New Alerts for Rockwell Automation, IBM, HP, BIND, and Linux.
A vulnerability in the ThinManager ThinServer software could allow an attacker to make the software unresponsive or execute arbitrary code. CVSSv3 score of 8.1
Postgresql is shipped with IBM Tivoli Netcool Impact and contains security vulnerabilities. Highest CVSSv3 score of 9.8
Certain HP Print Products are potentially vulnerable to Buffer Overflow and/or RCE. Highest CVSSv3 score of 9.8
The DNSSEC verification code for the EdDSA algorithm leaks memory when there is a signature length mismatch, resulting in a DoS over time. CVSSv3 score of 7.5
More info. And here.
BIND 9 resolver can crash when stale cache and stale answers are enabled, option stale-answer-client-timeout is set to 0 and there is a stale CNAME in the cache for an incoming query. CVSSv3 score of 7.5
Changes between OpenSSL 1.x and OpenSSL 3.0 expose a flaw in named that causes a small memory leak in key processing when using TKEY records in Diffie-Hellman mode. CVSSv3 score of 7.5
A flaw in resolver code can cause named to spend excessive amounts of time on processing large delegations. CVSSv3 score of 5.3
Oracle Linux has updated the kernel More info.