[ASA-202210-4] linux-zen: multiple issues
A remote attacker is able to inject WLAN frames to crash the system or execute arbitrary code on the affected host.
Security
[ASA-202210-3] linux-lts: multiple issues
A remote attacker is able to inject WLAN frames to crash the system or execute arbitrary code on the affected host.
[ASA-202210-2] linux: multiple issues
A remote attacker is able to inject WLAN frames to crash the system or execute arbitrary code on the affected host.
[ASA-202210-1] linux-hardened: multiple issues
A remote attacker is able to inject WLAN frames to crash the system or execute arbitrary code on the affected host.
[ASA-202204-9] python-django: sql injection
An attacker is able to perform an SQL injection via a specially crafted input.
[ASA-202204-8] xz: arbitrary command execution
An attacker is able to provide malicious filenames to write to arbitrary files or execute arbitrary commands on the affected host.
[ASA-202204-7] gzip: arbitrary command execution
An attacker is able to provide malicious filenames to write to arbitrary files or execute arbitrary commands on the affected host.
[ASA-202204-6] libtiff: multiple issues
A remote attacker is able to crash the application or execute arbitrary code on the affected host via a crafted tiff file.
[ASA-202204-5] bind: multiple issues
A remote attacker is able to crash the application or force TCP connections to BIND to remain in CLOSE_WAIT status leading to denial of service on the affected host. Furthermore the cache could become poisoned leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
[ASA-202204-4] rizin: multiple issues
An attacker is able to provide a malicious AMD64 ELF binary that when opened by a victim may execute arbitrary code on the affected host.