Ubuntu 20.04 LTS / 22.04 LTS : OpenStack Swift vulnerability (USN-5852-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5852-1 advisory. - An issue was discovered in OpenStack Swift before ...
Continue Reading
February 10, 2023
Ubuntu 18.04 LTS / 20.04 LTS : Cinder vulnerability (USN-5835-4)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5835-4 advisory. - An issue was discovered in OpenStack Cinder befor ...
Continue Reading
February 10, 2023
Cinder vulnerability
## Releases * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * cinder - OpenStack storage service USN-5835-1 fixed vulnerabilities in Cinder. This update provides the corresponding updates for ...
Continue Reading
February 09, 2023
Nova vulnerability
## Releases * Ubuntu 18.04 LTS ## Packages * nova - OpenStack Compute cloud infrastructure USN-5835-3 fixed vulnerabilities in Nova. This update provides the corresponding updates for Ubuntu 18.04 ...
Continue Reading
February 09, 2023
Wordfence Intelligence CE Weekly Vulnerability Report (1-30-2023 to 2-5-2023)
In case you missed it, Wordfence has curated an industry leading vulnerability database with all known WordPress core, theme and, plugin vulnerabilities known as [Wordfence Intelligence Community Edit ...
Continue Reading
February 09, 2023
Debian DSA-5343-1 : openssl – security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5343 advisory. - AES OCB mode for 32-bit x86 platforms using the AES-NI assemb ...
Continue Reading
February 09, 2023
Improper Input Validation in etcd
In etcd before versions 3.3.23 and 3.4.10, a large slice causes panic in decodeRecord method. The size of a record is stored in the length field of a WAL file and no additional validation is done on t ...
Continue Reading
February 08, 2023
Security Bulletin: A Security Vulnerability has been identified in the IBM Java SDK as shipped with IBM Security Verify Access.
## Summary A Security Vulnerability in the IBM Java SDK OpenJ9 affects the IBM Security Verify Access (ISVA) Appliance and Container images. ## Vulnerability Details ** CVEID: **[CVE-2021-28167]() ** ...
Continue Reading
February 07, 2023
Insertion of Sensitive Information into Log File
In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like kubectl. This ...
Continue Reading
February 07, 2023
Insertion of Sensitive Information into Log File
In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets ...
Continue Reading
February 07, 2023
