags | advisory, remote, denial of service

systems | linux, ubuntu

Download | Favorite | View

Debian Security Advisory 5428-1

Posted Jun 16, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5428-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

tags | advisory, denial of service, arbitrary, info disclosure

systems | linux, debian

Download | Favorite | View

Red Hat Security Advisory 2023-3622-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3622-01 - Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include bypass, code execution, cross site request forgery, denial of service, information leakage, insecure permissions, and resource exhaustion vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution, csrf

systems | linux, redhat

Download | Favorite | View

Red Hat Security Advisory 2023-3624-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3624-01 - The Migration Toolkit for Containers enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API. Issues addressed include a denial of service vulnerability.

tags | advisory, web, denial of service

systems | linux, redhat

Download | Favorite | View

Red Hat Security Advisory 2023-3623-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3623-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. These new packages include numerous enhancements and bug fixes. Issues addressed include cross site scripting and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, xss

systems | linux, redhat

Download | Favorite | View

Ubuntu Security Notice USN-6155-2

Posted Jun 16, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6155-2 - USN-6155-1 fixed a vulnerability in Requests. This update provides the corresponding update for Ubuntu 16.04 ESM and 18.04 ESM. Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly leaked Proxy-Authorization headers. A remote attacker could possibly use this issue to obtain sensitive information.

tags | advisory, remote

systems | linux, ubuntu

Download | Favorite | View

Suricata IDPE 6.0.13

Posted Jun 16, 2023

Site suricata.io

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: 1 security fix, 11 bug fixes, 1 task, and 2 documentation updates.

tags | tool, intrusion detection

systems | unix

Download | Favorite | View

Debian Security Advisory 5427-1

Posted Jun 16, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5427-1 - An anonymous researcher discovered that processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited. An anonymous researcher discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

tags | advisory, web, arbitrary, code execution

systems | linux, debian, apple

Download | Favorite | View

Red Hat Security Advisory 2023-3610-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3610-01 - Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include bypass, code execution, cross site request forgery, cross site scripting, denial of service, memory exhaustion, and resource exhaustion vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution, xss, csrf

systems | linux, redhat

Download | Favorite | View

Textpattern CMS 4.8.8 Command Injection

Posted Jun 16, 2023

Authored by tmrswrr

Textpattern CMS version 4.8.8 suffers from a command injection vulnerability.

tags | exploit

Download | Favorite | View

WordPress Abandoned Cart Lite For WooCommerce 5.14.2 Authentication Bypass

Posted Jun 16, 2023

Authored by ayantaker | Site github.com

WordPress Abandoned Cart Lite for WooCommerce plugin versions 5.14.2 and below proof of concept authentication bypass exploit.

tags | exploit, proof of concept, bypass

Download | Favorite | View

Red Hat Security Advisory 2023-3609-01

Posted Jun 16, 2023

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3609-01 - Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform.

tags | advisory

systems | linux, redhat

Download | Favorite | View

CVE-2023-30223: Packet Storm

Debian Linux Security Advisory 5431-1 - Xu Biang discovered that missing input sanitizing in Sofia-SIP, a SIP User-Agent library could result in denial of service.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5431-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 16, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : sofia-sipCVE ID         : CVE-2023-32307Debian Bug     : 1036847Xu Biang discovered that missing input sanitising in Sofia-SIP, a SIPUser-Agent library could result in denial of service.For the oldstable distribution (bullseye), this problem has been fixedin version 1.12.11+20110422.1-2.1+deb11u2.We recommend that you upgrade your sofia-sip packages.For the detailed security status of sofia-sip please refer toits security tracker page at:https://security-tracker.debian.org/tracker/sofia-sipFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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EZ/C-----END PGP SIGNATURE-----

Debian Security Advisory 5431-1

Debian Linux Security Advisory 5430-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, information disclosure or bypass of sandbox restrictions.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5430-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 16, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : openjdk-17CVE ID         : CVE-2023-21930 CVE-2023-21937 CVE-2023-21938 CVE-2023-21939                 CVE-2023-21954 CVE-2023-21967 CVE-2023-21968Several vulnerabilities have been discovered in the OpenJDK Java runtime,which may result in denial of service, information disclosure or bypassof sandbox restrictions.For the oldstable distribution (bullseye), these problems have been fixedin version 17.0.7+7-1~deb11u1.For the stable distribution (bookworm), these problems have been fixed inversion 17.0.7+7-1~deb12u1.We recommend that you upgrade your openjdk-17 packages.For the detailed security status of openjdk-17 please refer toits security tracker page at:https://security-tracker.debian.org/tracker/openjdk-17Further information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmSMTIkACgkQEMKTtsN8Tjb5xg//TWO+b3Rk5o+tXlxldtCwtmDujIRm5e6cRGncr9L/9nfpSXk3TLpl1/y5Bh1SCHy7kqEuiDJF9phXclMcpw7BCNb2cyr2RQtaWQw/E3mmmq4LM6vXEVZXqSAyjGxbYx63p/TrxWzgmWPJS+yFadmy2jAGPXPtLhgP8BRUZlaZwsJOP8lPiN4WByIoqapIxy3yqCRzUOc+89CQtpSUGn5Vt2QFjOqZ/lIy4Bvf3/b2PQeCjTmlbWQIEOuIepEj4pnxi+Y+S/oKfXGps9DOyc55xCxHWTzl3co9GAQtBmoxtUfLZXEprPS8PGBMpJIewjB05FP2dduL3fv12FLhnF+GoE9dliQC+pUW3/GuibDVLe1pXXoMP6lyCKUMerjBdPkEZBWxoAO4gbMuvComapvORbNiCJXcJwof6c9U2iciwbrxJO4uVHYrBq0E6yYVfffxuvS65zLY3B7MBnxtVVFKAJpXxY0aF9usgJeqrggsUsQYaflFog+8s3H9jMM+rYoP31zaPxB8enS2fiQGuP4OFJb4yJoy8Xi1vy7D63c/T1h7lNptk9vfyZ6oDosBVBnYYvJVJRghUTzg/v1AJm1AgpbZebASLXTmgPKt+Ce7MuO4TJjs+O8N5fimQ1KGf1K+AFDYPpTsagJNamE+dXD+ITGSnBimUy7FB3DZJ579cRQ=SwZ/-----END PGP SIGNATURE-----

Debian Security Advisory 5430-1

Debian Linux Security Advisory 5429-1 - Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5429-1                   security@debian.org  
https://www.debian.org/security/                       Moritz Muehlenhoff  
June 15, 2023                         https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : wireshark  
CVE ID         : CVE-2023-0666 CVE-2023-0668 CVE-2023-1161 CVE-2023-1992  
                 CVE-2023-1993 CVE-2023-1994 CVE-2023-2854 CVE-2023-2855  
                 CVE-2023-2856 CVE-2023-2857 CVE-2023-2858 CVE-2023-2879  
                 CVE-2023-2952

Multiple vulnerabilities have been discocvered in Wireshark, a network  
protocol analyzer which could result in denial of service or the  
execution of arbitrary code.

For the stable distribution (bookworm), these problems have been fixed in  
version 4.0.6-1~deb12u1.

We recommend that you upgrade your wireshark packages.

For the detailed security status of wireshark please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/wireshark

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmSLUgEACgkQEMKTtsN8  
Tjb1eA//ZRvTFE+TUSJE6M81F5ul/jUvJr9BXp0yrMMO2PUhD364FNFNr7rTEKqI  
csL6Tn7ovBlMvp+DTczWb0A5Kvk6/VdYXo92u4sErOSu+m6d0klOX7hwQbzg7fmp  
t3LwJz/eVHDIBgNY7NCGVHgWJ2OpOSPtvo78Qejd9SpXATFv/OzsPKL3rhfgoxj8  
KY49mZqvPaRp3m60LSJigNhXtb14RNoyGQpYYBnsIDAkGUR+gb9Hr7PLhbMGdvJk  
XeQXwZsqp2HFdxOEKdwDPABpltBUjpClycD2sMzmXhgEdcbyuAFgvVWWmLxtgIxt  
3bvFXTpQ8SSePWKCZaOnrWnmtUzrkN1WKyfrlwvB3zY+H7QDO66nSuRvQ0+8dJoJ  
fCKn9H14B8BqcynRJEanJzNZ13rvV5l1843Is17SbY8KmBAEGADmYckvx3d1kGDm  
FGNC5tqdAmoZCuXHzfZuN5rWWdBMV3Z18QN1gpv0LdEh5hQf6fzb1M0xcuibbVh6  
a6b3RTtwNQtH+BUcaD+Ma64zpjQShHJ9NyjC0F2MhJBFpWRiwvO+mgtVxmRPkFZf  
x0OvOT+7koUOut1MiaKMEwbEIYZP9lCD6+WMtv2xaJW7BrCmSneVHNXH56707D7k  
nfnh5Y9t0G5NT70NhOutdgokTvfjoEQln6kSG2t80nWScRyYWek=4yeF  
-----END PGP SIGNATURE-----

Debian Security Advisory 5429-1

Debian Linux Security Advisory 5428-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5428-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 15, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2023-3214 CVE-2023-3215 CVE-2023-3216 CVE-2023-3217Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.For the oldstable distribution (bullseye), these problems have been fixedin version 114.0.5735.133-1~deb11u1.For the stable distribution (bookworm), these problems have been fixed inversion 114.0.5735.133-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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Y/wM-----END PGP SIGNATURE-----

Debian Security Advisory 5428-1

Debian Linux Security Advisory 5427-1 - An anonymous researcher discovered that processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited. An anonymous researcher discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5427-1                   security@debian.org  
https://www.debian.org/security/                           Alberto Garcia  
June 15, 2023                         https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : webkit2gtk  
CVE ID         : CVE-2023-28204 CVE-2023-32373

The following vulnerabilities have been discovered in the WebKitGTK  
web engine:

CVE-2023-28204

    An anonymous researcher discovered that processing web content may  
    disclose sensitive information. Apple is aware of a report that  
    this issue may have been actively exploited.

CVE-2023-32373

    An anonymous researcher discovered that processing maliciously  
    crafted web content may lead to arbitrary code execution. Apple is  
    aware of a report that this issue may have been actively  
    exploited.

For the oldstable distribution (bullseye), these problems have been fixed  
in version 2.40.2-1~deb11u1.

For the stable distribution (bookworm), these problems have been fixed in  
version 2.40.2-1~deb12u1.

We recommend that you upgrade your webkit2gtk packages.

For the detailed security status of webkit2gtk please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/webkit2gtk

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEYrwugQBKzlHMYFizAAyEYu0C2AIFAmSK0g8ACgkQAAyEYu0C  
2AIVPg//Vh8OJD3fkTkB8ePh5jwWASA23wSZXKZ3PH3MbZu7bVHkJxkNrAjz7pkN  
PRdgVtVE2la3/aYxj4iRjCbwuF+r60XRJYacgmVNtdRBcKYl2erVglwbhwfKXmDC  
Ayr9sR8XwkhAVR/UqjqtyYgzRjcwuIllD3ys7VoC+8tdSeRkckGCj5Rlr64IXjYi  
unK0CijMbK0rty0Cx6rexNvMmOLBfjkKQUEAngcQoELy6xsRrErKQDN4Wytj7iqX  
Gwoy1mb9aawqA3COHOJud+JgUQUUfkcUm9fSF/gB8WTYu1gOPrhM9Yiqy28b6IdN  
0lldT+QUSU6W+LsxEkFSpnm964tvDTycJGMrsCYdl/KgNxGN77PJVP9lhj0TTscq  
53a4eCjD4B1Yv2YlnJOdaD3bYEyEA2Xy9lYCja2TzfrZIOpdNngBjIdqJhLiXDlr  
5WZRb26Q+vS0lI4FAzqI6oPOlKbx180id0hzUbFz6RkZVGRG1sHUpEoE75ta4qGr  
a6EDfSHQ1WKhMGnlrFLeryjeYqdBjSYPtwFAV6YNoExqc53BwsQ9F13B2CMksjwr  
RZxNK6YKTJc7+93FG7cCuc3D1tjr8O7lp2PCKRUq8e465ewxtUdxMn7bxadE9oFT  
SVEmuIRMOiLGPcJHndUk17EHAM9aD+pB+qH0US8mDt4G0+jKqOA=o9jr  
-----END PGP SIGNATURE-----

Tag

#debian