(RHSA-2022:8502) Moderate: RHV Manager (ovirt-engine) [ovirt-4.5.3] bug fix and security update
The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a co ...
Continue Reading
November 16, 2022
CVE-2022-45130
Plesk Obsidian allows a CSRF attack, e.g., via the /api/v2/cli/commands REST API to change an Admin password. NOTE: Obsidian is a specific version of the Plesk product: version numbers were used throu ...
Continue Reading
November 15, 2022
Container build can leak any path on the host into the container
### Description Moby is the open source Linux container runtime and set of components used to build a variety of downstream container runtimes, including Docker CE, Mirantis Container Runtime (formerl ...
Continue Reading
November 15, 2022
Jenkins Pipeline SCM API for Blue Ocean Plugin Unauthorized Access Vulnerability
The Blue Ocean Plugin is an aggregation tool designed for Jenkins Pipeline, and is of course compatible with free-style projects. It graphically illustrates the flow of the pipeline, making it more in ...
Continue Reading
November 15, 2022
(RHSA-2022:8003) Low: libvirt security, bug fix, and enhancement update
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management o ...
Continue Reading
November 15, 2022
(RHSA-2022:8318) Moderate: libldb security, bug fix, and enhancement update
The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. The following packages have been upgraded to a later upstr ...
Continue Reading
November 15, 2022
CVE-2022-21595
Vulnerability in the MySQL Server product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows ...
Continue Reading
November 15, 2022
This Week in Spring – October 25th, 2022
Hi, Spring fans! Welcome to another installment of _This Week in Spring_! When last we spoke, I was in Las Vegas, NV, for the JavaOne show. It was _amazing_! I'm in sunny Singapore, then off to Malays ...
Continue Reading
November 15, 2022
Update 21.1 for Microsoft Dynamics 365 Business Central (on-premises) 2022 Release Wave 2 (Application Build 21.1.48638, Platform Build 21.0.48504)
None ## Overview This update replaces previously released updates. You should always install the latest update. This update also fixes an information disclosure vulnerability. For more information, se ...
Continue Reading
November 15, 2022
F5 BIG-IP iControl SOAP directory traversal vulnerability
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A directory traversal vulner ...
Continue Reading
November 15, 2022
