Pulse Secure version 9.115 and below may be susceptible to client-side http request smuggling, When the application receives a POST request, it ignores the request's Content-Length header and leaves the POST body on the TCP/TLS socket. This body ends up prefixing the next HTTP request sent down that connection, this means when someone loads website attacker may be able to make browser issue a POST to the application, enabling XSS.

**Related Articles**

**Information**

 

Product Affected

Pulse Connect Secure 9.1R15 and below.

Problem

Portswigger has provided a responsible disclosure of a vulnerability that affects the Pulse Collaboration feature. Their write up can be found here: https://portswigger.net/research/browser-powered-desync-attacks  
Ivanti has also requested CVE-2022-21826.  
The type of attack in this instance is a Client-Side Desync (CSD) Attack that requires an authenticated user and requires full control over an authenticated session.  This is possible between a client machine and the VPN (Pulse Connect Secure) server. 

Solution

To immediately remediate this issue, upgrade the Pulse Connect Secure server to 9.1R16 or above. The Pulse Collaboration feature that is the target of this attack is not available in this release or any releases post 9.1R16.

Please refer to KB45487 for further information.

CVSS Score

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N CVSS Score 3.7 (Low)

CVE-2022-21826: Public KB - SA45476 - Client Side Desync Attack (Informational)

Joplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a malicious markdown file, via Joplin. This is possible because the application does not properly validate the schema/protocol of existing links in the markdown file before passing them to the 'shell.openExternal' function.

CVE-2022-40277: GitHub - laurent22/joplin: Joplin - an open source note taking and to-do application with synchronisation capabilities for Windows, macOS, Linux, Android and iOS.

Insufficient sanitization of inputs in QoE application input field could lead to stored and Dom based XSS attack. This issue is fixed and released in SolarWinds Platform (2022.3.0).

Release date: September 28, 2022

These release notes describe the new features, improvements, and fixed issues in SolarWinds Platform 2022.3. They also provide information about upgrades and describe workarounds for known issues.

Learn more

*   For information on latest hotfixes, see SolarWinds Platform Hotfixes.
*   For release notes for previous SolarWinds Platform versions, see Previous Version documentation.
*   For information about requirements, see SolarWinds Platform 2022.3 System Requirements.
*   For information about working with the SolarWinds Platform, see the SolarWinds Platform Administrator Guide.

**New features and improvements in SolarWinds Platform**

Return to top

**Instantly Evaluate Other Products**

Evaluate SolarWinds Platform products and Hybrid Cloud Observability directly from SolarWinds Platform Web Console.

» Learn more

**New security improvements in SolarWinds Platform**

SolarWinds Platform 2022.3 offers new security improvements compared to previous releases of SolarWinds Platform.

*   Service interruptions reported from specific vulnerability scans are now prevented.
*   SHA256/512 support for SNMPv3 polling
*   Removed obsolete libraries referenced in SolarWinds Platform.

**Automatic migration of legacy syslogs and traps**

The legacy syslog and traps functionality has been retired and replaced with new functionality called SolarWinds Platform Log Viewer, which can be upgraded to Log Analyzer for additional capabilities.

Current rules and history will automatically be migrated to the new logging functionality (SolarWinds Platform Log Viewer or Log Analyzer). The functionality of SolarWinds Platform Log Viewer and Log Analyzer has been improved to more closely match legacy functionality. See LA 2022.3 release notes for details.

**New customer installation**

Return to top

For information about installing SolarWinds Platform, see SolarWinds Installer.

**How to upgrade**

Use the SolarWinds Installer to upgrade your entire SolarWinds Platform deployment (all SolarWinds Platform products and any scalability engines) to the current versions.

You must be on Orion Platform 2020.2 or later to upgrade to SolarWinds Platform 2022.3. If you are on Orion Platform 2019.4 or earlier, first upgrade to 2020.2.6 and then upgrade to SolarWinds Platform 2022.3.

**Before you upgrade**

*   Make sure all your legacy reports are migrated. You won't be able to access legacy reports and related tools anymore.
*   After upgrading to SolarWinds Hybrid Cloud Observability from an Orion Platform 2020.2.6 installation, you will need to update your MIB database.
*   Some upgrade situations from the Orion Platform to the SolarWinds Platform are not supported and the installer will stop the upgrade automatically.
    *   If you have a SQL Server older than 2016.
    *   If you have an Orion Platform product version 2019.4 or older.
*   The legacy syslog and traps functionality has been retired and replaced with new functionality called SolarWinds Platform Log Viewer, which can be upgraded to Log Analyzer for additional capabilities. Current rules and history will automatically be migrated to the new logging functionality (SolarWinds Platform Log Viewer or Log Analyzer). The functionality of SolarWinds Platform Log Viewer and Log Analyzer has been improved to more closely match legacy functionality. See LA 2022.3 release notes for details.
    
*   Before updating from Orion Platform 2020.2.6 and earlier to SolarWinds Platform 2022.3, make sure the database user you use to connect the SQL Server hosting your NTA Flow Storage database and Log Analyzer database has the **db create** privilege. Without this privilege, the update will not complete.
    

**Fixed issues**

Return to top

SolarWinds Platform 2022.3 fixes the following issues.

 

Case Number

Description

598596

An IP SLA Packet Loss view performance issue was addressed.

856512

An issue with System.Reactive deadlock after HA failover was addressed.

N/A

An issue where IP addresses for WMI interfaces were not displayed in the Details widget was addressed.

816988, 845983, 903096, 916413, 993175, 1026976

An issue with virtual machine latency and VIM datastore latency was addressed.

869953

An issue where SolarWinds Platform agent couldn't stop polling if unmanaged and remanaged was addressed.

1011473

An issue where alerts were not loading in the Alerts view was addressed.

897304, 1053919

An issue with losing SIDs for accounts was addressed.

870490

An issue where Database Maintenance did not unsubscribe when finished was addressed.

786962, 944247

An issue with SolarWinds Platform agents not responding was addressed.

845580, 861387, 908421

An issue with IP SLA entities on SolarWinds Platform Maps was addressed.

785828, 814974, 1041333, 1041944, 1060860

An issue with the status of groups/maps on SolarWinds Platform Maps was addressed.

741638

An issue with degrading performance of multi-load widgets was addressed.

618469, 785900, 828771, 839335, 895550, 920254, 1017272, 1024005, 1067887, 1076798

An issue where SolarWinds users without an explicitly defined Windows account cannot access SWQL Studio was addressed.

576343, 608927, 741638

An issue where deadlocks on SolarWinds Platform Events require index was addressed.

N/A

The issue with upgrades failing on files locked by Windows services, such as Windows Event Log when you upgrade SolarWinds Platform 2022.2 to SolarWinds Platform 2022.3 RC1 was resolved.

N/A

The issue with upgrades failing on SolarWinds Administration Service issues when upgrading SolarWinds Platform 2022.2 to SolarWinds Platform 2022.3 RC1 was resolved.

N/A

The issue with upgrades failing due to JMX Bridge service issues when you upgrade Additional Web Server for SolarWinds Platform 2022.2 to SolarWinds Platform 2022.3 RC1 was addressed.

N/A

The issue with the list of available objects not loading when you create a group selecting individual objects, save it and then want to add members to the group on SolarWinds Platform 2022.3 RC1 was resolved.

**CVEs**

SolarWinds would like to thank our Security Researchers below for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.

**Third-party CVEs**

    

CVE-ID

Vulnerability Title

Description

Severity

Credit

CVE-2018-1285

Vulnerable log4net versions

Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.

Medium

N/A

CVE-2020-11022,

CVE-2020-11023

jQuery XSS vulnerability

In jQuery versions before 3.5.0, HTML from untrusted sources to one of jQuery's DOM manipulation methods may execute an untrusted code even after sanitization.

Medium

N/A

CVE-2022-0778

Open SSL vulnerability

The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli.

High

N/A

**SolarWinds CVEs**

    

CVE-ID

Vulnerability Title

Description

Severity

Credit

CVE-2022-36961

Orion SQL Injection Privilege Escalation

An Orion component is vulnerable to a SQL Injection. An authenticated attacker could leverage this for privilege escalation or remote code execution.

High

N/A

CVE-2022-36965

Stored and DOM XSS attack in QoE applications

Insufficient sanitization of inputs in the QoE application input field could lead to stored and DOM-based XSS attack.

High

Shashank Chaurasia

**Known issues**

Return to top

N/A / Scalability engines are not updatable through centralized upgrade from SolarWinds Platform 2022.3 RC2 to 2022.3 GA

**Issue:** When running a centralized upgrade from SolarWinds Platform 2022.3 RC2 to SolarWinds Platform 2022.3 GA, the upgrade fails with the following message: One or more servers failed to connect or are not updatable.

**Work-around**: Upgrade the main polling engine, and then upgrade scalability engines. You can use the centralized upgrade.

**End of support**

Return to top

This version of SolarWinds Platform no longer supports the following platforms and features.

 

Type

Details

Remote Office Poller (ROP)

As of 2022.3, Remote Office Pollers are no longer sold.

SQL Server 2012 and SQL Server 2014

As of 2022.3, SolarWinds Platform only supports SQL Server 2016 SP1 and later. See SolarWinds Platform 2022.3 System Requirements.

SQL Server Express

As of 2022.3, Express editions of supported SQL Server versions are not supported for production environments. You can use SQL Express only for evaluation purposes.

Syslog Viewer

As of 2022.3, the stand-alone Syslog Viewer is no longer available on the SolarWinds Platform server. Use the Log Viewer in the SolarWinds Platform Web Console.

SNMP Trap Viewer

As of 2022.3, the stand-alone SNMP Trap Viewer is no longer available on the SolarWinds Platform server. Use the Log Viewer in the SolarWinds Platform Web Console.

Legacy Orion Report Writer

Legacy Orion Report Writer and tools related to legacy reports were removed in SolarWinds Platform 2022.2 and are no longer available in 2022.3.

*   Legacy reports are not available anywhere.
*   All tools related to legacy reports, such as Legacy Report Migration Tool or Report Writer Desktop Tool, are removed.
*   Widgets related to legacy reports are removed from the SolarWinds Platform Web Console.

**Deprecation notices**

Return to top

In SolarWinds Platform 2022.3, the following platforms and features are deprecated.

Deprecated platforms and features are still supported in the current release. However, they will be unsupported in a future release. Plan on upgrading deprecated platforms, and avoid using deprecated features. Customizations applied to a deprecated feature might not be migrated if a new feature replaces the deprecated one.

For information about supported versions of SolarWinds products, see Currently supported software versions.

 

Type

Details

Microsoft Windows Server 2012 R2

Windows Server 2012 R2 is deprecated as of this release and will not be supported in a future release.

SolarWinds recommends that you upgrade the operating system of your SolarWinds Platform server to Windows Server 2016 or later. See SolarWinds Platform 2022.3 System Requirements.

**Legal notices**

Return to top

© 2022 SolarWinds Worldwide, LLC. All rights reserved.

This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.

SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.

CVE-2022-36965: SolarWinds Platform 2022.3  Release Notes

Gentoo Linux Security Advisory 202209-27 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution. Versions less than 102.3.0:esr are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-27  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Mozilla Firefox: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #872059  
       ID: 202209-27

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Mozilla Firefox, the  
worst of which could result in arbitrary code execution.

Background  
=========  
Mozilla Firefox is a popular open-source web browser from the Mozilla  
project.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  www-client/firefox         < 102.3.0:esr          >= 102.3.0:esr  
                                < 105.0:rapid          >= 105.0:rapid  
  2  www-client/firefox-bin     < 102.3.0:esr          >= 102.3.0:esr  
                                < 105.0:rapid          >= 105.0:rapid

Description  
==========  
Multiple vulnerabilities have been discovered in Mozilla Firefox. Please  
review the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Mozilla Firefox ESR users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-102.3.0"

All Mozilla Firefox ESR binary users should upgrade to the latest  
version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-102.3.0"

All Mozilla Firefox users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-105.0"

All Mozilla Firefox binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-105.0"

References  
=========  
[ 1 ] CVE-2022-40956  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40956  
[ 2 ] CVE-2022-40957  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40957  
[ 3 ] CVE-2022-40958  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40958  
[ 4 ] CVE-2022-40959  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40959  
[ 5 ] CVE-2022-40960  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40960  
[ 6 ] CVE-2022-40962  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40962

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-27

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-27

Gentoo Linux Security Advisory 202209-20 - Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation. Versions less than 7.4.30:7.4 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-20  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: PHP: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #799776, #810526, #819510, #833585, #850772, #857054  
       ID: 202209-20

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in PHP, the worst of which  
could result in local root privilege escalation.

Background  
=========  
PHP is a widely-used general-purpose scripting language that is  
especially suited for Web development and can be embedded into HTML.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-lang/php               < 7.4.30:7.4             >= 7.4.30:7.4  
                                < 8.0.23:8.0             >= 8.0.23:8.0  
                                < 8.1.8:8.1               >= 8.1.8:8.1

Description  
==========  
Multiple vulnerabilities have been discovered in PHP. Please review the  
CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All PHP 7.4 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-7.4.30:7.4"

All PHP 8.0 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-8.0.23:8.0"

All PHP 8.1 users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/php-8.1.8:8.1"

References  
=========  
[ 1 ] CVE-2021-21703  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21703  
[ 2 ] CVE-2021-21704  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21704  
[ 3 ] CVE-2021-21705  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21705  
[ 4 ] CVE-2021-21708  
      https://nvd.nist.gov/vuln/detail/CVE-2021-21708  
[ 5 ] CVE-2022-31625  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31625  
[ 6 ] CVE-2022-31626  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31626  
[ 7 ] CVE-2022-31627  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31627

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-20

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-20

Gentoo Linux Security Advisory 202209-24 - Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution. Versions less than 2.4.9 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-24  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Expat: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #791703, #830422, #831918, #833431, #870097  
       ID: 202209-24

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Expat, the worst of  
which could result in arbitrary code execution.

Background  
=========  
Expat is a set of XML parsing libraries.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-libs/expat             < 2.4.9                      >= 2.4.9

Description  
==========  
Multiple vulnerabilities have been discovered in Expat. Please review  
the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Expat users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-libs/expat-2.4.9"

References  
=========  
[ 1 ] CVE-2021-45960  
      https://nvd.nist.gov/vuln/detail/CVE-2021-45960  
[ 2 ] CVE-2021-46143  
      https://nvd.nist.gov/vuln/detail/CVE-2021-46143  
[ 3 ] CVE-2022-22822  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22822  
[ 4 ] CVE-2022-22823  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22823  
[ 5 ] CVE-2022-22824  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22824  
[ 6 ] CVE-2022-22825  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22825  
[ 7 ] CVE-2022-22826  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22826  
[ 8 ] CVE-2022-22827  
      https://nvd.nist.gov/vuln/detail/CVE-2022-22827  
[ 9 ] CVE-2022-23852  
      https://nvd.nist.gov/vuln/detail/CVE-2022-23852  
[ 10 ] CVE-2022-23990  
      https://nvd.nist.gov/vuln/detail/CVE-2022-23990  
[ 11 ] CVE-2022-25235  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25235  
[ 12 ] CVE-2022-25236  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25236  
[ 13 ] CVE-2022-25313  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25313  
[ 14 ] CVE-2022-25314  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25314  
[ 15 ] CVE-2022-25315  
      https://nvd.nist.gov/vuln/detail/CVE-2022-25315  
[ 16 ] CVE-2022-40674  
      https://nvd.nist.gov/vuln/detail/CVE-2022-40674

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-24

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-24

Gentoo Linux Security Advisory 202209-22 - A vulnerability has been found in Kitty which could allow for arbitrary code execution with user input. Versions less than 0.26.2 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-22  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: Kitty: Arbitrary Code Execution  
     Date: September 29, 2022  
     Bugs: #868543  
       ID: 202209-22

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability has been found in Kitty which could allow for arbitrary  
code execution with user input.

Background  
=========  
Kitty is a fast, feature-rich, GPU-based terminal.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  x11-terms/kitty            < 0.26.2                    >= 0.26.2

Description  
==========  
Carter Sande discovered that maliciously constructed control sequences  
can cause Kitty to display a notification that, when clicked, can cause  
Kitty to execute arbitrary commands.

Impact  
=====  
Kitty can produce notifications that, when clicked, can execute  
arbitrary commands.

Workaround  
=========  
Avoid clicking unexpected notifications.

Resolution  
=========  
All Kitty users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=x11-terms/kitty-0.26.2"

References  
=========  
[ 1 ] CVE-2022-41322  
      https://nvd.nist.gov/vuln/detail/CVE-2022-41322

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-22

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-22

Gentoo Linux Security Advisory 202209-26 - Multiple vulnerabilities have been discovered in Go, the worst of which could result in denial of service. Versions less than 1.18.6 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-26  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Go: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #869002  
       ID: 202209-26

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in Go, the worst of which  
could result in denial of service.

Background  
=========  
Go is an open source programming language that makes it easy to build  
simple, reliable, and efficient software.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-lang/go                < 1.18.6                    >= 1.18.6

Description  
==========  
Multiple vulnerabilities have been discovered in Go. Please review the  
CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Go users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-lang/go-1.18.6"

In addition, users using Portage 3.0.9 or later should ensure that  
packages with Go binaries have no vulnerable code statically linked into  
their binaries by rebuilding the @golang-rebuild set:

  # emerge --ask --oneshot --verbose @golang-rebuild

References  
=========  
[ 1 ] CVE-2022-27664  
      https://nvd.nist.gov/vuln/detail/CVE-2022-27664  
[ 2 ] CVE-2022-32190  
      https://nvd.nist.gov/vuln/detail/CVE-2022-32190

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-26

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-26

Gentoo Linux Security Advisory 202209-23 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 105.0.5195.125 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-23  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities  
     Date: September 29, 2022  
     Bugs: #868156, #868354, #872407, #870142  
       ID: 202209-23

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been found in Chromium and its  
derivatives, the worst of which could result in remote code execution.

Background  
=========  
Chromium is an open-source browser project that aims to build a safer,  
faster, and more stable way for all users to experience the web.

Google Chrome is one fast, simple, and secure browser for all your  
devices.

Microsoft Edge is a browser that combines a minimal design with  
sophisticated technology to make the web faster, safer, and easier.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  www-client/chromium        < 105.0.5195.125    >= 105.0.5195.125  
  2  www-client/chromium-bin    < 105.0.5195.125    >= 105.0.5195.125  
  3  www-client/google-chrome   < 105.0.5195.125    >= 105.0.5195.125  
  4  www-client/microsoft-edge  < 105.0.1343.42      >= 105.0.1343.42

Description  
==========  
Multiple vulnerabilities have been discovered in Chromium, Google  
Chrome, Microsoft Edge. Please review the CVE identifiers referenced  
below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Chromium users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/chromium-105.0.5195.125"

All Chromium binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/chromium-bin-105.0.5195.125"

All Google Chrome users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/google-chrome-105.0.5195.125"

All Microsoft Edge users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/microsoft-edge-105.0.1343.42"

References  
=========  
[ 1 ] CVE-2022-3038  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3038  
[ 2 ] CVE-2022-3039  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3039  
[ 3 ] CVE-2022-3040  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3040  
[ 4 ] CVE-2022-3041  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3041  
[ 5 ] CVE-2022-3042  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3042  
[ 6 ] CVE-2022-3043  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3043  
[ 7 ] CVE-2022-3044  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3044  
[ 8 ] CVE-2022-3045  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3045  
[ 9 ] CVE-2022-3046  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3046  
[ 10 ] CVE-2022-3047  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3047  
[ 11 ] CVE-2022-3048  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3048  
[ 12 ] CVE-2022-3049  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3049  
[ 13 ] CVE-2022-3050  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3050  
[ 14 ] CVE-2022-3051  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3051  
[ 15 ] CVE-2022-3052  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3052  
[ 16 ] CVE-2022-3053  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3053  
[ 17 ] CVE-2022-3054  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3054  
[ 18 ] CVE-2022-3055  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3055  
[ 19 ] CVE-2022-3056  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3056  
[ 20 ] CVE-2022-3057  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3057  
[ 21 ] CVE-2022-3058  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3058  
[ 22 ] CVE-2022-3071  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3071  
[ 23 ] CVE-2022-3075  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3075  
[ 24 ] CVE-2022-3195  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3195  
[ 25 ] CVE-2022-3196  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3196  
[ 26 ] CVE-2022-3197  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3197  
[ 27 ] CVE-2022-3198  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3198  
[ 28 ] CVE-2022-3199  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3199  
[ 29 ] CVE-2022-3200  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3200  
[ 30 ] CVE-2022-3201  
      https://nvd.nist.gov/vuln/detail/CVE-2022-3201  
[ 31 ] CVE-2022-38012  
      https://nvd.nist.gov/vuln/detail/CVE-2022-38012

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-23

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202209-23

Gentoo Linux Security Advisory 202209-25 - A vulnerability has been discovered in Zutty which could allow for arbitrary code execution. Versions less than 0.13 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202209-25  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: Zutty: Arbitrary Code Execution  
     Date: September 29, 2022  
     Bugs: #868495  
       ID: 202209-25

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability has been discovered in Zutty which could allow for  
arbitrary code execution.

Background  
=========  
Zutty is an X terminal emulator rendering through OpenGL ES Compute  
Shaders.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  x11-terms/zutty            < 0.13                        >= 0.13

Description  
==========  
Zutty does not correctly handle invalid DECRQSS commands, which can be  
exploited to run arbitrary commands in the terminal.

Impact  
=====  
Untrusted text written to the Zutty terminal can achieve arbitrary code  
execution.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Zutty users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=x11-terms/zutty-0.13"

References  
=========  
[ 1 ] CVE-2022-41138  
      https://nvd.nist.gov/vuln/detail/CVE-2022-41138

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202209-25

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Tag

#mac