AdvisoryWeek
Subscribe
Archives
2022-13 - Apple, Canonical, Red Hat, Cisco, Microsoft, Jenkins, GitHub
Published on April 4, 2022
Email address
Subscribe
Advisory Week
Week 13, 2022
Apple Security Advisory
macOS Monterey 12.3.1 Security Content
iOS 15.4.1 and iPadOS 15.4.1 Security Content
Ubuntu Security Notices
USN-5362-1: Linux kernel (Intel IOTG) vulnerabilities
USN-5361-1: Linux kernel vulnerabilities
USN-5358-2: Linux kernel vulnerabilities
USN-5357-2: Linux kernel vulnerability
USN-5360-1: Tomcat vulnerabilities
USN-5359-1: rsync vulnerability
USN-5358-1: Linux kernel vulnerabilities
USN-5357-1: Linux kernel vulnerability
USN-5355-2: zlib vulnerability
USN-5356-1: DOSBox vulnerabilities
USN-5355-1: zlib vulnerability
USN-5354-1: Twisted vulnerabilities
USN-5351-2: Paramiko vulnerability
USN-5313-2: OpenJDK 11 regression
USN-5353-1: Linux kernel (OEM) vulnerability
USN-5352-1: Libtasn1 vulnerability
USN-5351-1: Paramiko vulnerability
USN-5349-1: GNU binutils vulnerability
USN-5350-1: Chromium vulnerability
USN-5348-1: Smarty vulnerabilities
USN-5342-1: Python vulnerabilities
Red Hat Security Advisory
(RHSA-2022:0737) Moderate: Red Hat build of Eclipse Vert.x 4.2.5 security update
(RHSA-2022:1138) Important: httpd security update
(RHSA-2022:1139) Important: httpd security update
(RHSA-2022:1137) Important: httpd security update
(RHSA-2022:1136) Important: httpd security update
(RHSA-2022:1112) Important: openssl security update
(RHSA-2022:1110) Moderate: Red Hat Decision Manager 7.12.1 security update
(RHSA-2022:1108) Moderate: Red Hat Process Automation Manager 7.12.1 security update
(RHSA-2022:1107) Important: kernel security update
(RHSA-2022:1102) Important: httpd:2.4 security update
(RHSA-2022:1104) Important: kernel security update
(RHSA-2022:1106) Important: kernel security update
(RHSA-2022:1091) Important: openssl security update
(RHSA-2022:1021) Important: OpenShift Container Platform 4.9.26 security update
(RHSA-2022:1083) Moderate: Red Hat Advanced Cluster Management 2.3.8 security and container updates
(RHSA-2022:1082) Important: openssl security update
(RHSA-2022:1081) Moderate: Gatekeeper Operator v0.2 security updates and bug fixes
(RHSA-2022:1025) Important: OpenShift Container Platform 4.10.6 security update
(RHSA-2022:1080) Important: httpd:2.4 security update
(RHSA-2022:1077) Important: openssl security update
(RHSA-2022:1078) Important: openssl security update
(RHSA-2022:1072) Important: httpd:2.4 security update
(RHSA-2022:1069) Important: expat security update
(RHSA-2022:1075) Important: httpd24-httpd security update
(RHSA-2022:1066) Important: openssl security update
(RHSA-2022:1076) Important: openssl security update
(RHSA-2022:1074) Important: screen security update
(RHSA-2022:1071) Important: openssl security update
(RHSA-2022:1073) Important: openssl security update
(RHSA-2022:1070) Important: expat security update
(RHSA-2022:0577) Moderate: Windows Container Support for Red Hat OpenShift 5.0.0 [security update]
(RHSA-2022:1068) Important: expat security update
(RHSA-2022:1065) Important: openssl security update
Cisco Security Advisory
Vulnerability in Spring Cloud Function Framework Affecting Cisco Products: March 2022
Vulnerability in Spring Framework Affecting Cisco Products: March 2022
Microsoft Security
Chromium: CVE-2022-1138 Inappropriate implementation in Web Cursor
Chromium: CVE-2022-1137 Inappropriate implementation in Extensions
Chromium: CVE-2022-1136 Use after free in Tab Strip
Chromium: CVE-2022-1135 Use after free in Shopping Cart
Chromium: CVE-2022-1134 Type Confusion in V8
Chromium: CVE-2022-1133 Use after free in WebRTC
Chromium: CVE-2022-1131 Use after free in Cast UI
Chromium: CVE-2022-1130 Insufficient validation of untrusted input in WebOTP
Chromium: CVE-2022-1129 Inappropriate implementation in Full Screen Mode
Chromium: CVE-2022-1128 Inappropriate implementation in Web Share API
Chromium: CVE-2022-1127 Use after free in QR Code Generator
Chromium: CVE-2022-1125 Use after free in Portals
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Chromium: CVE-2022-1143 Heap buffer overflow in WebUI
Chromium: CVE-2022-1145 Use after free in Extensions
Chromium: CVE-2022-1146 Inappropriate implementation in Resource Timing
Chromium: CVE-2022-1139 Inappropriate implementation in Background Fetch API
Jenkins Security Advisories
Jenkins Security Advisory 2022-03-29
Github Security Advisories
[GHSA-v222-6mr4-qj29] Command Injection vulnerability in asciidoctor-include-ext
[GHSA-7p99-3798-f85c] URL Redirection to Untrusted Site ('Open Redirect') in express-openid-connect
[GHSA-h99w-9q5r-gjq9] HTTP Request Smuggling in puma
[GHSA-838h-jqp6-cf2f] Sandbox bypass leading to arbitrary code execution in Deno
[GHSA-47wv-vhj2-g66m] Use of insecure temporary file in Horovod
[GHSA-8v99-48m9-c8pm] Incorrect Authorization in imgcrypt
[GHSA-5gjh-5j4f-cpwv] Unrestricted Upload of File with Dangerous Type in Gogs