#ubuntu

Apple Security Advisory 2021-10-26-5 - Security Update 2021-007 Catalina addresses code execution, integer overflow, out of bounds read, and out of bounds write vulnerabilities.

Backdoor.Win32.Hupigon.acio malware suffers from an unquoted service path vulnerability.

Ubuntu Security Notice 5009-2 - USN-5009-1 fixed vulnerabilities in libslirp. This update provides the corresponding updates for Ubuntu 21.10. Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. It was discovered that libslirp incorrectly handled certain udp packets. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. Various other issues were also addressed.

Ultimate POS version 4.4 suffers from a cross site scripting vulnerability.

Red Hat Security Advisory 2021-3934-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.4.

Linux suffers from a use-after-free read in the SELinux handler for PTRACE_TRACEME.

Vanguard version 2.1 suffers from a cross site scripting vulnerability via a POST.

Isshue Shopping Cart version 3.5 suffers from a persistent cross site scripting vulnerability.

Red Hat Security Advisory 2021-3988-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information.

PHP Melody version 3.0 suffers from a persistent cross site scripting vulnerability in the submitted parameter.