Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: account takeover possible when using Azure AD OAuth (CVE ...

Continue Reading

12 июля, 2023

It was discovered that there was an issue in ruby-doorkeeper, an OAuth2 provider for Ruby on Rails applications. Doorkeeper automatically processed authorization requests without user consent for publ ...

Continue Reading

12 июля, 2023

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 22.10 / 23.04 host has a package installed that is affected by a vulnerability as referenced in the USN-6210-1 advisory. - Doorkeepe ...

Continue Reading

11 июля, 2023

[![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj0aNse5IFkAOlAmTMF7nAK2FV-Z8RHu8RArkixIyq8ldbWS5P0bR3uUNBYEHFbdrKArewTQoaTnatNC5mGfrPJf_jLVNxXIjaV-NrxS4KEkAoqtQgE0taY58UZIRSMoYmD4p0D7Z ...

Continue Reading

08 июля, 2023

## Releases * Ubuntu 23.04 * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 ESM * Ubuntu 16.04 ESM ## Packages * ruby-doorkeeper - OAuth 2 provider for Rails and Grape ...

Continue Reading

08 июля, 2023

This module provides integration with Mailchimp, a popular email delivery service. A route related to OAuth authentication is not protected against a Cross Site Request Forgery attack.Read More ...

Continue Reading

07 июля, 2023

org.keycloak:keycloak-server-spi-private and org.keycloak:keycloak-services are vulnerable to Improper Authorization. The vulnerability exists under certain pre-conditions which allows an attacker to ...

Continue Reading

07 июля, 2023

org.keycloak:keycloak-services is vulnerable to Improper Certificate Validation. The vulnerability exists in the `authenticateClient` function of `X509ClientAuthenticator.java` because it does not pro ...

Continue Reading

07 июля, 2023