New Alerts for Extreme Networks, Apache (IoTDB), F5, Dell, IBM, and Linux.

Extreme Networks

A vulnerability in CPython "TarFile" module that can result in an infinite loop and deadlock during the parsing of maliciously crafted tar archives affects ExtremeCloud IQ - Site Engine (XIQ-SE).
More info.

Apache

Apache IoTDB contains 2 vulnerabilities, DoS and deserialization of untrusted data.
More info. And here.

F5

Traffix SDC contains a vulnerability in libxml2 that can allow a DoS. No patches yet. CVSSv3 score of 3.1
More info.

Dell

Dell has published a Critical bulletin for Dell Custom VMware ESXi.
More info.

IBM

IBM has published Critical bulletins for App Connect Enterprise, Watson Developer Cloud, and watsonx Assistant Cartridge.
More info.

Linux

SUSE has updated the kernel. More info.
Red Hat has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
AlmaLinux has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts