all InfoSec news
USN-5998-1: Apache Log4j vulnerabilities
April 5, 2023, 9:26 p.m. |
Ubuntu security notices ubuntu.com
incorrectly handled deserialization. An attacker could possibly use this issue
to execute arbitrary code. This issue only affected Ubuntu 16.04 ESM.
(CVE-2019-17571)
It was discovered that the JMSSink component of Apache Log4j 1.2 incorrectly
handled deserialization. An attacker could possibly use this issue to execute
arbitrary code. (CVE-2022-23302)
It was discovered that Apache Log4j 1.2 incorrectly handled certain SQL
statements. A remote attacker could possibly use this issue to …
apache apache log4j attack code cve database deserialization injection issue log4j sql sql injection sql injection attack ubuntu usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
5 days, 2 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
5 days, 5 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
5 days, 15 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
6 days, 19 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Product Regulatory Compliance Specialist
@ Avery Dennison | Oegstgeest, Netherlands
Cyber Security Analyst
@ FinClear | Melbourne, Australia
Senior Application Security Manager, United States-(Virtual)
@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
Vice President - Information Security Management - FedRAMP
@ JPMorgan Chase & Co. | Chicago, IL, United States
Vice President, Threat Intelligence & AI
@ Arctic Wolf | Remote - Minnesota
Cybersecurity Analyst
@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States