Advisory No: TZCERT/SA/2024/05/02-1 Date of First Release: 2nd May 2024 Source: NVIDIA Software Affected: NVIDIA Triton Inference Server for Linux Overview: NVIDIA Triton Inference Server for Linux contains a vulnerability where a user can set the logging location to an arbitrary file that may result in compromise of confidentiality, integrity, …

Foxit has released security updates to address vulnerabilities in Foxit PDF Reader and Foxit PDF Editor for Windows and Mac. Exploitation of these vulnerabilities may allow an attacker to take control. Users and administrators are encouraged to review Foxit Security Advisories dated 28th April 2024 and apply necessary updates.

Ubuntu has released security updates to address vulnerabilities in FreeRDP, PHP, pillow, libvirt, gnuTLS, curl and less. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6759-1, USN-6757-1, USN-6744-3, USN-6734-2, USN-6733-2, USN-6718-3 and USN-6756-1 and …

Palo Alto has released security updates to address a vulnerability in PAN-OS. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review Palo Alto Security Advisory and apply necessary updates.

SUSE has released security updates to address vulnerabilities in docker, ffmpeg, Linux kernel and shim. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20241469-1, suse-su-20241468-1, suse-su-20241466-1 and suse-su-20241462-1 and apply necessary updates.

Dell has released security updates to address vulnerabilities in Dell PowerScale OneFS, PowerStore, Hybrid Client, PowerFlex and Networking VEP4600. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2024-115, dsa-2023-173, dsa-2024-071, dsa-2024-195 and dsa-2024-197 and …

Oracle has released security updates to address vulnerabilities in tigervnc and container-tools. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Linux Security Advisories ELSA-2024-2080 and ELSA-2024-2084 and apply necessary updates.

Cisco has released security updates to address vulnerabilities in Cisco ASA and Cisco FTD. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Cisco Security Advisories cisco-sa-asaftd-websrvs-dos and cisco-sa-asaftd-cmd-inj and apply necessary updates.

Mageia has released security updates to address vulnerabilities in firefox, opencryptoki, thunderbird and chromium-browser. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Mageia Security Advisories MGASA-2024-0153, MGASA-2024-0152, MGASA-2024-0151 and MGASA-2024-0150 and apply necessary updates.

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review IBM Security Advisories dated 30th April 2024 and apply necessary updates.