Debian Linux Security Advisory 3994-1 - Christian BoxdAPrfer discovered a vulnerability in the handling of FreeDesktop.org .desktop files in Nautilus, a file manager for the GNOME desktop environment. An attacker can craft a .desktop file intended to run malicious commands but displayed as a innocuous document file in Nautilus. An user would then trust it and open the file, and Nautilus would in turn execute the malicious content. Nautilus protection of only trusting .desktop files with executable permission can be bypassed by shipping the .desktop file inside a tarball.
3715d208820664621570bc5d85aecbd5c86a5bc7ae5fc046cc22288a7e55adc3Debian Linux Security Advisory 3993-1 - It was discovered that the Tor onion service could leak sensitive information to log files if the "SafeLogging" option is set to "0".
45cbc3afbcea9409bb2d7b98afe01335a0c09f725a5424f4b49801d6a077902bPyroBatchFTP version 3.17 suffers from a local buffer overflow vulnerability.
b666b0ec6aef7328c36ec40f9fdf17f6401c1d474e06d6a020ddf4a4e61a884fASX to MP3 Converter versions prior to 3.1.3.7 stack overflow exploit with DEP bypass.
d86f957cf16e5039a87aad4be91f2a154278241986f7d082a41731b957986db3Gentoo Linux Security Advisory 201710-9 - Multiple vulnerabilities have been found in PCRE2, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 10.30 are affected.
20f523049d179f433a84ec3a91aabdb6f7eace5bee5670114dfc29cc2783f19aGentoo Linux Security Advisory 201710-8 - Multiple vulnerabilities have been found in Pacemaker, the worst of which could result in the execution of arbitrary code. Versions less than 1.1.16 are affected.
5bedd157b5a4d0c4cca9ecd6d9ee91ae33c237f67fb0fd0ffc4d7d44c253c11eGentoo Linux Security Advisory 201710-7 - A vulnerability in OCaml may allow local users to gain root privileges. Versions less than 4.04.2 are affected.
f8232add4b55ba2391be0cf80cc4edd43f4ae5ee657ac67f9cbdf02e4462fd1dGentoo Linux Security Advisory 201710-6 - Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in privilege escalation. Versions less than 9.6.4 are affected.
165974e03a3e00d2c81ef01f248a41fb00e38c546ce5bffa02f387a6a880db6aGentoo Linux Security Advisory 201710-5 - A vulnerability in Munin allows local attackers to overwrite any file accessible to the www-data user. Versions less than 2.0.33 are affected.
54852d34c0c987ca77421993b35aa9052b6d05fc58d2867b78f80a0a3f42c39eGentoo Linux Security Advisory 201710-4 - A vulnerability in sudo allows local users to gain root privileges. Versions less than 1.8.20_p2 are affected.
58aa7f9a97abdf92e73fbbfeedaac502d05ee74b5656da57d4e6fc518ddaf513Gentoo Linux Security Advisory 201710-3 - Multiple vulnerabilities have been found in ICU, the worst of which could allow remote code execution. Versions less than 58.2-r1 are affected.
8c3a6fd3c72b368d4c72d30e750da8fea3e58a8967038f11eb8f66d53342ca73Gentoo Linux Security Advisory 201710-2 - A stack-based buffer overflow was found in file, possibly resulting in the execution of arbitrary code. Versions less than 5.32 are affected.
355d727dc3a14a03d8dfb8a2b759f2a2bd1ddc58dd3a3ce2afabb25739df1ad4Gentoo Linux Security Advisory 201710-1 - Multiple vulnerabilities were found in RubyGems, the worst of which allows execution of arbitrary code. Versions less than 2.6.13 are affected.
6e7485c37a04b2d7d031b2eb0f5241710117c1abae047a29ed83df7b3e5e77d8
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed