[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2025-10-06

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Mon Oct 6 08:25:22 PDT 2025 

Total New Fixlets:      6
Total Updated Fixlets:  71
Total Fixlets in Site:  3128
Total CVEs Covered:     907
Release Date:           2025-10-06

New Fixlets:
    39400    Sudo Inclusion of Functionality from Untrusted Control Sphere
Vulnerability - RHEL
    39370    Sudo Inclusion of Functionality from Untrusted Control Sphere
Vulnerability - Ubuntu
    39440    GNU Bash OS Command Injection Vulnerability - SLE
    39380    GNU Bash OS Command Injection Vulnerability - Ubuntu
    39450    Sudo Inclusion of Functionality from Untrusted Control Sphere
Vulnerability - leap
    39420    GNU Bash OS Command Injection Vulnerability - Oracle Linux

Updated Fixlets:
    26880    Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Windows
    39040    PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability
- Any Version of MacOS
    14210    Microsoft Malware Protection Engine Improper Restriction of
Operations Vulnerability - Any Version of Windows
    28930    Linux Kernel Use-After-Free Vulnerability - RHEL
    38530    Linux Kernel Out-of-Bounds Read Vulnerability - RHEL
    15750    Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Windows
    16390    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
    25350    Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Windows
    30470    Linux Kernel Use-After-Free Vulnerability - RHEL
    19340    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
    16270    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
    22670    PaperCut MF/NG Improper Access Control Vulnerability - Any
Version of Windows
    15890    Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Windows
    19730    Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of MacOS
    19860    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
    15510    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
    28950    Linux Kernel Privilege Escalation Vulnerability - RHEL
    20120    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
    34840    Android Kernel Remote Code Execution Vulnerability - Ubuntu
    38650    Linux Kernel Improper Ownership Management Vulnerability -
RHEL
    17310    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    17950    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
    27040    Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of MacOS
    18340    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
    20650    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    30380    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    39290    Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition
Vulnerability - Oracle Linux
    33840    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
    15410    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
    26930    Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Windows
    36020    Linux Kernel Out-of-Bounds Write Vulnerability - RHEL
    18230    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
    34870    Android Kernel Remote Code Execution Vulnerability - RHEL
    25400    Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Linux
    36790    Linux Kernel Use of Uninitialized Resource Vulnerability -
Ubuntu
    17850    Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Linux
    33850    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    37180    Linux Kernel Out-of-Bounds Access Vulnerability - RHEL
    30140    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    19450    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    31810    Linux Kernel Heap-Based Buffer Overflow Vulnerability - RHEL
    19780    Mozilla Firefox Information Disclosure Vulnerability - Any
Version of MacOS
    33860    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    17220    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
    16200    Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Windows
    27080    Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of MacOS
    15820    Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Windows
    19660    Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of MacOS
    17740    Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Linux
    37070    Linux Kernel Out-of-Bounds Read Vulnerability - Ubuntu
    26960    Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Linux
    14930    WhatsApp Cross-Site Scripting Vulnerability - Any Version of
MacOS
    20050    Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of MacOS
    15700    TeamViewer Desktop Bypass Remote Login Vulnerability - Any
Version of Windows
    37080    Linux Kernel Out-of-Bounds Access Vulnerability - Ubuntu
    39260    Meta Platforms WhatsApp Incorrect Authorization Vulnerability
- Any Version of MacOS
    38620    Linux Kernel Improper Ownership Management Vulnerability -
Ubuntu
    20190    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
    18910    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    19170    Webmin Command Injection Vulnerability - Any Version of Linux
    14180    Microsoft Defender Remote Code Execution Vulnerability - Any
Version of Windows
    18150    Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Linux
    15980    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
    39020    PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability
- Any Version of Windows
    26990    Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Linux
    39280    Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition
Vulnerability - RHEL
    17650    Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Linux
    36850    Linux Kernel Use of Uninitialized Resource Vulnerability -
RHEL
    28660    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    16890    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
    22910    PaperCut MF/NG Improper Access Control Vulnerability - Any
Version of MacOS
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20251006/12b4b75d/attachment.html>

More information about the Besadmin-announcements mailing list