Windows Internet Information Services Cachuri Module Denial of Service Vulnerability.

CVE-2022-22025

Internet Information Services Dynamic Compression Module Denial of Service Vulnerability.

CVE-2022-22040

Windows Security Account Manager (SAM) Denial of Service Vulnerability.

CVE-2022-30208

Implemented protections on AWS credentials that were not properly protected.

**WDC Tracking Number:** WDC-22009  
**Published:** July 11, 2022

**Last Updated:** July 11, 2022

**Description**

My Cloud Home Firmware 8.7.0-107 is a major release containing updates to help improve the security of your My Cloud Home devices. Numerous changes were made to the operating system to comprehensively improve its security and to upgrade the user experience to support our latest technologies.

The base operating system has been upgraded from an Android based operating system to the Linux operating system to align with security and stability updates from Debian 10 “Buster”.

Additionally, the Linux kernel has been updated to 4.9.266.

Your My Cloud Home device will be automatically updated to reflect the latest firmware version.    

**Product Impact**

**Minimum Fix Version**

**Last Updated**

My Cloud Home

8.7.0-107

July 8, 2022

My Cloud Home Duo

8.7.0-107

July 8, 2022

For more information on the latest security updates, see the release notes.

**Advisory Summary**

A vulnerability in the Linux kernel’s cgroup\_release\_agent\_write was addressed that could lead to escalation of privileges and bypass namespace isolation unexpectedly.  

Addressed an issue in OpenSSL that would make it possible to trigger an infinite loop by crafting a certificate that has invalid elliptic curve parameters. Since certificate parsing takes place before the certificate signature verification process, this could lead to a denial-of-service attack.

**CVE Number:** CVE-2022-0778  

Addressed a memory copy vulnerability in the Linux Wi-Fi driver.  

Addressed a command injection attack that could allow a malicious attacker on the same LAN to carry out a DNS spoofing attack via an unsecured HTTP call. This was done by removing the affected code from the product.

**CVE Number:** CVE-2022-22991, CVE-2022-22994

Reported By: Martin Rakhmanov (@mrakhmanov) working with Trend Micro’s Zero Day Initiative  

A vulnerability was discovered within the parsing of extended attributes (EA) metadata when opening a file in smbd. This vulnerability can be exploited by unauthenticated users if they are allowed write access to file extended attributes. This vulnerability was addressed by removing the "fruit" VFS module from the list of configured VFS objects and by changing EA support configurations.

**CVE Number:** CVE-2021-44142

Reported By: Nguyen Hoang Thach (@hi\_im\_d4rkn3ss) and Billy Jheng Bing-Jhong (@st424204) working with Trend Micro’s Zero Day Initiative  

Addressed multiple FFmpeg vulnerabilities by updating the version to 7:4.1.8-0+deb10u1.

**CVE Number:** CVE-2020-20445, CVE-2020-20446, CVE-2020-20453, CVE-2020-21041, CVE-2020-22015, CVE-2020-22016, CVE-2020-22017, CVE-2020-22019, CVE-2020-22020, CVE-2020-22021, CVE-2020-22022, CVE-2020-22023, CVE-2020-22025, CVE-2020-22026, CVE-2020-22027, CVE-2020-22028, CVE-2020-22029, CVE-2020-22030, CVE-2020-22031, CVE-2020-22032, CVE-2020-22033, CVE-2020-22034, CVE-2020-22035, CVE-2020-22036, CVE-2020-22037, CVE-2020-22049, CVE-2020-22054, CVE-2020-35965, CVE-2021-38114, CVE-2021-38171, CVE-2021-38291  

Addressed multiple FFmpeg vulnerabilities by updating the version to 7:4.1.9-0+deb10u1.  

Implemented firmware signing to prevent malicious modifications to the firmware and verify the firmware’s authenticity and integrity.  

Transitioned to Go’s crypto/tls library for secure communications.  

Enabled several kernel hardening options to make exploits of kernel and userland security bugs more difficult to develop.  

Addressed a remote code execution vulnerability by resolving a command injection vulnerability and closing an AWS S3 bucket that potentially allowed an attacker to execute unsigned code on My Cloud Home devices. Implemented protections on AWS credentials that were not properly protected..

**CVE Number:** CVE-2022-22997, CVE-2022-22998

Western Digital would like to thank Viettel Cyber Security for reporting this issue.  

Addressed multiple libtiff null pointer dereference vulnerabilities by updating the version to 4.4.0.

**CVE Number:** CVE-2022-0562, CVE-2022-0561, CVE-2022-0865  

Addressed an improper input validation and out-of-bounds write vulnerability in TensorFlow which is an open-source platform for machine learning. An attacker could pass negative values to cause a segmentation fault-based denial-of-service attack. Certain components also did not validate input arguments which could also trigger a denial-of-service attack.

**CVE Number:** CVE-2022-29191, CVE-2022-29213, CVE-2022-29208

CVE-2022-22998: WDC-22009 My Cloud Home Firmware Version 8.7.0-107 | Western Digital

A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the get_keys() function. This flaw leads to a denial of service, either by mistake or malicious actor.

**Red Hat Product Security Center**

Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

Product Security Center

CVE-2022-2211: Red Hat Customer Portal - Access to 24x7 support and knowledge

Pyramid Solutions' affected products, the Developer and DLL kits for EtherNet/IP Adapter and EtherNet/IP Scanner, are vulnerable to an out-of-bounds write, which may allow an unauthorized attacker to send a specially crafted packet that may result in a denial-of-service condition.

CVE-2022-1737

Ubuntu Security Notice 5510-1 - Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain inputs. An attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code and escalate privileges.

==========================================================================  
Ubuntu Security Notice USN-5510-1  
July 12, 2022

xorg-server, xorg-server-hwe-18.04, xwayland vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 21.10  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in X.Org X Server.

Software Description:  
- xorg-server: X.Org X11 server  
- xwayland: Xwayland X server  
- xorg-server-hwe-18.04: X.Org X11 server

Details:

Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled  
certain inputs. An attacker could use this issue to cause the server to  
crash, resulting in a denial of service, or possibly execute arbitrary  
code and escalate privileges.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS:  
  xserver-xorg-core               2:21.1.3-2ubuntu2.1  
  xwayland                        2:22.1.1-1ubuntu0.1

Ubuntu 21.10:  
  xserver-xorg-core               2:1.20.13-1ubuntu1.2  
  xwayland                        2:21.1.2-0ubuntu1.2

Ubuntu 20.04 LTS:  
  xserver-xorg-core               2:1.20.13-1ubuntu1~20.04.3  
  xwayland                        2:1.20.13-1ubuntu1~20.04.3

Ubuntu 18.04 LTS:  
  xserver-xorg-core               2:1.19.6-1ubuntu4.11  
  xserver-xorg-core-hwe-18.04     2:1.20.8-2ubuntu2.2~18.04.7  
  xwayland                        2:1.19.6-1ubuntu4.11  
  xwayland-hwe-18.04              2:1.20.8-2ubuntu2.2~18.04.7

After a standard system update you need to reboot your computer to make all  
the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-5510-1  
  CVE-2022-2319, CVE-2022-2320

Package Information:  
  https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.3-2ubuntu2.1  
  https://launchpad.net/ubuntu/+source/xwayland/2:22.1.1-1ubuntu0.1  
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.20.13-1ubuntu1.2  
  https://launchpad.net/ubuntu/+source/xwayland/2:21.1.2-0ubuntu1.2  
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.20.13-1ubuntu1~20.04.3  
  https://launchpad.net/ubuntu/+source/xorg-server/2:1.19.6-1ubuntu4.11

https://launchpad.net/ubuntu/+source/xorg-server-hwe-18.04/2:1.20.8-2ubuntu2.2~18.04.7

Ubuntu Security Notice USN-5510-1

Ubuntu Security Notice 5508-1 - It was discovered that Python LDAP incorrectly handled certain regular expressions. An remote attacker could possibly use this issue to cause a denial of service.

=========================================================================  
Ubuntu Security Notice USN-5508-1  
July 11, 2022

python-ldap vulnerability  
=========================================================================  
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 21.10  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS

Summary:

Python LDAP could be made to denial of service if it received a specially  
crafted regular expression.

Software Description:  
- python-ldap: LDAP interface module for Python3

Details:

It was discovered that Python LDAP incorrectly handled certain regular expressions.  
An remote attacker could possibly use this issue to cause a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS:  
  python3-ldap                    3.2.0-4ubuntu7.1  
  python3-pyldap                  3.2.0-4ubuntu7.1

Ubuntu 21.10:  
  python3-ldap                    3.2.0-4ubuntu5.1  
  python3-pyldap                  3.2.0-4ubuntu5.1

Ubuntu 20.04 LTS:  
  python3-ldap                    3.2.0-4ubuntu2.1  
  python3-pyldap                  3.2.0-4ubuntu2.1

Ubuntu 18.04 LTS:  
  python-ldap                     3.0.0-1ubuntu0.2  
  python-pyldap                   3.0.0-1ubuntu0.2  
  python3-ldap                    3.0.0-1ubuntu0.2  
  python3-pyldap                  3.0.0-1ubuntu0.2

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-5508-1  
  CVE-2021-46823

Package Information:  
  https://launchpad.net/ubuntu/+source/python-ldap/3.2.0-4ubuntu7.1  
  https://launchpad.net/ubuntu/+source/python-ldap/3.2.0-4ubuntu5.1  
  https://launchpad.net/ubuntu/+source/python-ldap/3.2.0-4ubuntu2.1  
  https://launchpad.net/ubuntu/+source/python-ldap/3.0.0-1ubuntu0.2

Ubuntu Security Notice USN-5508-1

IBM QRadar SIEM 7.3, 7.4, and 7.5 may be vulnerable to partial denial of service attack, resulting in some protocols not listening to specified ports. IBM X-Force ID: 214028.

**Security Bulletin**

  

**Summary**

The Common and TCPMultilineSyslog protocol components as used by IBM QRadar SIEM contain vulnerabilities which may allow for denial of service attacks. IBM has addressed the relevant CVE.

**Vulnerability Details**

**CVEID:**   CVE-2021-39041  
**DESCRIPTION:**   IBM QRadar SIEM may be vulnerable to partial denial of service attack, resulting in some protocols not listening to specified ports.  
CVSS Base score: 3.7  
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/214028 for the current score.  
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

**Affected Products and Versions**

**Affected Product(s)**

**Version(s)**

IBM QRadar SIEM v7.3

All PROTOCOL-Common versions before PROTOCOL-Common-7.3-20220608132603

All PROTOCOL-TCPMultilineSyslog versions before PROTOCOL-TCPMultilineSyslog-7.3-20220531145432

IBM QRadar SIEM v7.4

All PROTOCOL-Common versions before PROTOCOL-Common-7.4-20220608234024

All PROTOCOL-TCPMultilineSyslog versions before PROTOCOL-TCPMultilineSyslog-7.4-20220531145346

IBM QRadar SIEM v7.5

All PROTOCOL-Common versions before PROTOCOL-Common-7.5-20220608234038

All PROTOCOL-TCPMultilineSyslog versions before PROTOCOL-TCPMultilineSyslog-7.5-20220531145302

**Workarounds and Mitigations**

None

**References**

Off

**Acknowledgement**

**Change History**

11 Jul 2022: Initial Publication

\*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

**Disclaimer**

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES ""AS IS"" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY. In addition to other efforts to address potential vulnerabilities, IBM periodically updates the record of components contained in our product offerings. As part of that effort, if IBM identifies previously unidentified packages in a product/service inventory, we address relevant vulnerabilities regardless of CVE date. Inclusion of an older CVEID does not demonstrate that the referenced product has been used by IBM since that date, nor that IBM was aware of a vulnerability as of that date. We are making clients aware of relevant vulnerabilities as we become aware of them. "Affected Products and Versions" referenced in IBM Security Bulletins are intended to be only products and versions that are supported by IBM and have not passed their end-of-support or warranty date. Thus, failure to reference unsupported or extended-support products and versions in this Security Bulletin does not constitute a determination by IBM that they are unaffected by the vulnerability. Reference to one or more unsupported versions in this Security Bulletin shall not create an obligation for IBM to provide fixes for any unsupported or extended-support products or versions.

**Document Location**

Worldwide

\[{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM QRadar SIEM"},"Component":"","Platform":\[{"code":"PF016","label":"Linux"}\],"Version":"7.3, 7.4, 7.5","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM QRadar SIEM"},"Component":"","Platform":\[{"code":"PF016","label":"Linux"}\],"Version":"7.4.0","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM QRadar SIEM"},"Component":"","Platform":\[{"code":"PF016","label":"Linux"}\],"Version":"7.5.0","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}\]

CVE-2021-39041: Security Bulletin: IBM QRadar SIEM is vulnerable to denial of service attack due to CVE-2021-39041

Nautilus treadmills T616 S/N 100672PRO21140001 through 100672PRO21171980 and T618 S/N 100647PRO21130111 through 100647PRO21183960 with software before 2022-06-09 allow physically proximate attackers to cause a denial of service (fall) by connecting the power cord to a 120V circuit (which may lead to self-starting at an inopportune time).

*   Recalled Nautilus T618 Treadmill
    
*   Recalled Nautilus T616 Treadmill
    

Name of Product:

Nautilus Treadmills

Hazard:

The treadmills can start on their own, posing a fall hazard to a user.

Recall Date:

June 09, 2022

**Recall Details**

Description:

This recall involves Nautilus treadmills with model number T616 and serial numbers 100672PRO21140001 through 100672PRO21171980 and with model number T618 and serial numbers 100647PRO21130111 through 100647PRO21183960.  Nautilus and the model number are printed on the plastic shroud at the front of the treadmill’s walking belt. The serial number is on the base-frame of the treadmill beneath the belt.

Remedy:

Consumers should immediately stop using the recalled treadmills and contact Nautilus to receive a free USB flash drive with a software upgrade and installation instructions. Nautilus will automatically ship the USB flash drive and instructions at no cost to customers who purchased the treadmills directly from Nautilus. The instructions will direct consumers to plug the flash drive into the USB port on the treadmill to upload the software upgrade. 

Incidents/Injuries:

Nautilus has received 21 reports of the treadmills self-starting. No injuries have been reported.

Sold At:

Best Buy, Walmart and other stores nationwide and online at www.Nautilus.com and www.Amazon.com from April 2021 through November 2021 for about $1,150 for Model T616 and about $1,500 for Model T618.

Manufacturer(s):

Zhejiang Arcana Power Health Tech. CO. LTD., of China

Importer(s):

Nautilus Inc., of Vancouver, Wash.

This recall was conducted, voluntarily by the company, under CPSC’s Fast Track Recall process. Fast Track recalls are initiated by firms, who commit to work with CPSC to quickly announce the recall and remedy to protect consumers.

About the U.S. CPSC

The U.S. Consumer Product Safety Commission (CPSC) is charged with protecting the public from unreasonable risk of injury or death associated with the use of thousands of types of consumer products. Deaths, injuries, and property damage from consumer product-related incidents cost the nation more than $1 trillion annually. CPSC's work to ensure the safety of consumer products has contributed to a decline in the rate of injuries associated with consumer products over the past 50 years.

Federal law prohibits any person from selling products subject to a Commission ordered recall or a voluntary recall undertaken in consultation with the CPSC.

For lifesaving information:

*   Visit CPSC.gov.
*   Sign up to receive our e-mail alerts.
*   Follow us on Facebook, Instagram @USCPSC and Twitter @USCPSC.
*   Report a dangerous product or a product-related injury on www.SaferProducts.gov.
*   Call CPSC’s Hotline at 800-638-2772 (TTY 301-595-7054).
*   Contact a media specialist.

Tag

#dos