all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Ubuntu Security Notice USN-6550-1

Add to bookmarks
Dec. 12, 2023, 2:12 p.m. |

Packet Storm packetstormsecurity.com

Ubuntu Security Notice 6550-1 - It was discovered that Smarty, that is integrated in the PostfixAdmin code, was not properly sanitizing user input when generating templates. An attacker could, through PHP injection, possibly use this issue to execute arbitrary code. It was discovered that Moment.js, that is integrated in the PostfixAdmin code, was using an inefficient parsing algorithm when processing date strings in the RFC 2822 standard. An attacker could possibly use this issue to cause a denial of service.

arbitrary code attacker code injection input issue moment.js notice php security security notice ubuntu usn

Visit resource

More from packetstormsecurity.com / Packet Storm

AIDE 0.18.7 an hour ago | packetstormsecurity.com
advanced aide algorithms can +17
Systemd Insecure PTY Handling an hour ago | packetstormsecurity.com
changing handling high insecure +5
Microsoft PlayReady Toolkit an hour ago | packetstormsecurity.com
access acquisition client code +19
Docker Privileged Container Kernel Escape an hour ago | packetstormsecurity.com
can container container escape daemon +9
Gentoo Linux Security Advisory 202405-16 an hour ago | packetstormsecurity.com
advisory apache apache commons can +11
Gentoo Linux Security Advisory 202405-15 an hour ago | packetstormsecurity.com
advisory can code code execution +12
Gentoo Linux Security Advisory 202405-14 an hour ago | packetstormsecurity.com
advisory code code execution gentoo +7
Gentoo Linux Security Advisory 202405-13 an hour ago | packetstormsecurity.com
advisory can gentoo injection +6
Gentoo Linux Security Advisory 202405-12 an hour ago | packetstormsecurity.com
advisory arbitrary code arbitrary code execution can +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com

Information Security Compliance Analyst

@ KPMG Australia | Melbourne, Australia
View on infosec-jobs.com

GDS Consulting - Cyber Security | Data Protection Senior Consultant

@ EY | Taguig, PH, 1634
View on infosec-jobs.com

Senior QA Engineer - Cloud Security

@ Tenable | Israel
View on infosec-jobs.com
View more jobs