Vulnerability & Exploit Database

Debian: CVE-2021-23382: node-postcss -- security update

SUSE: CVE-2021-26291: SUSE Linux Security Advisory

Debian: CVE-2021-23991: thunderbird -- security update

Debian: CVE-2021-26291: maven -- security update

Amazon Linux AMI 2: CVE-2021-20277: Security patch for libldb (ALAS-2021-1628)

Oracle WebLogic: CVE-2021-26291 : Critical Patch Update

Ubuntu: (Multiple Advisories) (CVE-2021-26291): Apache Maven vulnerability

pfSense: pfSense-SA-21_02.captiveportal: XSS vulnerability in the WebGUI

Oracle Linux: CVE-2021-3518: ELSA-2021-2569: libxml2 security update (MODERATE) (Multiple Advisories)

MediaWiki: Improper Input Validation (CVE-2021-31555)

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: Receipt of a crafted DHCP packet will cause the jdhcpd DHCP service to core. (JSA11158) (CVE-2021-0267)

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS and Junos OS Evolved: Trio Chipset: Denial of Service due to packet destined to device's interfaces. (JSA11164) (CVE-2021-0273)

FreeBSD: VID-F70AB05E-BE06-11EB-B983-000C294BB613 (CVE-2020-13672): drupal7 -- fix possible CSS

Oracle Linux: CVE-2021-3516: ELSA-2021-2569: libxml2 security update (MODERATE) (Multiple Advisories)

MFSA2021-16 Firefox: Security Vulnerabilities fixed in Firefox 88 (CVE-2021-23996)

Oracle Linux: CVE-2021-23961: ELSA-2021-1353: thunderbird security update (IMPORTANT) (Multiple Advisories)

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session. (JSA11166) (CVE-2021-0275)

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: J-Web can be compromised through reflected client-side HTTP parameter pollution attacks. (JSA11160) (CVE-2021-0269)

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: SRX Series: Memory leak when querying Aggregated Ethernet (AE) interface statistics (JSA11125) (CVE-2021-0230)

Samba CVE-2021-20277: CVE-2020-27840 and CVE-2021-20277. Please see announcements for details.