New Alerts for Mozilla (Pwn2Own), IBM, Flexera, and Linux.
Mozilla
Mozilla has published a security update for Firefox, Firefox for Android, and Firefox ESR to fix vulnerabilities identified in Pwn2Own. This is rated Critical.
More info.
Vulnerabilities in curl and Python affect IBM Cloud Private. CVSSv3 score of 9.1
More info. And here.
IBM Tivoli Monitoring is vulnerable to RCE and DoS due to multiple Expat vulnerabilities. Highest CVSSv3 score of 9.8
More info.
TXSeries for Multiplatforms is vulnerable to arbitrary code execution due to IBM WebSphere Application Server Liberty. CVSSv3 score of 9.8
More info.
FlexNet Publisher lmadmin has been updated to fix a security vulnerability in Modsecurity that a remote attacker could exploit to cause a DoS. CVSSv3 score of 7.5
More info.
Oracle Linux has updated the kernel. More info.
Mageia has updated the kernel and microcode. More info.
