Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14.

**Apache Batik vulnerable to Server-Side Request Forgery**

High severity GitHub Reviewed Published Sep 23, 2022 • Updated Sep 23, 2022

GHSA-h4qg-p7r2-cpg3: Apache Batik vulnerable to Server-Side Request Forgery

Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to load a url thru the jar protocol. This issue affects Apache XML Graphics Batik 1.14.

**Apache Batik Server-Side Request Forgery**

Moderate severity GitHub Reviewed Published Sep 23, 2022 • Updated Sep 23, 2022

GHSA-c5xv-qc8p-mh2v: Apache Batik Server-Side Request Forgery 

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

**Apache Airflow vulnerable to Use of Externally-Controlled Format String**

High severity GitHub Reviewed Published Sep 22, 2022

GHSA-5rp4-749p-vx26: Apache Airflow vulnerable to Use of Externally-Controlled Format String

In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver's `/confirm` endpoint.

**Apache Airflow vulnerable to open redirect**

Moderate severity GitHub Reviewed Published Sep 22, 2022 • Updated Sep 22, 2022

GHSA-4fg5-j4mm-wfpg: Apache Airflow vulnerable to open redirect

Ubuntu Security Notice 5627-1 - It was discovered that PCRE incorrectly handled memory when handling certain regular expressions. An attacker could possibly use this issue to cause applications using PCRE to expose sensitive information.

==========================================================================  
Ubuntu Security Notice USN-5627-1  
September 22, 2022

pcre2 vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

PCRE could be made to expose sensitive information.

Software Description:  
- pcre2: Perl 5 Compatible Regular Expression Library

Details:

It was discovered that PCRE incorrectly handled memory when  
handling certain regular expressions. An attacker could possibly  
use this issue to cause applications using PCRE to expose  
sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS:  
   libpcre2-16-0                   10.39-3ubuntu0.1  
   libpcre2-32-0                   10.39-3ubuntu0.1  
   libpcre2-8-0                    10.39-3ubuntu0.1  
   libpcre2-posix3                 10.39-3ubuntu0.1  
   pcre2-utils                     10.39-3ubuntu0.1

Ubuntu 20.04 LTS:  
   libpcre2-16-0                   10.34-7ubuntu0.1  
   libpcre2-32-0                   10.34-7ubuntu0.1  
   libpcre2-8-0                    10.34-7ubuntu0.1  
   libpcre2-posix2                 10.34-7ubuntu0.1  
   pcre2-utils                     10.34-7ubuntu0.1

After a standard system update you need to restart applications using PCRE,  
such as the Apache HTTP server and Nginx, to make all the necessary  
changes.

References:  
   https://ubuntu.com/security/notices/USN-5627-1  
   CVE-2022-1586, CVE-2022-1587

Package Information:  
   https://launchpad.net/ubuntu/+source/pcre2/10.39-3ubuntu0.1  
   https://launchpad.net/ubuntu/+source/pcre2/10.34-7ubuntu0.1

Ubuntu Security Notice USN-5627-1

**Email display mode:**

Modern rendering  
Legacy rendering

CVE-2022-40146

CVE-2022-38398

Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to fetch external resources. This issue affects Apache XML Graphics Batik 1.14.

CVE-2022-38648

A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of memory failures. A specially crafted message with multiple key-value per elements creates parsing issues, and can lead to a Denial of Service against services receiving unsanitized input. We recommend upgrading to versions 3.18.3, 3.19.5, 3.20.2, 3.21.6 for protobuf-cpp and 3.18.3, 3.19.5, 3.20.2, 4.21.6 for protobuf-python. Versions for 3.16 and 3.17 are no longer updated.

CVE-2022-1941: Security Bulletins  |  Customer Care  |  Google Cloud

** UNSUPPORTED WHEN ASSIGNED ** An Improper Restriction of XML External Entity Reference vulnerability in RPCRouterServlet of Apache SOAP allows an attacker to read arbitrary files over HTTP. This issue affects Apache SOAP version 2.2 and later versions. It is unknown whether previous versions are also affected. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Tag

#apache