:: Deepquest ::

ASP.NET Core version 5.-RC1 suffers from an HTTP header injection vulnerability.

Apache mod_session_crypto versions 2.3 through 2.5 suffer form a padding oracle vulnerability.

Microsoft Edge suffers from a type confusion vulnerability in internationalization initialization.

Mac OS suffers from a kernel code execution vulnerability due to writable privileged IOKit registry properties.

IBM AIX versions 6.1, 7.1, and 7.2 suffer from a Bellmail privilege escalation vulnerability.

Vesta Control Panel versions 0.9.7 through 0.9.8-16 suffer from a local privilege escalation vulnerability.

There is an ipc_port_t reference count leak due to incorrect externalMethod overrides that lead to a Mac OS X / iOS kernel use-after-free vulnerability.

A broken kernel mach port name uref handling on iOS and Mac OS can lead to privileged port name replacement in other processes.

A lack of error checking leads to a reference count leak and OS X / iOS kernel use-after-free vulnerability in _kernelrpc_mach_port_insert_right_trap.

syslogd on Mac OS and iOS suffers from an arbitrary port replacement vulnerability.