Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
df89e7ea7a17f1780471f80301509d0d6b58ba860c06abe0f0415d332c3c0343
Python versions 3.3 through 3.5 suffer from a vulnerability caused by the behavior of the product_setstate() function. When called, the function loops over the state tuple provided and clamps each given index to a value within a range from 0 up to the max number of pools. Then, it loops over the pools and gets an item from the pool using the previously clamped index value. However, for the upper bound, the clamping logic is using the number of pools and not the size of the individual pool, which can result in a call to PyTuple_GET_ITEM that uses an index outside of the bounds of the pool.
93b02aa3ae19b663219ced42d062d599f4173fd86c326115247762c4c49f4875
Sam Spade version 1.14 local buffer overflow exploit.
be1d1470f926865a2cbdf26c04571759ad9dd15539f532abf57dab6d5cab11fa
Python version 3.5 suffers from a vulnerability caused by the behavior of the newblock() function used by the collections.deque module. When called, newblock() allocates memory using PyMem_Malloc() and does not initialize it.
beb3e126e78bd70fe14f6262da0e8790ff307a93235f23188e500745b0a5be92