Next Last 1. 2022-02-25 [1] [oss-security] CVE-2022-24986: KCron: Insecure temporary file handling oss-security Carlos_López 2. 2022-02-24 [1] [oss-security] [CVE-2022-24948] Apache JSPWiki Cross-site scripting vuln oss-security Juan_Pablo_Santos_Rod 3. 2022-02-24 [1] [oss-security] [CVE-2022-24947] Apache JSPWiki CSRF Account Takeover oss-security Juan_Pablo_Santos_Rod 4. 2022-02-24 [2] [oss-security] fscrypt: Multiple File System Related Security Issues (CV oss-security Eric Biggers 5. 2022-02-24 [1] [oss-security] CVE-2022-24288: Apache Airflow: RCE in example DAGs oss-security Jedidiah Cunningham 6. 2022-02-24 [1] [oss-security] CVE-2021-45229: Apache Airflow: Reflected XSS via Origin oss-security Jedidiah Cunningham 7. 2022-02-23 [1] [oss-security] Fwd: Cyrus-SASL 2.1.28 released [fixes CVE-2022-24407 & C oss-security Alan Coopersmith 8. 2022-02-23 [1] [oss-security] Announce: OpenSSH 8.9 released oss-security Damien Miller 9. 2022-02-23 [3] [oss-security] CVE-2021-44731: Race condition in snap-confine's setup_pr oss-security Simon McVittie 10. 2022-02-22 [2] [oss-security] Linux kernel: heap out of bounds write in nf_dup_netdev.c oss-security Salvatore Bonaccorso 11. 2022-02-21 [1] [oss-security] CVE-2022-25375 : Linux RNDIS USB Gadget memory extraction oss-security Szymon Heidrich 12. 2022-02-19 [1] [oss-security] Expat 2.4.5 released, includes 5 security fixes oss-security Alan Coopersmith 13. 2022-02-18 [3] [oss-security] CVE-2021-4115: polkit: file descriptor leak allows an unp oss-security Alan Coopersmith 14. 2022-02-18 [1] Re: [oss-security] CVE-2021-3997: Uncontrolled recursion in systemd's sy oss-security Solar Designer 15. 2022-02-18 [1] [oss-security] Multiple vulnerabilities affecting cobbler oss-security Paolo Perego 16. 2022-02-18 [1] [oss-security] CVE-2021-4120: Insufficient validation of snap content in oss-security Alex Murray 17. 2022-02-17 [2] [oss-security] WebKitGTK and WPE WebKit Security Advisory WSA-2022-0002 oss-security Carlos Alberto Lopez 18. 2022-02-15 [1] [oss-security] Multiple vulnerabilities in Jenkins plugins oss-security Wadeck Follonier 19. 2022-02-15 [1] [oss-security] CVE-2022-21698: HTTP method DOS; Prometheus client_golang oss-security Bartek Plotka 20. 2022-02-14 [3] [oss-security] Linux kernel: potential net namespace bug in IPv6 flow la oss-security Willem de Bruijn 21. 2022-02-12 [1] [oss-security] CVE-2021-44879: kernel:NULL pointer dereference in fs/f2f oss-security Wenqing Liu 22. 2022-02-11 [1] [oss-security] [CVE-2022-23633] Possible exposure of information vulnera oss-security Aaron Patterson 23. 2022-02-11 [1] [oss-security] CVE-2021-44521: Apache Cassandra: Remote code execution f oss-security Marcus Eriksson 24. 2022-02-11 [1] [oss-security] CVE-2022-24112: Apache APISIX: apisix/batch-requests plug oss-security Zexuan Luo 25. 2022-02-11 [1] [oss-security] Linux kernel: Fix for KVM on s390, insufficient checks fo oss-security Christian Borntraeger 26. 2022-02-11 [1] [oss-security] CVE-2022-24289: Apache Cayenne: Deserialization of untrus oss-security Aristedes Maniatis 27. 2022-02-10 [1] [oss-security] CVE-2022-0435: Remote Stack Overflow in Linux Kernel TIPC oss-security Samuel Page 28. 2022-02-09 [1] [oss-security] Vulnerability in Jenkins oss-security Daniel Beck 29. 2022-02-07 [1] [oss-security] Browser-mediated attacks on WebDriver servers oss-security Gabriel Corona 30. 2022-02-07 [1] [oss-security] [CVE-2022-24450] nats-server unconstrained account assump oss-security Phil Pennock Next Last