what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 42 RSS Feed

Files Date: 2020-05-28

Red Hat Security Advisory 2020-2337-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2337-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a password leak vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-11008
SHA-256 | d97960039ea897209f7073d1df3f547cead0b07aa28946f6737a56f52c083fce
Red Hat Security Advisory 2020-2336-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2336-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, remote, overflow, vulnerability, protocol
systems | linux, redhat, windows
advisories | CVE-2020-11521, CVE-2020-11523, CVE-2020-11524
SHA-256 | a97d0758a99b8e81309670874f63e5ae377f59755cb22c023da972d8e2578f73
Red Hat Security Advisory 2020-2338-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2338-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2020-8616, CVE-2020-8617
SHA-256 | e6a2c73a2a4b38c1487faacabaaebda854a4acb40e748164c0484aced16dfe20
Red Hat Security Advisory 2020-2335-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2335-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, remote, overflow, vulnerability, protocol
systems | linux, redhat, windows
advisories | CVE-2020-11521, CVE-2020-11523, CVE-2020-11524
SHA-256 | 95bfbc66511ee33ff88995e888012f41cd17e1549e2fbb074f8ced41bb5c2a2c
Red Hat Security Advisory 2020-2334-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2334-01 - FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, remote, overflow, vulnerability, protocol
systems | linux, redhat, windows
advisories | CVE-2020-11521, CVE-2020-11523, CVE-2020-11524
SHA-256 | e6eb51a86aae787edc8b9e31f50b2a7226ca764a53f6a55c29725b4c919f7a95
Debian Security Advisory 4672-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4672-1 - Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in denial of service or request smuggling attacks.

tags | advisory, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2019-17559, CVE-2019-17565, CVE-2020-1944, CVE-2020-9481
SHA-256 | 660939fa86daf06b26ab50e4af0902ea74ef786a1e05e439262de385213123e4
Debian Security Advisory 4673-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4673-1 - Several vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in HTTP request smuggling and code execution in the AJP connector (disabled by default in Debian).

tags | advisory, web, vulnerability, code execution
systems | linux, debian
advisories | CVE-2019-17569, CVE-2020-1935, CVE-2020-1938
SHA-256 | ba3d584d4fdc2ced4b9b9288a441018d4480428ec0d74e435018d2230c3f1349
Debian Security Advisory 4674-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4674-1 - It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not correctly process and sanitize requests. This would allow a remote attacker to perform either a Cross-Site Request Forgery (CSRF) forcing an authenticated user to be logged out, or a Cross-Side Scripting (XSS) leading to execution of arbitrary code.

tags | advisory, remote, arbitrary, imap, csrf
systems | linux, debian
advisories | CVE-2020-12625, CVE-2020-12626
SHA-256 | 1a0e4fd0c77e5eb1e095f0a4465f6f037d2438c0aa3169e10e182197a9f7487e
Debian Security Advisory 4675-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4675-1 - Several vulnerabilities have been discovered in GraphicsMagick, a set of command-line applications to manipulate image files, which could result in information disclosure, denial of service or the execution of arbitrary code if malformed image files are processed.

tags | advisory, denial of service, arbitrary, vulnerability, info disclosure
systems | linux, debian
advisories | CVE-2019-12921, CVE-2020-10938
SHA-256 | b2e87b4bb9b4dbb556409e766633ea564939c979313986ac94ce86ed6c29b11c
Debian Security Advisory 4676-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4676-1 - Several vulnerabilities were discovered in salt, a powerful remote execution manager, which could result in retrieve of user tokens from the salt master, execution of arbitrary commands on salt minions, arbitrary directory access to authenticated users or arbitrary code execution on salt-api hosts.

tags | advisory, remote, arbitrary, vulnerability, code execution
systems | linux, debian
advisories | CVE-2019-17361, CVE-2020-11651, CVE-2020-11652
SHA-256 | bc8f6fb80beef063b1481154a0f467f4fb6d9239d5d229f48d3dffa80f9fa57e
Debian Security Advisory 4676-2
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4676-2 - The update for salt for the oldstable distribution (stretch) released as DSA 4676-1 contained an incomplete fix to address CVE-2020-11651 and CVE-2020-11652. Updated salt packages are now available to correct this issue. For reference, the original advisory text follows.

tags | advisory
systems | linux, debian
advisories | CVE-2020-11651, CVE-2020-11652
SHA-256 | 796842d23e3e132487d82a2497387a92aa2770d53d6f95db179b90ce2981e9ee
Debian Security Advisory 4677-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4677-1 - Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform various Cross-Side Scripting (XSS) and Cross-Site Request Forgery (CSRF) attacks, create files on the server, disclose private information, create open redirects, poison cache, and bypass authorization access and input sanitation.

tags | advisory, remote, web, vulnerability, csrf
systems | linux, debian
advisories | CVE-2019-16217, CVE-2019-16218, CVE-2019-16219, CVE-2019-16220, CVE-2019-16221, CVE-2019-16222, CVE-2019-16223, CVE-2019-16780, CVE-2019-16781, CVE-2019-17669, CVE-2019-17671, CVE-2019-17672, CVE-2019-17673, CVE-2019-17674
SHA-256 | 6d27cba833ecba03b616051272e9350ebac60ca6dcdce5a8f1dbee3e9022d501
Debian Security Advisory 4678-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4678-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or information disclosure.

tags | advisory, web, arbitrary, info disclosure
systems | linux, debian
advisories | CVE-2020-12387, CVE-2020-12392, CVE-2020-12395, CVE-2020-6831
SHA-256 | 42fc94236225414bc8cc2105ae469426c24ee3505e206d79b00379fad2795042
Debian Security Advisory 4679-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4679-1 - A vulnerability was found in the EC2 credentials API of Keystone, the scope (trust/oauth/application credential) could create an EC2 credential with an escalated permission, such as obtaining "admin" while the user is on a limited "viewer" role.

tags | advisory
systems | linux, debian
SHA-256 | 57abffa4201ffff7ed9e3092133cdd1fe8625030c63993ef966787f79303370f
Debian Security Advisory 4680-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4680-1 - Several vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in HTTP request smuggling, code execution in the AJP connector (disabled by default in Debian) or a man-in-the-middle attack against the JMX interface.

tags | advisory, web, vulnerability, code execution
systems | linux, debian
advisories | CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-17569, CVE-2020-1935, CVE-2020-1938
SHA-256 | d84200d1f875157db5551cd1679c3bdbff3b6dbe5f87a455c1a84bf2902aa60e
Debian Security Advisory 4681-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4681-1 - Ryan Pickren discovered that a file URL may be incorrectly processed. Sergei Glazunov discovered that a race condition may allow an application to read restricted memory. Various other issues were also found.

tags | advisory, web
systems | linux, debian
advisories | CVE-2020-3885, CVE-2020-3894, CVE-2020-3895, CVE-2020-3897, CVE-2020-3899, CVE-2020-3900, CVE-2020-3901, CVE-2020-3902
SHA-256 | 3364a5da93f7debc3fd95c59d610976690373dd114d62d171dd6c632c645b187
Debian Security Advisory 4682-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4682-1 - Multiple security issues were discovered in the Squid proxy caching server, which could result in the bypass of security filters, information disclosure, the execution of arbitrary code or denial of service.

tags | advisory, denial of service, arbitrary, info disclosure
systems | linux, debian
advisories | CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12523, CVE-2019-12524, CVE-2019-12526, CVE-2019-12528, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-8449, CVE-2020-8450
SHA-256 | 87ca95b4ae1d88238583d52bb863f0a6581ef8c84693704ff5fc9f5b91f4325a
Debian Security Advisory 4683-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4683-1 - Multiple security issues have been found in Thunderbird which could result in spoofing the displayed sender email address, denial of service or potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, spoof
systems | linux, debian
advisories | CVE-2020-12387, CVE-2020-12392, CVE-2020-12395, CVE-2020-12397, CVE-2020-6831
SHA-256 | 6b4651f29f022e0efe1d6770f39d66f9649fc415381e1388373054438f2656bd
Debian Security Advisory 4684-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4684-1 - Stephan Zeisberg discovered that the libreswan IPsec implementation could be forced into a crash/restart via a malformed IKEv1 Informational Exchange packet, resulting in denial of service.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2020-1763
SHA-256 | 3da635b656c657a466ffd3f22799562a5f2cb79c8dab0db749a4d23f21d3f966
Debian Security Advisory 4685-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4685-1 - Shuaibing Lu discovered that missing input validation in the ar/tar implementations of APT, the high level package manager, could result in denial of service when processing specially crafted deb files.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2020-3810
SHA-256 | d11a1baf9490082af927a3e0c3aa42218a73c54fe7796464fc703c7e99185b0f
Debian Security Advisory 4686-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4686-1 - It was discovered that the SocketServer class included in apache-log4j1.2, a logging library for java, is vulnerable to deserialization of untrusted data. An attacker can take advantage of this flaw to execute arbitrary code in the context of the logger application by sending a specially crafted log event.

tags | advisory, java, arbitrary
systems | linux, debian
advisories | CVE-2019-17571
SHA-256 | b7652cf3e1c98d44b0475cd461748855ac6cb1cda2d39aaf078852e016be5ce0
Debian Security Advisory 4687-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4687-1 - It was discovered that exim4, a mail transport agent, suffers from a authentication bypass vulnerability in the spa authentication driver. The spa authentication driver is not enabled by default.

tags | advisory, bypass
systems | linux, debian
advisories | CVE-2020-12783
SHA-256 | e3272bf74799d54d749a059ab8ec2fc1ae847a99be8c8ac11d45f300841755ab
Debian Security Advisory 4688-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4688-1 - Multiple vulnerabilities were discovered in the vhost code of DPDK, a set of libraries for fast packet processing, which could result in denial of service or the execution of arbitrary code by malicious guests/containers.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2020-10722, CVE-2020-10723, CVE-2020-10724
SHA-256 | 53c57f7ed5d005acebd7038ef00b5ce38572fc2f58e783024f20cc04979ec7b9
Debian Security Advisory 4689-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4689-1 - Several vulnerabilities were discovered in BIND, a DNS server implementation.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2019-6477, CVE-2020-8616, CVE-2020-8617
SHA-256 | 96c2db1c832c3227b5a973f46df47ac93ec1ba53a83a6ee66f99e63722d11f9b
Debian Security Advisory 4690-1
Posted May 28, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4690-1 - Several vulnerabilities were discovered in the Dovecot email server, which could cause crashes in the submission, submission-login or lmtp services, resulting in denial of service.

tags | advisory, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2020-10957, CVE-2020-10958, CVE-2020-10967
SHA-256 | 9d63598a1c71dc750c77f667387b4618d03c19f05df378ce707cb2a4abea6c26
Page 1 of 2
Back12Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close