Twenty Year Anniversary
Showing 101 - 125 of 5,548 RSS Feed

Operating System: Debian

Debian Security Advisory 4142-1
Posted Mar 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4142-1 - Marios Nicolaides discovered that the PHP plugin in uWSGI, a fast, self-healing application container server, does not properly handle a DOCUMENT_ROOT check during use of the --php-docroot option, allowing a remote attacker to mount a directory traversal attack and gain unauthorized read access to sensitive files located outside of the web root directory.

tags | advisory, remote, web, root, php
systems | linux, debian
advisories | CVE-2018-7490
MD5 | b27d21328ecc754819007e251a72861d
Debian Security Advisory 4141-1
Posted Mar 16, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4141-1 - Huzaifa Sidhpurwala discovered that an out-of-bounds memory write in the codebook parsing code of the Libtremor multimedia library could result in the execution of arbitrary code if a malformed Vorbis file is opened.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2018-5147
MD5 | 5a57ecf5eec97959eed766a4814a5629
Debian Security Advisory 4140-1
Posted Mar 16, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4140-1 - Richard Zhu discovered that an out-of-bounds memory write in the codeboook parsing code of the Libvorbis multimedia library could result in the execution of arbitrary code.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2018-5146
MD5 | d9fcce3830e05afc17f4d9838e2dabe6
Debian Security Advisory 4138-1
Posted Mar 15, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4138-1 - Several vulnerabilities were discovered in mbed TLS, a lightweight crypto and SSL/TLS library, that allowed a remote attacker to either cause a denial-of-service by application crash, or execute arbitrary code.

tags | advisory, remote, arbitrary, crypto, vulnerability
systems | linux, debian
advisories | CVE-2017-18187, CVE-2018-0487, CVE-2018-0488
MD5 | d5d19957a8a5081f78111a7aa8f37028
Debian Security Advisory 4139-1
Posted Mar 15, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4139-1 - Several security issues have been found in the Mozilla Firefox web may lead to the execution of arbitrary code, denial of service or information disclosure.

tags | advisory, web, denial of service, arbitrary, info disclosure
systems | linux, debian
advisories | CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145
MD5 | 02a6bee2e23b8b2564802558f1123689
Debian Security Advisory 4137-1
Posted Mar 14, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4137-1 - Several vulnerabilities were discovered in Libvirt, a virtualisation abstraction library.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2018-1064, CVE-2018-5748, CVE-2018-6764
MD5 | 7382166d34b5dcc5ed9bac13004d90f7
Debian Security Advisory 4136-1
Posted Mar 14, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4136-1 - Multiple vulnerabilities were discovered in cURL, an URL transfer library.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122
MD5 | 6d1568894a2b2d5c17319d7f6208c881
Debian Security Advisory 4135-1
Posted Mar 13, 2018
Authored by Debian | Site debian.org

1803-advisories/dsa-4135-1.txt 85b068ea50632a5111f3d300ea85c6bc Debian Linux Security Advisory 4135-1 - Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix.

tags | advisory, vulnerability
systems | linux, unix, debian
advisories | CVE-2018-1050, CVE-2018-1057
MD5 | 85b068ea50632a5111f3d300ea85c6bc
Debian Security Advisory 4134-1
Posted Mar 10, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4134-1 - Bjorn Bosselmann discovered that the umount bash completion from util-linux does not properly handle embedded shell commands in a mountpoint name. An attacker with rights to mount filesystems can take advantage of this flaw for privilege escalation if a user (in particular root) is tricked into using the umount completion while a specially crafted mount is present.

tags | advisory, shell, root, bash
systems | linux, debian
advisories | CVE-2018-7738
MD5 | 739295b248b871432986dbfe7125e245
Debian Security Advisory 4133-1
Posted Mar 8, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4133-1 - Several vulnerabilities have been discovered in the ISC DHCP client, relay and server.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2017-3144, CVE-2018-5732, CVE-2018-5733
MD5 | a6967bf4a2bc8ee314cbd8bcf359282c
Debian Security Advisory 4132-1
Posted Mar 6, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4132-1 - It was discovered that incorrect validation of frame widths in the libvpx multimedia library may result in denial of service and potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2017-13194
MD5 | 9a914de209fdf762d01a1a2766d068ca
Debian Security Advisory 4131-1
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4131-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2018-7540, CVE-2018-7541, CVE-2018-7542
MD5 | 9a6075fe7c2d434a17a673f5b2435797
Debian Security Advisory 4120-2
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4120-2 - The security update announced as DSA-4120-1 caused regressions on the powerpc kernel architecture (random programs segfault, data corruption). Updated packages are now available to correct this issue.

tags | advisory, kernel
systems | linux, debian
MD5 | 0a50f2ddedcd136115af3db08ad9e09a
Debian Security Advisory 4130-1
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4130-1 - Several vulnerabilities have been discovered in the Dovecot email server.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2017-14461, CVE-2017-15130, CVE-2017-15132
MD5 | ff5358c46cf0f32f866398aa80f7ae8f
Debian Security Advisory 4129-1
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4129-1 - Multiple heap buffer over reads were discovered in freexl, a library to read Microsoft Excel spreadsheets, which could result in denial of service.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2018-7435, CVE-2018-7436, CVE-2018-7437, CVE-2018-7438, CVE-2018-7439
MD5 | 506470e2adefab1575d5da7c329c33f2
Debian Security Advisory 4128-1
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4128-1 - Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server. They could lead to the use of an incorrect upstream proxy, or allow a remote attacker to cause a denial-of-service by application crash.

tags | advisory, remote, vulnerability
systems | linux, debian
advisories | CVE-2017-5660, CVE-2017-7671
MD5 | 9f749e62dd2b900735379f6dff507029
Debian Security Advisory 4127-1
Posted Mar 2, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4127-1 - Several vulnerabilities have been discovered in SimpleSAMLphp, a framework for authentication, primarily via the SAML protocol.

tags | advisory, vulnerability, protocol
systems | linux, debian
advisories | CVE-2017-12867, CVE-2017-12869, CVE-2017-12873, CVE-2017-12874, CVE-2017-18121, CVE-2017-18122, CVE-2018-6519, CVE-2018-6521
MD5 | 4c0e68bb97601f6de242432bea2460f6
Debian Security Advisory 4124-1
Posted Feb 28, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4124-1 - Two vulnerabilities have been found in Solr, a search server based on Lucene, which could result in the execution of arbitrary code or path traversal.

tags | advisory, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2017-12629, CVE-2017-3163
MD5 | eea4da112b2bed5b48d6a57674f12ee0
Debian Security Advisory 4123-1
Posted Feb 24, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4123-1 - Multiple vulnerabilities have been found in the Drupal content management framework.

tags | advisory, vulnerability
systems | linux, debian
MD5 | 65bcddb5127fe0c94eb776c1e4ca7d94
Debian Security Advisory 4122-1
Posted Feb 23, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4122-1 - Several vulnerabilities have been discovered in Squid3, a fully featured web proxy cache.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2018-1000024, CVE-2018-1000027
MD5 | 9ef4b3729b02dbd49c78b7e5631e5ef4
Debian Security Advisory 4120-1
Posted Feb 22, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4120-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

tags | advisory, denial of service, kernel, vulnerability
systems | linux, debian
advisories | CVE-2017-13166, CVE-2017-5715, CVE-2017-5754, CVE-2018-5750
MD5 | 87f0dca6b1b225ebfb15055fac6299cf
Debian Security Advisory 4121-1
Posted Feb 22, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4121-1 - This update doesn't fix a vulnerability in GCC itself, but instead provides support for building retpoline-enabled Linux kernel updates.

tags | advisory, kernel
systems | linux, debian
MD5 | 87245a623ef26fdd0d572d9e12848b6f
MagniComp SysInfo mcsiwrapper Privilege Escalation
Posted Feb 20, 2018
Authored by Brendan Coles, Daniel Lawson, Romain Trouve | Site metasploit.com

This Metasploit module attempts to gain root privileges on systems running MagniComp SysInfo versions prior to 10-H64. The .mcsiwrapper suid executable allows loading a config file using the '--configfile' argument. The 'ExecPath' config directive is used to set the executable load path. This Metasploit module abuses this functionality to set the load path resulting in execution of arbitrary code as root. This Metasploit module has been tested successfully with SysInfo version 10-H63 on Fedora 20 x86_64, 10-H32 on Fedora 27 x86_64, 10-H10 on Debian 8 x86_64, and 10-GA on Solaris 10u11 x86.

tags | exploit, arbitrary, x86, root
systems | linux, solaris, debian, fedora
advisories | CVE-2017-6516
MD5 | 8b66a6c82ba59a4ce479a1d17b9e36b6
Debian Security Advisory 4119-1
Posted Feb 19, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4119-1 - Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library.

tags | advisory
systems | linux, debian
advisories | CVE-2017-16803
MD5 | 2a1d9f8a84328acf0e9acb5b84c0df02
Debian Security Advisory 4118-1
Posted Feb 19, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4118-1 - Jonas Klempel reported that tomcat-native, a library giving Tomcat access to the Apache Portable Runtime (APR) library's network connection (socket) implementation and random-number generator, does not properly handle fields longer than 127 bytes when parsing the AIA-Extension field of a client certificate. If OCSP checks are used, this could result in client certificates that should have been rejected to be accepted.

tags | advisory
systems | linux, debian
advisories | CVE-2017-15698
MD5 | c56c23b13001ea2e3e827020aa818472
Page 5 of 222
Back34567Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close