CVE-2022-3522 A vulnerability was found in Linux Kernel and classified as problematic. The hugetlb_no_page function race condition is vulnerable. It is recommended to apply a patch to fix this issue.
This issue was discovered by Vincenzo Iozzo from Cisco’s team. It was reported to Red Hat, and they have released a fix. It is
CVE-2022-35710 ColdFusion versions Update 14 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could allow arbitrary code execution in the context of the current user.
This update also addresses a high severity vulnerability in ColdFusion that could be exploited to create arbitrary files on the remote system. This issue was
CVE-2022-35690 ColdFusion versions Update 14 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could allow arbitrary code execution in the context of the current user.
This update also addresses a high severity vulnerability in ColdFusion that could be exploited to create arbitrary files on the remote system. This issue was
CVE-2022-38698 In messaging service, there is a missing permission check
There is a missing permission check in messages service. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.
CVE-2022-38669 In soundrecorder service, there is a missing permission check
There is also a race condition in handling of screenshots when recording. There is a blocking call in the service that might lead to a
Episode
00:00:00
00:00:00