Showing 1 - 3 of 3

CVE-2020-8184

Status Candidate

Overview

A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.

Related Files

Ubuntu Security Notice USN-4561-2: Posted Apr 6, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4561-2 - USN-4561-1 fixed vulnerabilities in Rack. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 20.04 LTS and Ubuntu 20.10. It was discovered that Rack incorrectly handled certain paths. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Various other issues were also addressed.; tags | advisory, vulnerability; systems | linux, ubuntu; advisories | CVE-2020-8161, CVE-2020-8184; SHA-256 | 7a09b2211fedd0005794a55c3262fc89a4e1bc0177de9c41d25064945797a054; Download | Favorite | View

Red Hat Security Advisory 2020-4366-01: Posted Oct 27, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-4366-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include HTTP request smuggling, cross site scripting, denial of service, memory leak, and traversal vulnerabilities.; tags | advisory, remote, web, denial of service, vulnerability, xss, memory leak; systems | linux, redhat; advisories | CVE-2018-11751, CVE-2018-3258, CVE-2019-12781, CVE-2019-16782, CVE-2020-10693, CVE-2020-10968, CVE-2020-10969, CVE-2020-11619, CVE-2020-14061, CVE-2020-14062, CVE-2020-14195, CVE-2020-14334, CVE-2020-14380, CVE-2020-5216, CVE-2020-5217, CVE-2020-5267, CVE-2020-7238, CVE-2020-7663, CVE-2020-7942, CVE-2020-7943, CVE-2020-8161, CVE-2020-8184, CVE-2020-8840, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548; SHA-256 | c691cbaa83066b8d59e5188ddbfb88ab178e4310136cd824c67d6356f9911b5b; Download | Favorite | View

Ubuntu Security Notice USN-4561-1: Posted Oct 1, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4561-1 - It was discovered that Rack incorrectly handled certain paths. An attacker could possibly use this issue to obtain sensitive information. It was discovered that Rack incorrectly validated cookies. An attacker could possibly use this issue to forge a secure cookie.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2020-8161, CVE-2020-8184; SHA-256 | 28ef3de904174b649936d692414682a56cecf83d39f38f6439d86a19b7efdea9; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 144 files
Ubuntu 96 files
indoushka 37 files
Debian 24 files
nu11secur1ty 17 files
Gentoo 13 files
Apple 13 files
Google Security Research 8 files
CraCkEr 6 files
mjurczyk 4 files

File Archives

Systems

AIX (428)
Apple (2,016)
BSD (374)
CentOS (57)
Cisco (1,925)
Debian (6,846)
Fedora (1,692)
FreeBSD (1,245)
Gentoo (4,335)
HPUX (879)
iOS (355)
iPhone (108)
IRIX (220)
Juniper (68)
Linux (46,841)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (485)
RedHat (13,925)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,949)
UNIX (9,317)
UnixWare (186)
Windows (6,590)
Other

CVE-2020-8184

Overview

Related Files

File Archive:

September 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems