CVE-2022-3526 An issue was found in Linux Kernel's macvlan_handle_frame function. It can be manipulated to leak memory.

Another critical vulnerability was discovered in the Cisco AnyConnect Secure Mobility Client. This vulnerability causes denial of service. The attack is possible remotely. It is recommended to apply a fix to fix this issue. The identifier of this vulnerability is CSCua6309.

An important security vulnerability was found in Redis. This vulnerability could be exploited remotely to obtain data. It is recommended to apply a fix to fix this issue. The identifier of this vulnerability is REDHAT-2016-88.

Another critical vulnerability was found in the Intel Management Engine (ME). The attacker could exploit this vulnerability to cause denial of service. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is CVE-2017-5715.

Another important security vulnerability was found in the Xorg. It is possible to exploit this vulnerability to cause denial of service. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is XSA-180.

Another important security vulnerability was found in the OpenSSL. This vulnerability could be exploited remotely to cause denial of service. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is CVE-2016-7055.

Another important vulnerability was found in the Redis. The attacker could exploit this vulnerability to cause denial of service. It is recommended to apply a fix to fix this issue. The identifier of this vulnerability is CVE-2017-9805.

Third-party services

A critical vulnerability was found in the Apache Tomcat. This vulnerability could be exploited remotely to cause denial of service. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is CVE-2017-5647.

Another important security vulnerability was found in the Libgcrypt. This vulnerability could be exploited remotely to obtain data. It is recommended to apply a fix to fix this issue. The identifier of this vulnerability is CVE-2017-7793.

New Vulnerabilities Discovered in February 2017

In February 2017, a number of new vulnerabilities were discovered in different software products. These vulnerabilities could cause remote denial of service or data leak. It is recommended to apply a patch to fix these issues. The identifiers for these vulnerabilities are: CVE-2017-2510, CVE-2017-2511, CVE-2017-2512, and CVE-2016-7055.

Timeline

Published on: 10/16/2022 19:15:00 UTC
Last modified on: 10/19/2022 04:36:00 UTC

References

• https://git.kernel.org/pub/scm/linux/kernel/git/pabeni/net-next.git/commit/?id=e16b859872b87650bb55b12cca5a5fcdc49c1442
• https://vuldb.com/?id.211024
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3526