Monthly Patches are out for Qualcomm, MediaTek, and Samsung Semiconductor. New Alerts for Apache OFBiz, Moxa, and Linux.
Qualcomm
Qualcomm Monthly Patches include 8 patched vulnerabilities, 1 rated Critical, 6 High, and 1 Medium. Highest CVSSv3 score of 8.4
More info.
MediaTek has included 2 vulnerabilities in their Monthly Patches, 1 rated High and 1 rated Medium. RCE is possible.
More info.
Samsung has published three bulletins for the Exynos products, 1 rated High and 2 rated Medium.
More info.
OFBiz contains an incorrect authorization vulnerability that allows unauthenticated endpoints to execute screen renderin code.
More info. And here.
Multiple Moxa products are affected by an OpenSSH vulnerability that allows unauthenticated code execution. Highest CVSSv3 score of 8.8
More info.
SUSE has updated the kernel RT. More info.
Ubuntu has updated the kernel. More info.
