Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-5194-1:901A5
HistoryJul 29, 2022 - 2:43 p.m.

[SECURITY] [DSA 5194-1] booth security update

2022-07-2914:43:46
lists.debian.org
14

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

52.7%

JSON

Debian Security Advisory DSA-5194-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
July 29, 2022 https://www.debian.org/security/faq

Package : booth
CVE ID : CVE-2022-2553

It was discovered that Booth, a cluster ticket manager, didn't correctly
restrict intra-node communication when configuring the "authfile"
configuration directive.

For the oldstable distribution (buster), this problem has been fixed
in version 1.0-162-g27f917f-2+deb10u1.

For the stable distribution (bullseye), this problem has been fixed in
version 1.0-237-gdd88847-2+deb11u1.

We recommend that you upgrade your booth packages.

For the detailed security status of booth please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/booth

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11ppc64elbooth< 1.0-237-gdd88847-2+deb11u1booth_1.0-237-gdd88847-2+deb11u1_ppc64el.deb
Debian10mipselbooth-dbgsym< 1.0-162-g27f917f-2+deb10u1booth-dbgsym_1.0-162-g27f917f-2+deb10u1_mipsel.deb
Debian10mipselbooth< 1.0-162-g27f917f-2+deb10u1booth_1.0-162-g27f917f-2+deb10u1_mipsel.deb
Debian11amd64booth< 1.0-237-gdd88847-2+deb11u1booth_1.0-237-gdd88847-2+deb11u1_amd64.deb
Debian10allbooth-pacemaker< 1.0-162-g27f917f-2+deb10u1booth-pacemaker_1.0-162-g27f917f-2+deb10u1_all.deb
Debian10mipsbooth-dbgsym< 1.0-162-g27f917f-2+deb10u1booth-dbgsym_1.0-162-g27f917f-2+deb10u1_mips.deb
Debian11arm64booth-dbgsym< 1.0-237-gdd88847-2+deb11u1booth-dbgsym_1.0-237-gdd88847-2+deb11u1_arm64.deb
Debian10allbooth< 1.0-162-g27f917f-2+deb10u1booth_1.0-162-g27f917f-2+deb10u1_all.deb
Debian10amd64booth< 1.0-162-g27f917f-2+deb10u1booth_1.0-162-g27f917f-2+deb10u1_amd64.deb
Debian11amd64booth-dbgsym< 1.0-237-gdd88847-2+deb11u1booth-dbgsym_1.0-237-gdd88847-2+deb11u1_amd64.deb
Rows per page:
1-10 of 421

Related

veracode 1
osv 6
redhat 3
openvas 6
prion 1
nessus 19
ubuntucve 1
rocky 1
cbl_mariner 1
suse 2
redhatcve 1
fedora 2
ubuntu 1
cve 1
amazon 1
debiancve 1
almalinux 2
veracode
veracode
Insecure Configuration
2022-08-11 03:28:04
osv
osv
Moderate: booth security update
2022-09-13 00:00:00
booth - security update
2022-07-29 00:00:00
CVE-2022-2553
2022-07-28 15:15:07
redhat
redhat
(RHSA-2022:6580) Moderate: booth security update
2022-09-20 11:34:36
(RHSA-2022:6439) Moderate: booth security update
2022-09-13 07:36:36
(RHSA-2022:6250) Moderate: booth security update
2022-08-30 21:05:53
openvas
openvas
Fedora: Security Advisory for booth (FEDORA-2022-6744980220)
2022-10-08 00:00:00
Debian: Security Advisory (DSA-5194-1)
2022-07-31 00:00:00
openSUSE: Security Advisory for booth (SUSE-SU-2022:2609-1)
2022-08-02 00:00:00
prion
prion
Authentication flaw
2022-07-28 15:15:00
nessus
nessus
RHEL 9 : booth (RHSA-2022:6580)
2023-01-10 00:00:00
CentOS 9 : booth-1.0-251.5.bfb2f92.git.el9
2024-02-29 00:00:00
RHEL 8 : booth (RHSA-2022:6439)
2022-09-13 00:00:00
ubuntucve
ubuntucve
CVE-2022-2553
2022-07-28 00:00:00
rocky
rocky
booth security update
2022-09-13 07:36:36
cbl_mariner
cbl_mariner
CVE-2022-2553 affecting package booth 1.0-7
2023-09-28 11:57:58
suse
suse
Security update for booth (important)
2022-08-01 00:00:00
Security update for booth (important)
2022-08-01 00:00:00
redhatcve
redhatcve
CVE-2022-2553
2022-07-27 15:54:13
fedora
fedora
[SECURITY] Fedora 36 Update: booth-1.0-262.3.d0ac26c.git.fc36
2022-10-07 15:55:59
[SECURITY] Fedora 35 Update: booth-1.0-251.4.bfb2f92.git.fc35
2022-10-07 13:13:31
ubuntu
ubuntu
Booth vulnerability
2022-08-10 00:00:00
cve
cve
CVE-2022-2553
2022-07-28 15:15:00
amazon
amazon
Medium: booth
2023-03-30 18:56:00
debiancve
debiancve
CVE-2022-2553
2022-07-28 15:15:00
almalinux
almalinux
Moderate: booth security update
2022-09-20 00:00:00
Moderate: booth security update
2022-09-13 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

52.7%

JSON
Related for DEBIAN:DSA-5194-1:901A5
veracode1osv6redhat3openvas6prion1nessus19ubuntucve1rocky1cbl_mariner1suse2redhatcve1fedora2ubuntu1cve1amazon1debiancve1almalinux2