Cross Site Scripting vulnerability in Summernote Rich Text Editor v.0.8.18 and before allows a remote attacker to execute arbitrary code via a crafted script to the insert link function in the editor component.

**Super Simple WYSIWYG  
Editor on Bootstrap**

hi,  
we are summernote.  
please, write text here!  
super simple WYSIWYG editor on Bootstrap

**Easy to Install**

Simply download and attach your js, css with bootstrap.

**Customization**

Customize by Initializing various options and modules.  

**Examples**

See all useful features of summernote in action.

**Open Source**

Summernote is licensed under MIT and maintained by the community.

**Integration**

Integrate it with any back-end. 3rd parties available in django, rails, angular.

**Features**

*   Supports Bootstrap 3.x.x to 5.x.x
*   Lightweight (js+css: 100Kb)
*   Smart User Interaction
*   Works in all Major Browsers:
    *   Safari, Chrome, Firefox, Opera, Edge and Internet Explorer 9+
*   Works in all Major Operating Systems:
    *   Windows, MacOS, Linux

**Donate**

**Ad**

We're using BrowserStack for testing!

**Much appreciate to all contributors! Together and further...**

Contributors

CVE-2023-42371: Summernote - Super Simple WYSIWYG editor

Gentoo Linux Security Advisory 202309-8 - A vulnerability has been discovered in Requests which could result in the disclosure of plaintext secrets. Versions greater than or equal to 2.31.0 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202309-08  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Requests: Information Leak  
     Date: September 17, 2023  
     Bugs: #906970  
       ID: 202309-08

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

A vulnerability has been discovered in Requests which could result in  
the disclosure of plaintext secrets.

Background  
==========

Requests is an HTTP library for human beings.

Affected packages  
=================

Package              Vulnerable    Unaffected  
-------------------  ------------  ------------  
dev-python/requests  < 2.31.0      >= 2.31.0

Description  
===========

Requests is vulnerable to potentially leaking Proxy-Authorization  
headers to destination servers, specifically during redirects to an  
HTTPS origin with authentication credentials encoded into the URL.

Impact  
======

Users' proxy authentication secrets could be disclosed to parties beyond  
the used HTTP proxy server.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All Requests users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=dev-python/requests-2.31.0"

References  
==========

[ 1 ] CVE-2023-32681  
      https://nvd.nist.gov/vuln/detail/CVE-2023-32681  
[ 2 ] GHSA-j8r2-6x86-q33q

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202309-08

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-08

Gentoo Linux Security Advisory 202309-7 - Multiple vulnerabilities have been discovered in Binwalk, the worst of which could result in remote code execution. Versions greater than or equal to 2.3.4 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202309-07  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: Binwalk: Multiple Vulnerabilities  
     Date: September 17, 2023  
     Bugs: #820614, #903652  
       ID: 202309-07

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

Multiple vulnerabilities have been discovered in Binwalk, the worst of  
which could result in remote code execution.

Background  
==========

Binwalk is a tool for identifying files embedded inside firmware images.

Affected packages  
=================

Package           Vulnerable    Unaffected  
----------------  ------------  ------------  
app-misc/binwalk  < 2.3.4       >= 2.3.4

Description  
===========

Multiple vulnerabilities have been discovered in Binwalk. Please review  
the CVE identifiers referenced below for details.

Impact  
======

Please review the referenced CVE identifiers for details.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All Binwalk users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-misc/binwalk-2.3.4"

References  
==========

[ 1 ] CVE-2022-4510  
      https://nvd.nist.gov/vuln/detail/CVE-2022-4510

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202309-07

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-07

Razer Synapse versions before 3.8.0428.042117 (20230601) suffer from multiple vulnerabilities. Due to an unsafe installation path, improper privilege management, and a time-of-check time-of-use race condition, the associated system service "Razer Synapse Service" is vulnerable to DLL hijacking. As a result, local Windows users can abuse the Razer driver installer to obtain administrative privileges on Windows.

Advisory ID:               SYSS-2023-002  
Product:                   Razer Synapse  
Manufacturer:              Razer Inc.  
Affected Version(s):       Versions before 3.8.0428.042117 (20230601)  
Tested Version(s):         3.8.0228.022313 (20230315)  
                            under Windows 10 Pro (10.0.19044)  
                            under Windows 11 Home (10.0.22621)  
Vulnerability Type:        Improper Privilege Management (CWE-269)  
                            Time-of-check Time-of-use Race Condition   
(CWE-367)  
Risk Level:                High  
Solution Status:           Fixed  
Manufacturer Notification: 2023-03-23  
Solution Date:             2023-04-28  
Public Disclosure:         2023-08-31  
CVE Reference:             CVE-2022-47631  
Author of Advisory:        Dr. Oliver Schwarz, SySS GmbH

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Overview:

Razer Synapse is an additional driver software for Razer gaming devices.  
The manufacturer describes the product as a "unified cloud-based  
hardware configuration tool" (see [1]).

Due to an unsafe installation path, improper privilege management, and a  
time-of-check time-of-use race condition, the associated system service  
"Razer Synapse Service" is vulnerable to DLL hijacking.  
As a result, local Windows users can abuse the Razer driver installer to  
obtain administrative privileges on Windows.

In order to exploit the vulnerability, the attacker needs physical  
access to the machine and needs to prepare the attack before Razer  
Synapse is installed along with a Razer driver.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Vulnerability Details:

The attack scenario considers a Windows machine without any previous  
installation of any Razer device or software.  
The attacker has a local unprivileged Windows account, physical access  
to the machine, and a device which is either a Razer peripheral or able  
to pretend to be one (such as a Bash Bunny or a Raspberry Pi Zero).  
The attacker aims at executing code with full system privileges.

The attack exploits the Razer Synapse Service which runs with elevated  
privileges. While the main binary of the service is stored in the  
protected location "C:\Program Files (x86)\Razer\Synapse3\Service", it  
dynamically loads libraries from  
"C:\ProgramData\Razer\Synapse3\Service\bin".  
Before the installation, standard users can write to this path, since  
"C:\ProgramData" is world-writable on a standard installation of  
Windows.

The Synapse installation procedure changes access privileges, so that  
standard users cannot write to the path any longer.  
However, if the path is created before the driver installation, the  
creator can set own files to be read-only and deny write access for  
the SYSTEM user.

Upon start, the Synapse service checks the location for foreign DLLs,  
removes them, and aborts upon failure to delete them.  
However, due to a time-of-check time-of-use race condition, attackers  
can replace a benign DLL after it has been checked and before it is  
loaded.

Note that the described vulnerability is similar to CVE-2021-44226  
(SYSS-2021-058) and CVE-2022-47632 (SYSS-2022-047), which Razer Inc.  
fixed in March and September of 2022, respectively.  
The new attack differs from the earlier ones in that the attacker  
now has to exploit a race condition.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Proof of Concept (PoC):

The attack consists of the following steps:

1. Before the installation of the driver/Synapse, the attacker creates  
    "C:\ProgramData\Razer\Synapse3\Service\bin", copies a custom  
    malicious version of userenv.dll into the directory, sets the DLL to  
    read-only, and denies write access for SYSTEM.

2. Afterwards, the attacker triggers the installation of Synapse.  
    This can be done without any elevated privileges by plugging in a  
    Razer device and following the installation procedure for Synapse  
    if device-specific co-installers are not disabled.  
    Alternatively, a device such as Bash Bunny or a Raspberry Pi Zero  
    can be used and pretend to be a Razer device.

3. With the help of a script, the attacker monitors the installation  
    progress. As soon as legitimate DLL files show up in the directory,  
    the attacker temporarily overwrites the malicious DLL with a  
    legitimate one, waits for the DLL to be assessed (i.e., read), and  
    then quickly copies back the malicious content to the DLL before it  
    is actually loaded and executed.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Solution:

Razer has published a patched version that will be deployed automatically  
upon driver installation on current Windows builds.

To prevent similar attacks through other co-installers, system  
administrators can disable them by setting the following key in the  
Windows registry:  
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Device   
Installer\DisableCoInstallers = 1

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Disclosure Timeline:

2022-12-19: Vulnerability discovered  
2023-03-23: Vulnerability reported to manufacturer  
2023-04-28: Patch released by manufacturer  
2023-08-31: Public disclosure of vulnerability

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

References:

[1] Product website for Razer Synapse 3  
     https://www2.razer.com/eu-en/synapse-3  
[2] SySS Security Advisory SYSS-2023-002

 https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-002.txt  
[3] SySS Responsible Disclosure Policy  
     https://www.syss.de/en/responsible-disclosure-policy  
[4] SySS Proof of Concept Video  
     https://youtu.be/0myDcqmtt0U  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Credits:

This security vulnerability was found by Dr. Oliver Schwarz of SySS GmbH.

E-Mail: oliver.schwarz@syss.de  
Public Key:   
https://www.syss.de/fileadmin/dokumente/PGPKeys/Oliver_Schwarz.asc  
Key ID: 0x9716294F1294280D  
Key Fingerprint: D452 B014 E992 2886 E799 6B43 9716 294F 1294 280D

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Disclaimer:

The information provided in this security advisory is provided "as is"  
and without warranty of any kind. Details of this security advisory may  
be updated in order to provide as accurate information as possible. The  
latest version of this security advisory is available on the SySS Web  
site.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Copyright:

Creative Commons - Attribution (by) - Version 3.0  
URL: https://creativecommons.org/licenses/by/3.0/deed.en

Razer Synapse Race Condition / DLL Hijacking

Gentoo Linux Security Advisory 202309-6 - Multiple vulnerabilities have been discovered in Samba, the worst of which could result in root remote code execution. Versions greater than or equal to 4.18.4 are affected.

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Gentoo Linux Security Advisory                           GLSA 202309-06- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -                                           https://security.gentoo.org/- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High    Title: Samba: Multiple Vulnerabilities     Date: September 17, 2023     Bugs: #820566, #821688, #830983, #832433, #861512, #866225, #869122, #878273, #880437, #886153, #903621, #905320, #910334       ID: 202309-06- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Synopsis========Multiple vulnerabilities have been discovered in Samba, the worst ofwhich could result in root remote code execution.Background==========Samba is a suite of SMB and CIFS client/server programs.Affected packages=================Package       Vulnerable    Unaffected------------  ------------  ------------net-fs/samba  < 4.18.4      >= 4.18.4Description===========Multiple vulnerabilities have been discovered in Samba. Please reviewthe CVE identifiers referenced below for details.Impact======Please review the referenced CVE identifiers for details.Workaround==========There is no known workaround at this time.Resolution==========All Samba users should upgrade to the latest version:  # emerge --sync  # emerge --ask --oneshot --verbose ">=net-fs/samba-4.18.4"References==========[ 1 ] CVE-2007-4559      https://nvd.nist.gov/vuln/detail/CVE-2007-4559[ 2 ] CVE-2016-2124      https://nvd.nist.gov/vuln/detail/CVE-2016-2124[ 3 ] CVE-2020-17049      https://nvd.nist.gov/vuln/detail/CVE-2020-17049[ 4 ] CVE-2020-25717      https://nvd.nist.gov/vuln/detail/CVE-2020-25717[ 5 ] CVE-2020-25718      https://nvd.nist.gov/vuln/detail/CVE-2020-25718[ 6 ] CVE-2020-25719      https://nvd.nist.gov/vuln/detail/CVE-2020-25719[ 7 ] CVE-2020-25721      https://nvd.nist.gov/vuln/detail/CVE-2020-25721[ 8 ] CVE-2020-25722      https://nvd.nist.gov/vuln/detail/CVE-2020-25722[ 9 ] CVE-2021-3670      https://nvd.nist.gov/vuln/detail/CVE-2021-3670[ 10 ] CVE-2021-3738      https://nvd.nist.gov/vuln/detail/CVE-2021-3738[ 11 ] CVE-2021-20251      https://nvd.nist.gov/vuln/detail/CVE-2021-20251[ 12 ] CVE-2021-20316      https://nvd.nist.gov/vuln/detail/CVE-2021-20316[ 13 ] CVE-2021-23192      https://nvd.nist.gov/vuln/detail/CVE-2021-23192[ 14 ] CVE-2021-44141      https://nvd.nist.gov/vuln/detail/CVE-2021-44141[ 15 ] CVE-2021-44142      https://nvd.nist.gov/vuln/detail/CVE-2021-44142[ 16 ] CVE-2022-0336      https://nvd.nist.gov/vuln/detail/CVE-2022-0336[ 17 ] CVE-2022-1615      https://nvd.nist.gov/vuln/detail/CVE-2022-1615[ 18 ] CVE-2022-2031      https://nvd.nist.gov/vuln/detail/CVE-2022-2031[ 19 ] CVE-2022-3437      https://nvd.nist.gov/vuln/detail/CVE-2022-3437[ 20 ] CVE-2022-3592      https://nvd.nist.gov/vuln/detail/CVE-2022-3592[ 21 ] CVE-2022-32742      https://nvd.nist.gov/vuln/detail/CVE-2022-32742[ 22 ] CVE-2022-32743      https://nvd.nist.gov/vuln/detail/CVE-2022-32743[ 23 ] CVE-2022-32744      https://nvd.nist.gov/vuln/detail/CVE-2022-32744[ 24 ] CVE-2022-32745      https://nvd.nist.gov/vuln/detail/CVE-2022-32745[ 25 ] CVE-2022-32746      https://nvd.nist.gov/vuln/detail/CVE-2022-32746[ 26 ] CVE-2022-37966      https://nvd.nist.gov/vuln/detail/CVE-2022-37966[ 27 ] CVE-2022-37967      https://nvd.nist.gov/vuln/detail/CVE-2022-37967[ 28 ] CVE-2022-38023      https://nvd.nist.gov/vuln/detail/CVE-2022-38023[ 29 ] CVE-2022-42898      https://nvd.nist.gov/vuln/detail/CVE-2022-42898[ 30 ] CVE-2022-45141      https://nvd.nist.gov/vuln/detail/CVE-2022-45141[ 31 ] CVE-2023-0225      https://nvd.nist.gov/vuln/detail/CVE-2023-0225[ 32 ] CVE-2023-0614      https://nvd.nist.gov/vuln/detail/CVE-2023-0614[ 33 ] CVE-2023-0922      https://nvd.nist.gov/vuln/detail/CVE-2023-0922Availability============This GLSA and any updates to it are available for viewing atthe Gentoo Security Website: https://security.gentoo.org/glsa/202309-06Concerns?=========Security is a primary focus of Gentoo Linux and ensuring theconfidentiality and security of our users' machines is of utmostimportance to us. Any security concerns should be addressed tosecurity@gentoo.org or alternatively, you may file a bug athttps://bugs.gentoo.org.License=======Copyright 2023 Gentoo Foundation, Inc; referenced textbelongs to its owner(s).The contents of this document are licensed under theCreative Commons - Attribution / Share Alike license.https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-06

Gentoo Linux Security Advisory 202309-4 - An arbitrary file overwrite vulnerability has been discovered in RAR and UnRAR, potentially resulting in arbitrary code execution. Versions greater than or equal to 6.23 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202309-04  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: RAR, UnRAR: Arbitrary File Overwrite  
     Date: September 17, 2023  
     Bugs: #843611, #849686, #912652  
       ID: 202309-04

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

An arbitrary file overwrite vulnerability has been discovered in RAR and  
UnRAR, potentially resulting in arbitrary code execution.

Background  
==========

RAR and UnRAR provide command line interfaces for compressing and  
decompressing RAR files.

Affected packages  
=================

Package         Vulnerable    Unaffected  
--------------  ------------  ------------  
app-arch/rar    < 6.23        >= 6.23  
app-arch/unrar  < 6.2.10      >= 6.2.10

Description  
===========

Due to an error in the validation of symbolic links within archives, RAR  
and UnRAR can potentially write files to a directory which is outside of  
the intended unpack directory.

Impact  
======

If the user running RAR or UnRAR extracts a malicious archive, the  
archive could overwrite a file such as the user's shell initialization  
scripts, potentially resulting in arbitrary code execution in the  
context of that user.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All RAR users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-arch/rar-6.23"

All UnRAR users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-arch/unrar-6.2.10"

References  
==========

[ 1 ] CVE-2022-30333  
      https://nvd.nist.gov/vuln/detail/CVE-2022-30333

[ 2 ] CVE-2023-40477  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40477

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202309-04

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org [4].

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-04

Gentoo Linux Security Advisory 202309-3 - Multiple vulnerabilities have been discovered in GPL Ghostscript, the worst of which could result in remote code execution. Versions greater than or equal to 10.01.2 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202309-03  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: GPL Ghostscript: Multiple Vulnerabilities  
     Date: September 17, 2023  
     Bugs: #904245, #910294  
       ID: 202309-03

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

Multiple vulnerabilities have been discovered in GPL Ghostscript, the  
worst of which could result in remote code execution.

Background  
==========

Ghostscript is an interpreter for the PostScript language and for PDF.

Affected packages  
=================

Package                   Vulnerable    Unaffected  
------------------------  ------------  ------------  
app-text/ghostscript-gpl  < 10.01.2     >= 10.01.2

Description  
===========

Multiple vulnerabilities have been discovered in GPL Ghostscript. Please  
review the CVE identifiers referenced below for details.

Impact  
======

Please review the referenced CVE identifiers for details.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All GPL Ghostscript users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-text/ghostscript-gpl-10.01.2"

References  
==========

[ 1 ] CVE-2022-2085  
      https://nvd.nist.gov/vuln/detail/CVE-2022-2085  
[ 2 ] CVE-2023-28879  
      https://nvd.nist.gov/vuln/detail/CVE-2023-28879  
[ 3 ] CVE-2023-36664  
      https://nvd.nist.gov/vuln/detail/CVE-2023-36664

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202309-03

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-03

Gentoo Linux Security Advisory 202309-2 - Multiple vulnerabilities have been found in Wireshark, the worst of which could result in denial of service. Versions greater than or equal to 4.0.6 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202309-02  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Wireshark: Multiple Vulnerabilities  
     Date: September 17, 2023  
     Bugs: #878421, #899548, #904248, #907133  
       ID: 202309-02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

Multiple vulnerabilities have been found in Wireshark, the worst of  
which could result in denial of service.

Background  
==========

Wireshark is a versatile network protocol analyzer.

Affected packages  
=================

Package                 Vulnerable    Unaffected  
----------------------  ------------  ------------  
net-analyzer/wireshark  < 4.0.6       >= 4.0.6

Description  
===========

Multiple vulnerabilities have been discovered in Wireshark. Please  
review the CVE identifiers referenced below for details.

Impact  
======

Please review the referenced CVE identifiers for details.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All Wireshark users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-4.0.6"

References  
==========

[ 1 ] CVE-2022-3725  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3725  
[ 2 ] CVE-2023-0666  
      https://nvd.nist.gov/vuln/detail/CVE-2023-0666  
[ 3 ] CVE-2023-0667  
      https://nvd.nist.gov/vuln/detail/CVE-2023-0667  
[ 4 ] CVE-2023-0668  
      https://nvd.nist.gov/vuln/detail/CVE-2023-0668  
[ 5 ] CVE-2023-1161  
      https://nvd.nist.gov/vuln/detail/CVE-2023-1161  
[ 6 ] CVE-2023-1992  
      https://nvd.nist.gov/vuln/detail/CVE-2023-1992  
[ 7 ] CVE-2023-1993  
      https://nvd.nist.gov/vuln/detail/CVE-2023-1993  
[ 8 ] CVE-2023-1994  
      https://nvd.nist.gov/vuln/detail/CVE-2023-1994  
[ 9 ] CVE-2023-2854  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2854  
[ 10 ] CVE-2023-2855  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2855  
[ 11 ] CVE-2023-2856  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2856  
[ 12 ] CVE-2023-2857  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2857  
[ 13 ] CVE-2023-2858  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2858  
[ 14 ] CVE-2023-2879  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2879  
[ 15 ] CVE-2023-2952  
      https://nvd.nist.gov/vuln/detail/CVE-2023-2952  
[ 16 ] WNPA-SEC-2022-07  
[ 17 ] WNPA-SEC-2023-08  
[ 18 ] WNPA-SEC-2023-09  
[ 19 ] WNPA-SEC-2023-10  
[ 20 ] WNPA-SEC-2023-11

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202309-02

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202309-02

Apple Security Advisory 2023-09-11-3 - macOS Big Sur 11.7.10 addresses buffer overflow and code execution vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

APPLE-SA-2023-09-11-3 macOS Big Sur 11.7.10

macOS Big Sur 11.7.10 addresses the following issues.  
Information about the security content is also available at  
https://support.apple.com/kb/HT213915.

Apple maintains a Security Updates page at  
https://support.apple.com/HT201222 which lists recent  
software updates with security advisories.

ImageIO  
Available for: macOS Big Sur  
Impact: Processing a maliciously crafted image may lead to arbitrary  
code execution. Apple is aware of a report that this issue may have been  
actively exploited.  
Description: A buffer overflow issue was addressed with improved memory  
handling.  
CVE-2023-41064: The Citizen Lab at The University of Torontoʼs Munk  
School

macOS Big Sur 11.7.10 may be obtained from the Mac App Store or  
Apple's Software Downloads web site:  
https://support.apple.com/downloads/  
All information is also posted on the Apple Security Updates  
web site: https://support.apple.com/en-us/HT201222.

This message is signed with Apple's Product Security PGP key,  
and details are available at:  
https://www.apple.com/support/security/pgp/  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEsz9altA7uTI+rE/qX+5d1TXaIvoFAmT/m3MACgkQX+5d1TXa  
IvqNSg//bbzgVN2E8yAjEnjXK08rQlR7TmCxvDCa9s2GI3hPYb881pMDz2kG4ntu  
C8MaKgYwQ8f6DKowxL2bJAXz9p48tzfHEcxVVCW3vwel0MrstLQRllrv4GrRrU2T  
/kkOWs4WZPQYMuvf+j08+KlGOWwPdhxNBlkzoZKe1Sq0DKFOBhdwnBfUsQgREMK+  
zFz7iVYHKCgAs8hQwOA7mmxa7W42PO5XuBh2d4bxsjiV+63Z4vIhy3uiXrqGDolT  
pOLsOXpRaLxDeVTi7/AKBJcR+ScC/wTinCBaFuELqQsXeYVKJeLl901MYa54VZtf  
6x+7c/QOKf8LUQR58VH9uB1cRGaC4rI0GfGBMZAR3C1xhM0TRzHuH6HOsBK2ZQva  
OprPGZ8aNb1XhuuZeYYxNnXOtmto8V8ZynBzjoPv5P3BeaBgRbpOnlIsamSTQUeb  
BSLnKQ6MbDbrGBQHcqKhdYyL65EzXGfoYgLbKG+FdzoaTdJ8EO+FXum6smPcHEvm  
uzHkCQvYPZ6ZpeGQ3OPrD0mqTrqdI5JwdM1Qj3ks5srGHH8UYK1k1TQx5kK/5MX1  
1ASkIhexyGtDS3DNVWOaDniRXA6bMNrJCNQC7PU5O1Py0kR1gITB9WAP+LOQ4PBF  
Of9Y2FxFxHMYJ40gHwa5e/mo4Sf5fvnr9WUU9/34VC5f+tTI47M=  
=bfbZ  
-----END PGP SIGNATURE-----

Apple Security Advisory 2023-09-11-3

Apple Security Advisory 2023-09-11-2 - macOS Monterey 12.6.9 addresses buffer overflow and code execution vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

APPLE-SA-2023-09-11-2 macOS Monterey 12.6.9

macOS Monterey 12.6.9 addresses the following issues.  
Information about the security content is also available at  
https://support.apple.com/kb/HT213914.

Apple maintains a Security Updates page at  
https://support.apple.com/HT201222 which lists recent  
software updates with security advisories.

ImageIO  
Available for: macOS Monterey  
Impact: Processing a maliciously crafted image may lead to arbitrary  
code execution. Apple is aware of a report that this issue may have been  
actively exploited.  
Description: A buffer overflow issue was addressed with improved memory  
handling.  
CVE-2023-41064: The Citizen Lab at The University of Torontoʼs Munk  
School

macOS Monterey 12.6.9 may be obtained from the Mac App Store or  
Apple's Software Downloads web site:  
https://support.apple.com/downloads/  
All information is also posted on the Apple Security Updates  
web site: https://support.apple.com/en-us/HT201222.

This message is signed with Apple's Product Security PGP key,  
and details are available at:  
https://www.apple.com/support/security/pgp/  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEsz9altA7uTI+rE/qX+5d1TXaIvoFAmT/m3IACgkQX+5d1TXa  
IvrzPg//a+Al1VjRmASSN1lWptcH3EN4AcviKdzPAcl3Wtlh/28UFzIuMkgyH7B/  
e0VUEgqo+4RqyYVfmWTZJBQ9J0otX3M+wG9XRVt3VlgwStqQ9+sjK1nRIMKq3YO6  
KMVM9TggVAqEQOOTvdPhsb439RoP2q8kAiQnxw0r/CqzWkPnLvDTdLGWW5WO4G2Q  
tFv7z2nV4aPsmZWDwsfc4S8UyrAP+57iBLpegwD6kLaLiRFOm4ZS/bPmWYck0HDK  
qojdx6gJ3fYVCoMexiJuBLpJWdCA582f8SfsgYj1/pIwmTC2Vu5HZz3FxF6ULAuY  
rbmcZO2zA9w30XgjPDtWQ3l00mVi8Pnod4gDD0bN2aYuDtTXWQ7U/zmkT65kDLPO  
uQCZmBAeRLaaUnBlmGRpHBe7zqLlUTU+AcjzRwcXs7WnEuZ59WVCkMlQIELmAx2m  
/2jEcMMBe9GNnxEcSa7N0HBbuPHrakC5JA4u63SYeb2NHe9i5PPlwQvRHJJ+Atps  
LpsqgdSNk0LmLgldzglIVdhoRBo6F3i1BuIeof0STBLgl3AM1jJJWeL0wPv5RV95  
eIN+Uvs7ni1OUZUq0Io7vAg1alyZAv6TZEz8venYA0J+2WxFVu/jOaOxwGJUyzQf  
7fblA7wBfxZ+TdZKzaU6OUCoJP/g/gDWzrBG+0EJGH9dcxJP8no=  
=I1tR  
-----END PGP SIGNATURE-----

Tag

#mac